Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
File: sBCzoH7QdoStvu_aRTKhy2g6VpI.mft (raw, json)
Hash identifier: MoO3KXXSVWBV9mofrhhnqZT25sq6a+kkiSt9clof0lQ=
Subject key identifier: FE:F8:AC:F2:D3:D5:3A:C8:22:BC:78:14:D5:06:F6:FD:E0:B6:09:99
Authority key identifier: B0:10:B3:A0:7E:D0:76:84:AD:BE:EF:DA:45:32:A1:CB:68:3A:56:92
Certificate issuer: /CN=b010b3a07ed07684adbeefda4532a1cb683a5692
Certificate serial: 019D9AE34E749A087686D5B3B0CAA44C3FF6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
Manifest number: DA
Signing time: Fri 17 Apr 2026 10:01:20 +0000
Manifest this update: Fri 17 Apr 2026 10:01:20 +0000
Manifest next update: Sat 18 Apr 2026 10:01:20 +0000
Files and hashes: 1: HOsIByRB05sMesPlqYI8THFtGjM.roa (hash: VJopQfVewffY+pivrrV8JLnBTXPO+QkfD3SD6xVxU8E=)
2: sBCzoH7QdoStvu_aRTKhy2g6VpI.crl (hash: tyEJWX2ALbcdJ2O3eErJAl0auOBeZ25UH8gXwq7AFUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:4e:74:9a:08:76:86:d5:b3:b0:ca:a4:4c:3f:f6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b010b3a07ed07684adbeefda4532a1cb683a5692
Validity
Not Before: Apr 17 10:01:20 2026 GMT
Not After : Apr 18 10:01:20 2026 GMT
Subject: CN=fef8acf2d3d53ac822bc7814d506f6fde0b60999
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:85:8c:df:ee:3d:23:b4:d3:9b:dd:3d:bf:c7:
1a:5e:04:f7:0b:92:f9:9b:31:d4:37:f9:7e:8b:a5:
c3:d8:44:3f:47:46:b7:92:63:a3:a2:0d:8b:5f:0e:
49:ff:33:bd:a0:7b:4c:4c:f4:51:e4:d2:5f:17:6b:
12:b5:9f:ef:08:e1:18:d6:78:da:70:ed:e3:16:49:
3a:16:06:91:43:3a:b0:0f:dc:c3:b6:5c:5c:73:41:
64:9e:ab:5c:be:90:99:03:5c:11:8e:99:04:b2:3d:
8a:7b:01:b5:8b:db:e9:2c:ee:8d:e4:34:cf:99:70:
b2:0a:a6:1a:c6:76:36:04:b0:a2:66:1c:3b:66:75:
51:ad:99:c7:8d:41:7c:42:fe:19:8b:c4:f9:b6:ae:
07:24:07:c3:27:de:e6:a5:23:39:ae:50:46:d5:cb:
07:54:fe:98:d5:73:eb:a5:2a:b0:87:47:0f:f9:c3:
3e:b5:88:74:e9:bb:a0:ff:c4:18:6e:e5:10:58:6a:
a7:93:a1:93:a0:5f:49:8c:9a:63:42:89:54:dd:b4:
30:b6:b1:e9:0e:dc:a1:22:6f:50:c8:b9:98:c3:8c:
57:1b:6b:fa:bd:aa:ed:dc:8d:c7:f8:05:52:a4:a7:
57:ff:2f:9b:40:57:be:3b:6f:f3:70:96:6f:57:57:
b4:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F8:AC:F2:D3:D5:3A:C8:22:BC:78:14:D5:06:F6:FD:E0:B6:09:99
X509v3 Authority Key Identifier:
keyid:B0:10:B3:A0:7E:D0:76:84:AD:BE:EF:DA:45:32:A1:CB:68:3A:56:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f8:17:18:2e:11:b7:40:9a:ab:50:58:d0:86:9b:a8:a0:7b:
06:00:55:5a:9a:6c:32:6a:5e:fb:88:d5:d5:49:01:5d:89:30:
5b:60:c3:b6:0d:83:32:ba:dd:16:a3:14:2e:a5:23:bf:50:db:
ff:5b:e3:be:fb:3e:69:27:66:59:55:2f:65:80:cf:16:c2:ff:
fb:16:53:e3:56:17:14:6b:8e:e2:1f:b1:9f:7d:df:fc:48:55:
78:ea:bf:c9:ac:d1:ff:81:51:61:a8:19:0b:38:b6:da:a3:8e:
bb:57:2c:b2:0b:0b:2e:48:83:67:c2:c1:2c:f2:0d:c9:bf:e6:
51:1f:89:93:7e:b4:b9:e9:c8:f0:83:ec:11:7e:b5:b5:90:12:
b5:75:9d:4c:77:03:ea:89:34:89:57:85:e3:d5:95:0a:96:54:
55:7c:e2:e2:cc:98:8c:9d:dc:43:0c:05:87:f4:89:20:54:a4:
fc:c2:28:64:c0:16:5c:35:ed:aa:b0:1b:60:81:9f:cc:97:cf:
56:76:05:31:ef:6b:b2:24:eb:1b:93:55:08:b8:98:da:13:6f:
9c:ee:8e:5e:91:38:3a:d0:cf:f8:9e:12:95:c9:4c:91:ce:30:
dd:9a:ba:fb:f3:d5:ae:7e:a9:a1:e6:9b:d1:0c:ac:43:d1:c8:
b6:99:ba:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:04:55 2026 by rpki-client