Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
File: S2MqdYtZMJ6GEInWVTruBnprNT8.mft (raw, json)
Hash identifier: LL1ao/XL0ou3tWMvWO0WH03cF2irqa1FjlSlPjtYqb0=
Subject key identifier: 42:92:47:02:9E:5A:07:DE:45:66:F9:75:2B:2A:46:7B:73:30:3A:7A
Authority key identifier: 4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
Certificate issuer: /CN=4b632a758b59309e861089d6553aee067a6b353f
Certificate serial: 019CAC105A3D73418974848E12A164AFC372
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 01:01:18 +0000
Manifest this update: Mon 02 Mar 2026 01:01:18 +0000
Manifest next update: Tue 03 Mar 2026 01:01:18 +0000
Files and hashes: 1: 6E64GXrgmXNa9YSBiY3OujAPTwo.roa (hash: yS+gCnb/d3MQ3vFkPLZAQVV6eBJuu9tDUWcxSfLgTIU=)
2: S2MqdYtZMJ6GEInWVTruBnprNT8.crl (hash: gDWMThJ+94kkkcmLhfwuD7uVjP+5fCxuteNqcxnf6FI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:5a:3d:73:41:89:74:84:8e:12:a1:64:af:c3:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b632a758b59309e861089d6553aee067a6b353f
Validity
Not Before: Mar 2 01:01:18 2026 GMT
Not After : Mar 3 01:01:18 2026 GMT
Subject: CN=429247029e5a07de4566f9752b2a467b73303a7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:db:18:02:32:e1:63:dc:3d:18:75:04:f1:8b:
85:43:ec:28:d6:bf:c4:8b:90:01:0f:c2:0b:10:9a:
f7:ed:02:04:bd:7c:34:8d:45:41:50:30:30:04:2c:
50:8b:47:4d:25:a4:15:6c:4c:9a:e6:40:eb:56:38:
0f:d7:ed:17:7e:50:be:46:00:a9:3b:83:96:a0:86:
02:56:95:e1:f2:2e:94:e8:be:8e:4d:6e:67:d0:b6:
25:b9:04:5f:e2:30:b4:c5:eb:69:c3:c3:55:f2:2d:
a3:af:ef:c3:92:8a:69:4a:1d:93:47:74:58:bc:d6:
28:72:01:f1:ee:97:5c:d6:0f:e2:f3:b8:6a:f2:83:
24:e6:dc:2e:02:f7:6d:7e:76:cf:a9:5c:13:72:31:
07:93:f5:f9:b7:8a:b2:5e:5f:ca:7d:ac:94:ec:50:
7c:1e:8f:91:99:38:1c:9c:7b:d0:6f:dc:08:5f:14:
1f:fc:73:55:16:c4:d1:b0:cf:5c:56:dc:44:fd:ff:
20:dc:da:a0:98:fc:43:21:9d:06:85:7d:67:26:27:
91:21:6d:1e:a8:ca:c2:d2:c0:d8:ef:ea:84:68:b7:
d4:3c:44:a8:24:d2:a1:36:4b:0b:1b:a6:02:b9:61:
4f:e2:38:2f:8a:57:9b:bc:c6:fd:29:ea:90:95:d4:
e5:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:92:47:02:9E:5A:07:DE:45:66:F9:75:2B:2A:46:7B:73:30:3A:7A
X509v3 Authority Key Identifier:
keyid:4B:63:2A:75:8B:59:30:9E:86:10:89:D6:55:3A:EE:06:7A:6B:35:3F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2MqdYtZMJ6GEInWVTruBnprNT8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/213a95-aacf-40a9-9753-94c0b0b76029/1/S2MqdYtZMJ6GEInWVTruBnprNT8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:97:db:fb:79:c5:2d:23:d2:19:74:e4:e5:7a:be:fb:6e:97:
37:6b:92:2f:b7:6f:11:12:8a:b3:fa:80:52:2f:44:69:35:13:
f3:8e:0e:53:04:65:62:c6:9e:0a:7a:82:c7:8c:0a:7f:32:aa:
fe:da:6e:e4:ee:4d:f2:db:5e:75:28:6b:02:d8:55:8f:24:a3:
79:e8:cb:fa:cb:25:3e:12:3d:9d:c8:a1:e5:69:a7:61:37:7d:
50:c4:3a:7c:5f:24:c2:c6:1f:45:b2:af:dc:61:76:c3:fc:f8:
52:c2:69:9f:cd:c8:e4:e3:e9:f6:d6:28:44:7d:3a:5e:c7:ce:
4a:15:f0:ca:fa:8a:02:1f:1d:a2:3a:42:94:ff:20:e0:84:84:
29:17:cd:e8:14:61:75:c2:54:a9:dc:da:83:af:c5:04:34:21:
83:1e:2e:a6:75:64:95:39:e3:8a:ee:46:75:fa:a2:eb:82:79:
15:51:1c:4f:2e:13:82:8b:6a:c0:25:9c:31:97:6e:39:2b:c8:
83:06:e2:31:9c:93:06:4c:1f:35:c0:cd:6c:d1:20:a7:13:69:
d7:da:fa:5e:8d:84:77:46:c8:27:04:b9:31:8f:17:c2:d8:2e:
f8:f9:6c:c4:d6:9f:5b:11:b4:ab:e6:c3:8c:46:4c:01:0c:cb:
fd:89:f9:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:19:07 2026 by rpki-client