Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
File: sQeA3za1uUL2YOQDov5ginXk5X0.mft (raw, json)
Hash identifier: i+xriM8kMv99q4/prgmHvB6scsMAMps/KJi3q/563d8=
Subject key identifier: CD:3B:CD:4E:EF:C7:C5:54:1E:B9:FC:B9:4E:14:C6:F2:6C:31:E9:A4
Authority key identifier: B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
Certificate issuer: /CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Certificate serial: 019CABA228CCF86BB016832AC78AF2615EB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
Manifest number: 17D8
Signing time: Sun 01 Mar 2026 23:00:57 +0000
Manifest this update: Sun 01 Mar 2026 23:00:57 +0000
Manifest next update: Mon 02 Mar 2026 23:00:57 +0000
Files and hashes: 1: IRpFGeK75W2NCoLOiJ_s8Xp5yew.roa (hash: BhIo7ljP7ZgEPGbs9sKTB4qik1eSNnRy76SvPdzQrR4=)
2: sQeA3za1uUL2YOQDov5ginXk5X0.crl (hash: OkL+5jjJHJkKF7Xzr3UVyogsEt5vL/gcOQ3EbsnRCh8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:28:cc:f8:6b:b0:16:83:2a:c7:8a:f2:61:5e:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b10780df36b5b942f660e403a2fe608a75e4e57d
Validity
Not Before: Mar 1 23:00:57 2026 GMT
Not After : Mar 2 23:00:57 2026 GMT
Subject: CN=cd3bcd4eefc7c5541eb9fcb94e14c6f26c31e9a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5b:77:45:a0:6c:73:ab:5f:e8:40:fa:da:0f:
63:c2:40:be:2d:9a:fc:ed:89:31:bc:af:71:57:69:
c8:6a:e5:ef:b0:fd:6f:4a:ab:5e:8d:92:b9:53:16:
c0:48:a0:87:b9:fc:3c:e5:a5:e7:7a:d1:23:72:3e:
51:dc:b5:d3:7d:10:69:99:d8:af:ac:53:8c:a5:bc:
e0:61:ed:25:1f:da:23:78:c4:65:99:7d:81:76:19:
85:93:e2:a8:28:9e:88:71:6b:81:58:18:68:20:03:
ce:c1:bc:bc:cd:75:ba:13:d5:aa:45:2b:aa:7a:72:
2d:83:10:4e:ff:52:36:bd:a9:26:66:68:83:c2:f5:
a4:89:f0:07:3a:fe:ef:40:10:b3:55:2e:2d:ca:51:
4c:36:e5:b4:eb:56:ea:4b:fc:a4:03:d6:74:4c:07:
1e:4d:79:98:88:c4:14:be:8d:df:53:dc:22:2c:13:
da:ce:4b:bf:03:85:bf:ce:91:ee:d4:c4:88:37:d6:
51:56:7e:2a:73:25:57:af:66:1d:9d:0a:e7:e4:32:
94:6c:21:28:ff:fb:06:d6:d7:e4:d5:3f:ac:7e:41:
1f:d4:13:35:95:58:a7:f9:6a:d7:ce:40:7b:fe:50:
84:59:e6:0a:4d:7a:d0:81:0b:ed:e4:8a:1f:e2:a3:
5a:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:3B:CD:4E:EF:C7:C5:54:1E:B9:FC:B9:4E:14:C6:F2:6C:31:E9:A4
X509v3 Authority Key Identifier:
keyid:B1:07:80:DF:36:B5:B9:42:F6:60:E4:03:A2:FE:60:8A:75:E4:E5:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sQeA3za1uUL2YOQDov5ginXk5X0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/b56504-ed17-4197-bba0-a0adecfd5fa9/1/sQeA3za1uUL2YOQDov5ginXk5X0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:ad:b2:c6:d0:e5:86:6e:f5:d8:7d:14:06:95:fe:6c:11:62:
bf:97:dd:44:cd:73:4e:cf:c9:6d:92:2f:6e:b1:5c:3c:5b:06:
3f:67:24:55:c3:62:e5:76:f4:a0:9b:93:b0:23:14:0f:3e:35:
eb:dd:b7:9c:f1:c1:8a:20:46:1b:dd:f7:ae:b5:fd:bb:5c:71:
d2:ae:88:06:c0:64:5b:68:b9:22:59:86:bf:3a:89:05:2b:df:
bf:44:5f:9e:3c:4f:df:33:4c:a3:46:c7:98:26:23:b8:41:96:
e0:7e:ec:44:91:a1:b0:3b:9d:ab:dd:4c:fe:2e:5d:79:fd:3a:
56:4b:ab:38:22:aa:73:34:7d:b9:e4:0d:d1:84:4b:09:fb:de:
3a:50:86:bb:94:f9:c6:a5:be:76:41:f9:1b:f1:c5:67:3e:fb:
7c:85:75:b8:77:b8:ee:d1:aa:41:86:a4:99:bf:62:60:1f:07:
d0:1f:38:2d:ca:14:c4:a4:ba:56:fe:0c:71:fa:7a:a3:db:f4:
b2:0e:5a:65:0a:85:80:e4:13:06:bb:b9:33:6e:7b:0f:b1:eb:
40:c2:04:48:3a:eb:ef:75:0e:b4:d8:d5:ad:cc:5d:c2:3c:21:
91:27:1e:ec:9c:37:35:83:20:24:89:4b:c1:e6:f6:a8:93:bd:
5f:f8:f3:31
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:33:11 2026 by rpki-client