Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
File: sffQCUrcmNmwMnIOgePbWqdYHHQ.mft (raw, json)
Hash identifier: q3DFHTXaO3ydpRx47AsoslutVMbvarWmfB5E81JjVBM=
Subject key identifier: 79:A7:A7:BD:0A:DE:80:CC:93:E7:73:CA:74:73:08:F7:03:9C:AC:22
Authority key identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
Certificate issuer: /CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Certificate serial: 019DA340DD32A790BE6A394FB93ECD6EAD0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
Manifest number: 0E4E
Signing time: Sun 19 Apr 2026 01:00:30 +0000
Manifest this update: Sun 19 Apr 2026 01:00:30 +0000
Manifest next update: Mon 20 Apr 2026 01:00:30 +0000
Files and hashes: 1: c0cTTJQDf36qVQCG96WRyKdM_Wc.roa (hash: aYsM49Xy0hnVUlbAWRXmCHPgWbkgOmuFrAd7Tian+Cg=)
2: sffQCUrcmNmwMnIOgePbWqdYHHQ.crl (hash: Lhqx3Uvt2cA2k2RrNcW23TohXcSMUQlpDI2u5Yx1Tf0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:40:dd:32:a7:90:be:6a:39:4f:b9:3e:cd:6e:ad:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74
Validity
Not Before: Apr 19 01:00:30 2026 GMT
Not After : Apr 20 01:00:30 2026 GMT
Subject: CN=79a7a7bd0ade80cc93e773ca747308f7039cac22
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:43:1b:85:2a:a8:e3:26:a6:3b:c6:cf:48:94:
8c:5a:37:ac:29:8f:d7:b7:38:67:a1:e8:b8:e1:0d:
30:de:73:56:84:5f:28:57:ac:aa:62:dd:77:17:db:
7f:57:c6:08:b0:94:0c:89:8d:94:5d:45:de:43:7c:
77:d1:60:9b:dd:91:d9:77:be:1a:0d:5a:3b:b1:9d:
24:2a:67:8e:55:63:ee:9f:54:1f:66:5b:e5:b5:5f:
d6:45:03:3e:81:34:e5:61:14:2f:24:ff:8e:8e:e6:
c3:bb:f9:ab:f9:f3:e2:cc:28:a2:11:f6:e4:8b:cd:
fa:89:9e:e5:34:e2:86:6f:a1:58:62:34:95:26:ca:
40:6c:bf:fc:52:0f:af:62:0d:21:b8:55:af:38:9f:
3a:a3:0f:0c:cc:99:83:94:79:a7:0a:e0:54:a2:24:
17:db:c8:f9:91:9a:0a:99:a4:f2:04:2f:95:dd:0e:
66:b4:e3:b4:19:7e:e2:5b:08:54:62:88:42:c4:39:
b0:9d:55:b5:1c:5d:4e:67:bb:ba:cd:9a:a5:cc:4f:
e5:12:b0:78:91:26:2d:32:48:3d:ba:72:a1:eb:c6:
f5:8a:3f:b1:cd:c8:44:f4:b7:0b:43:3f:d4:16:3f:
88:29:01:d4:96:61:0c:59:3f:c9:09:60:31:9f:0c:
38:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:A7:A7:BD:0A:DE:80:CC:93:E7:73:CA:74:73:08:F7:03:9C:AC:22
X509v3 Authority Key Identifier:
keyid:B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:2e:21:a5:86:08:a6:6f:c1:5e:8e:1c:e3:77:2e:c3:e4:f8:
69:19:79:8c:9c:64:ff:26:68:6d:e9:aa:7f:eb:fa:c5:67:ba:
27:08:33:c8:f0:49:9e:8b:ce:c5:ee:cb:44:a3:ee:50:49:7c:
0c:77:b0:63:ae:04:40:96:7a:0f:ce:35:59:ae:f6:33:9c:aa:
02:4a:3f:1c:01:9a:ae:e7:b2:54:9e:bf:b5:25:37:7f:d8:c2:
8f:34:76:f3:2d:44:13:de:6a:10:d0:7d:1b:77:ee:3e:e5:a1:
dc:84:80:b4:e2:d3:73:60:e7:82:d8:c2:70:82:95:3b:cd:02:
11:e4:99:e2:eb:f9:5d:df:e3:20:f5:09:01:34:63:29:1b:c4:
7f:62:48:a8:fc:5b:7b:b1:40:64:62:22:41:19:3e:24:6b:d1:
25:d2:ad:d7:ff:6a:cf:f3:d8:3c:7d:7e:ed:c2:22:a6:91:a7:
6c:7d:2c:13:94:a6:fa:8a:f7:90:fa:7a:e0:3a:f9:11:7a:f6:
ff:94:81:ca:7a:d3:c7:42:de:cb:5b:c9:a6:d0:98:83:70:ac:
61:6d:f0:44:65:71:8f:47:75:0b:ed:d9:10:12:2b:ef:27:0b:
e7:ca:0e:da:3c:b4:a1:c4:13:77:09:cc:9d:92:df:bc:91:fa:
48:af:77:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:27:45 2026 by rpki-client