Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
File: S2HMijZcxAOCox2tVPbLcj9YdYo.mft (raw, json)
Hash identifier: 6nMptT4APuF+nX+8jERFYlv1n5upCZjd0zEWBOCKEt0=
Subject key identifier: 05:48:21:F7:87:1A:6C:36:12:16:2F:D8:1C:F6:0C:40:48:AA:47:7D
Authority key identifier: 4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
Certificate issuer: /CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Certificate serial: 019CAA8F88B206D660FAA3155629C846CE30
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 18:00:59 +0000
Manifest this update: Sun 01 Mar 2026 18:00:59 +0000
Manifest next update: Mon 02 Mar 2026 18:00:59 +0000
Files and hashes: 1: HpEQ35wYcpdgu7Xx3TWMgnDMgr4.roa (hash: R5O1iCublXAekieUKPQ0Y89Zyi72MgQUUVwuCgdlYZM=)
2: S2HMijZcxAOCox2tVPbLcj9YdYo.crl (hash: ynhK7YahqNiiRLQk5qynjzvYZyHoiWm5y63gDCV26zE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:88:b2:06:d6:60:fa:a3:15:56:29:c8:46:ce:30
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b61cc8a365cc40382a31dad54f6cb723f58758a
Validity
Not Before: Mar 1 18:00:59 2026 GMT
Not After : Mar 2 18:00:59 2026 GMT
Subject: CN=054821f7871a6c3612162fd81cf60c4048aa477d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:48:64:53:e3:95:02:39:ef:ef:8a:50:32:c6:
34:80:c1:fe:4d:4c:bc:55:8c:b0:5b:fe:4a:20:9d:
4e:ac:d7:0b:fa:bd:09:c5:62:06:ae:3c:07:b4:e0:
2e:b5:c0:71:5e:50:47:18:c4:0c:99:76:08:9d:ac:
dd:5f:96:cd:d8:8c:d9:33:1d:e0:6b:81:53:3b:f7:
03:ef:7c:7c:21:96:c0:b5:e9:7f:45:a8:f5:24:52:
14:78:2f:1b:c1:a0:aa:fb:be:44:75:d0:c2:9e:c8:
ed:8b:ee:21:68:5e:31:62:d9:25:c1:d5:50:dc:63:
cc:cc:9c:a0:70:90:7a:36:64:b3:57:58:f9:c2:c8:
e5:2e:31:69:63:6d:8f:b9:fc:a0:c8:ce:47:2d:d5:
3d:5b:63:9e:c1:d8:f6:62:cb:cd:63:75:b3:73:f6:
ba:d5:26:45:fd:f6:ac:63:c5:7a:76:08:3d:ca:2f:
39:fe:c4:e2:d6:10:a6:78:bf:bd:7e:3b:5f:9a:d7:
7a:bd:31:b9:13:65:bb:ef:6d:33:de:b5:45:0a:2a:
de:eb:a4:84:3e:03:d4:36:b4:58:47:50:9f:2c:9b:
ff:06:0e:4a:c4:df:f5:ab:4c:5e:e6:2f:c0:0c:77:
87:31:0c:19:b1:27:0a:6b:ae:a7:d7:b5:95:02:67:
91:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:48:21:F7:87:1A:6C:36:12:16:2F:D8:1C:F6:0C:40:48:AA:47:7D
X509v3 Authority Key Identifier:
keyid:4B:61:CC:8A:36:5C:C4:03:82:A3:1D:AD:54:F6:CB:72:3F:58:75:8A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2HMijZcxAOCox2tVPbLcj9YdYo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/6b9ec0-9b10-4443-b5e6-c4fd53ebeb67/1/S2HMijZcxAOCox2tVPbLcj9YdYo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:1a:3a:f6:27:4a:5e:de:92:68:23:c8:31:dd:36:03:87:ac:
18:38:6a:10:c7:dc:3d:f1:ff:fc:4f:cf:92:0d:50:f1:be:37:
15:65:7b:e6:11:88:cb:56:30:79:99:28:59:d6:3e:54:fb:c8:
1b:81:89:9c:44:6f:3a:c1:f6:b4:70:c6:a5:e7:c2:3c:09:7b:
fe:06:38:b1:b6:db:4a:7b:f6:c8:4b:63:2c:d1:08:ba:bf:53:
c9:ed:96:e3:ea:c9:37:68:84:31:09:9a:ef:dc:30:5d:aa:40:
6f:0f:ca:5f:89:23:1b:cc:23:ce:ed:2d:f5:e9:29:5a:d5:b3:
cc:a7:2c:9c:43:ef:43:67:70:b0:f7:02:f5:c1:0b:cd:4f:5e:
3d:82:4e:39:93:32:69:81:4a:1e:cb:9d:b0:c0:aa:d7:8a:13:
8c:91:9b:c8:4d:13:1d:92:66:be:63:6d:46:40:89:ad:2a:5a:
fa:a0:c1:8d:01:98:c6:39:af:64:2c:b4:d4:96:05:e8:b6:b3:
43:67:86:0f:52:2b:fb:80:c0:68:2f:41:54:ff:2b:6c:1d:a2:
9e:f6:70:8a:2e:00:cf:c0:60:8d:c5:4b:5f:eb:f2:5e:4d:09:
9e:04:69:12:6a:a5:06:80:4b:91:2e:a9:aa:d5:6d:8b:46:74:
86:50:f3:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:06:43 2026 by rpki-client