Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
File: S1KaTSL67yMTXW7_iRImZiPEklU.mft (raw, json)
Hash identifier: u44Y+/ylu1EmGoDUQxQot4R7DQnZ1yasG85eypeSwns=
Subject key identifier: 89:BD:69:76:4E:BB:C0:3F:19:51:E2:6A:E3:14:B7:A1:E9:26:8D:70
Authority key identifier: 4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
Certificate issuer: /CN=4b529a4d22faef23135d6eff8912266623c49255
Certificate serial: 019CABD8F50FE1F57374F12991916E2F1444
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
Manifest number: 1864
Signing time: Mon 02 Mar 2026 00:00:48 +0000
Manifest this update: Mon 02 Mar 2026 00:00:48 +0000
Manifest next update: Tue 03 Mar 2026 00:00:48 +0000
Files and hashes: 1: 8JTBQJyqUxIFa2P7t0W6NdfJ7CI.roa (hash: bvR7uwT6CerdByDmx1xzty2bHjJMPuqJsJHdeopKM9Y=)
2: IAcgHGi2lFpmozwldAdI6otCCf8.roa (hash: BMvZpTPd4wPptVWAuFWagP2MsiisY343W0Dlxwe5jk8=)
3: PGdzQPbVNWOAAR-X1BVXtgxofwg.roa (hash: dnLVHCkUAzZBzW5KJgWgdjrJ3f9Bmjq6lfV0HEQ9YaI=)
4: S1KaTSL67yMTXW7_iRImZiPEklU.crl (hash: GEfhZZPBPN1ybju+66UwrRjpAgZl/1+CZbktGFXGh5U=)
5: UeKejWBuRMBTzBVkphHiwU6F1G4.roa (hash: 4Va/WDHUaUbqMZBtGC/uemvvWN5D2KRgvotniu/r8z8=)
6: bspFglFUNNfB3BfctmrtidkBJJ0.roa (hash: b4qzed65X33LBM+fRSUuJ6eNd3msfTHJCKt5GOuVSMY=)
7: qz9PIkYKwP9WQn8ECobRGBHsRvQ.roa (hash: UZfIONpLoP6LhX/7gUJb7axOulXZjtNAWJUg7Z+a+S4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:f5:0f:e1:f5:73:74:f1:29:91:91:6e:2f:14:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b529a4d22faef23135d6eff8912266623c49255
Validity
Not Before: Mar 2 00:00:48 2026 GMT
Not After : Mar 3 00:00:48 2026 GMT
Subject: CN=89bd69764ebbc03f1951e26ae314b7a1e9268d70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f9:ea:5c:b5:f7:ce:94:67:38:45:23:42:f2:
0b:36:27:00:2f:f9:16:43:b1:84:83:7a:34:f2:fa:
ef:f2:0b:0b:28:9f:03:14:b2:4c:f2:d7:e0:40:ea:
d7:5e:9c:0c:de:f3:33:1c:76:33:48:d1:d2:75:db:
5f:52:f3:cc:65:20:61:51:b0:bc:8e:4a:0b:3e:80:
21:70:7b:6c:13:1f:58:93:f5:5b:40:31:9b:17:69:
d5:b1:62:25:37:a7:56:01:83:7a:1d:a8:28:05:c6:
fd:92:82:5d:dc:ce:36:d9:f4:35:68:91:5c:d5:b5:
ee:8b:4e:af:49:45:c3:7e:10:10:0a:f7:4b:45:e6:
10:65:e7:b1:69:72:45:19:1e:1a:58:8d:df:14:52:
8b:8c:7c:0d:fc:6e:e5:76:ef:09:e0:5d:d0:54:9d:
bc:8d:c1:3b:b1:66:5f:cf:df:41:50:25:cc:d5:c9:
32:27:f4:72:19:8c:7d:cd:3f:13:55:e5:2f:56:ab:
5c:d1:dd:38:38:9f:fc:22:ec:59:a5:74:2e:e5:84:
22:97:39:7d:3e:66:71:2f:29:a8:a5:52:fc:7c:72:
45:4b:dc:4a:3c:68:07:42:d4:6d:d5:f2:9f:eb:de:
46:7d:35:be:04:b3:03:34:4e:bd:c6:b4:15:d0:22:
c9:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
89:BD:69:76:4E:BB:C0:3F:19:51:E2:6A:E3:14:B7:A1:E9:26:8D:70
X509v3 Authority Key Identifier:
keyid:4B:52:9A:4D:22:FA:EF:23:13:5D:6E:FF:89:12:26:66:23:C4:92:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S1KaTSL67yMTXW7_iRImZiPEklU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d3/1d9b05-ec61-4c33-a097-36ae76ee983e/1/S1KaTSL67yMTXW7_iRImZiPEklU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:cf:fb:fe:6d:a7:8a:17:a4:00:84:40:40:8f:fc:19:ff:dc:
46:90:29:b0:0e:3b:1b:10:fa:1d:44:80:d7:a4:a2:08:60:00:
3c:98:c9:3e:5e:e3:52:8a:8e:ae:a0:9b:42:21:52:0a:7d:8c:
b4:a3:ef:f8:bb:73:66:fb:3f:8d:27:d3:17:24:8e:b1:fd:73:
eb:71:6d:a6:f6:af:95:4b:f9:bf:a8:f8:76:e2:08:1e:b8:3b:
b4:24:24:57:02:69:23:79:11:da:d1:e3:f8:1c:06:06:84:ee:
0b:30:cd:de:cc:26:5a:a5:2d:b6:5b:25:d1:00:3a:63:36:ad:
1d:2e:db:0b:7d:06:ad:44:6e:49:7d:dc:b6:aa:99:53:65:f1:
49:51:ed:43:93:52:a1:40:2f:b1:0c:84:74:cf:2a:93:8e:55:
6e:2e:83:c8:3c:0d:bd:7c:d0:da:37:96:55:55:46:8f:16:e7:
ce:7c:e8:c6:ff:ab:c0:98:02:0d:77:78:fd:61:72:fb:8b:e9:
48:0d:de:50:4e:52:4a:20:26:2f:c5:ac:3a:52:56:d0:19:0d:
bd:8a:df:d2:e3:a5:7e:ef:03:2f:5d:4e:3f:00:b5:01:b1:e3:
d3:c2:c5:84:db:1e:d7:e0:bf:41:38:2d:8c:10:c8:23:c9:a7:
4e:91:d7:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:44:59 2026 by rpki-client