Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
File: sCnHJ8biLu2PvNHot2k5V40Nygo.mft (raw, json)
Hash identifier: CNf582PbXeBKc4hDvzDb+hJerBsC4N0gIHEoufbsKdg=
Subject key identifier: 75:EA:48:4A:AE:B0:F6:FE:77:AD:BC:1B:A3:EC:19:11:32:08:17:8F
Authority key identifier: B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
Certificate issuer: /CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Certificate serial: 019CAD59AC3FC94A4C30F17D76613282E1D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 07:01:01 +0000
Manifest this update: Mon 02 Mar 2026 07:01:01 +0000
Manifest next update: Tue 03 Mar 2026 07:01:01 +0000
Files and hashes: 1: sCnHJ8biLu2PvNHot2k5V40Nygo.crl (hash: CdLwCB6yRYZGgK4PdPtS0ZbPN1GmvMLqJ+jUxSeyRFc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:ac:3f:c9:4a:4c:30:f1:7d:76:61:32:82:e1:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b029c727c6e22eed8fbcd1e8b76939578d0dca0a
Validity
Not Before: Mar 2 07:01:01 2026 GMT
Not After : Mar 3 07:01:01 2026 GMT
Subject: CN=75ea484aaeb0f6fe77adbc1ba3ec19113208178f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:3c:34:d9:a8:fc:d7:66:4a:f2:2c:58:39:8d:
11:4c:28:2b:66:75:04:3b:81:82:04:6b:6d:d8:bd:
11:f2:39:92:64:d9:e3:16:91:da:e7:da:21:f6:ac:
d3:98:c8:38:aa:6e:54:11:bc:48:f0:7c:2e:48:9a:
d6:1c:16:a9:e3:1b:71:77:df:fa:83:31:4a:f7:ec:
1e:6c:99:a7:60:5d:aa:0d:35:36:7b:be:c4:c9:46:
a8:91:00:f6:c4:ad:0d:17:38:e7:06:19:8d:65:70:
bb:16:11:11:65:9f:5e:8b:c4:32:cb:06:51:1c:e5:
a4:8d:ad:26:dd:89:36:5f:30:ef:7a:5e:ed:90:60:
40:b0:cb:73:ea:e1:9a:42:63:16:1a:c6:a9:c7:58:
05:bc:e4:e2:82:35:7d:43:26:91:50:25:50:0d:44:
6a:11:24:1b:02:2c:38:34:36:48:d1:b6:85:7b:41:
9b:20:96:24:39:03:5c:76:33:1c:ef:99:2e:99:82:
95:18:b7:a0:3e:91:86:4f:59:96:74:8c:c8:06:8a:
58:91:b9:89:1a:7c:fb:80:06:89:3d:c2:03:6f:b1:
97:cc:76:03:6a:93:bf:22:8c:db:f9:f2:d1:f9:e3:
6b:7f:d9:38:91:52:0e:8e:c9:da:35:af:3a:59:88:
28:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:EA:48:4A:AE:B0:F6:FE:77:AD:BC:1B:A3:EC:19:11:32:08:17:8F
X509v3 Authority Key Identifier:
keyid:B0:29:C7:27:C6:E2:2E:ED:8F:BC:D1:E8:B7:69:39:57:8D:0D:CA:0A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCnHJ8biLu2PvNHot2k5V40Nygo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/4615a1-9052-40c6-a18d-a0d79924db6c/1/sCnHJ8biLu2PvNHot2k5V40Nygo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b3:e2:73:b0:f9:f4:a6:cb:04:63:2f:14:ba:d7:bd:1e:6b:23:
ac:d8:e8:4f:90:19:6c:05:02:15:4f:d1:22:ac:37:72:39:55:
54:58:6d:f7:28:cc:62:f9:1f:88:a0:bd:06:1a:da:b1:77:06:
6d:bb:54:a9:f5:97:04:7d:4a:f0:bc:b9:00:20:4c:5f:11:cc:
00:48:5f:67:d4:3e:ce:8f:05:d3:da:e8:52:71:60:b3:a6:2f:
cd:c0:b1:cd:6a:32:f0:10:b4:4e:32:a6:1e:d3:39:8d:2d:38:
98:db:2a:4d:27:b4:47:8e:27:73:ee:35:b9:52:24:3a:90:a4:
6b:29:31:c2:e0:d5:16:bb:e1:ce:42:ed:89:76:a9:fb:82:a1:
43:e9:27:81:c8:8b:03:b9:75:a2:a0:3f:22:93:41:71:64:e7:
18:b2:a0:84:c8:3e:98:e1:ce:31:97:ce:34:e9:42:87:fa:e9:
02:4b:54:db:be:d5:6c:52:f8:5f:29:47:6a:49:6f:ba:b2:82:
41:09:cb:13:c5:53:ce:58:5a:7a:57:66:3d:3b:b2:94:7f:71:
8b:6a:df:30:75:fb:07:90:dd:9c:a6:dd:54:2b:b9:a0:66:17:
78:f1:a9:4e:08:66:55:05:29:5e:2c:e1:04:00:8a:c5:82:bb:
a4:fc:4d:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:01:45 2026 by rpki-client