Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
File: S-iWpBlThdS5S3KVmIzPv6ismcU.mft (raw, json)
Hash identifier: 5PnBn5PVfqcalemkHOmUDVuGjZ6D+CE/1Ibz/2S3pUM=
Subject key identifier: 9D:78:B4:E8:0A:F4:91:55:D3:D2:27:22:7B:28:DC:C4:82:74:99:98
Authority key identifier: 4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5
Certificate issuer: /CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5
Certificate serial: 019D27E01FBBA74AABC441E24CFE011A7AF8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
Manifest number: 0F1B
Signing time: Thu 26 Mar 2026 02:01:32 +0000
Manifest this update: Thu 26 Mar 2026 02:01:32 +0000
Manifest next update: Fri 27 Mar 2026 02:01:32 +0000
Files and hashes: 1: FSFyylYZoJ__LJ0VFZP-2aItmuE.roa (hash: 4TUbcjRKjpEozpWO2rDakc6T9yJDVcy+nvZz/pOEz9A=)
2: S-iWpBlThdS5S3KVmIzPv6ismcU.crl (hash: iuCGt201OwWJtA9wpNRSghSw8wiNeqr+13e11d/1JF0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:1f:bb:a7:4a:ab:c4:41:e2:4c:fe:01:1a:7a:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4be896a4195385d4b94b7295988ccfbfa8ac99c5
Validity
Not Before: Mar 26 02:01:32 2026 GMT
Not After : Mar 27 02:01:32 2026 GMT
Subject: CN=9d78b4e80af49155d3d227227b28dcc482749998
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:63:63:ff:c5:1b:b0:ff:a8:0e:9e:ee:3b:ea:
0b:ed:12:0f:e8:9a:d4:d0:81:2c:0e:9f:32:65:40:
05:f7:94:11:a1:48:40:ca:2c:9a:18:1d:b3:ad:27:
00:54:11:9d:28:67:b4:1f:90:76:0a:06:a2:e8:4f:
bd:76:ef:23:66:3d:43:4b:4a:11:08:6b:b9:30:cc:
1f:bc:42:d4:4d:20:2f:25:4b:8b:6a:66:6c:19:91:
77:d7:d7:01:7d:ce:bb:01:57:0d:1c:7a:b3:63:94:
de:3e:76:36:c7:a2:a3:bb:d4:51:33:33:b6:f0:51:
5f:ea:8a:46:4a:13:5b:9f:4a:41:8e:1b:d0:7c:7d:
c0:47:fe:25:96:6a:d2:d8:76:fd:3a:ae:d9:34:b1:
d8:86:35:1c:ee:14:ff:96:7e:9a:7e:ef:61:6c:b2:
6e:3a:e7:cb:45:74:f9:9e:04:65:32:b0:d3:69:a0:
7a:37:8f:af:38:e8:d9:f9:19:06:75:5e:a0:96:62:
37:34:bd:3e:c4:a7:34:59:86:14:6d:f8:0e:d7:fb:
c5:21:d4:c7:0c:d4:b0:84:2c:2f:90:a5:fa:3b:e1:
17:5b:c3:67:8a:da:3a:55:15:9f:6d:7c:bd:7d:06:
2c:ed:1e:c7:f0:55:7a:74:51:08:ea:3b:ee:d4:4b:
f6:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:78:B4:E8:0A:F4:91:55:D3:D2:27:22:7B:28:DC:C4:82:74:99:98
X509v3 Authority Key Identifier:
keyid:4B:E8:96:A4:19:53:85:D4:B9:4B:72:95:98:8C:CF:BF:A8:AC:99:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S-iWpBlThdS5S3KVmIzPv6ismcU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/7a13ee-b731-4ff9-bef0-4b1581f09d3b/1/S-iWpBlThdS5S3KVmIzPv6ismcU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:fd:b9:89:2b:5c:fa:09:4e:10:b0:e4:f1:77:df:b5:21:3f:
43:07:d3:3a:e6:75:79:28:64:49:85:60:64:3d:98:b0:8d:56:
03:8f:1c:13:a0:24:28:10:d1:00:e9:f5:2f:56:57:e6:b1:7c:
1c:e5:e7:ea:a7:4a:c5:c0:5a:3c:96:87:5d:fe:c1:2c:22:73:
66:6c:89:f1:bf:32:fe:7a:c8:59:0e:bc:cd:c7:97:b9:a4:95:
cc:99:ca:10:99:83:bd:82:90:10:b7:33:c0:d4:55:d9:2a:50:
0c:bb:d5:06:bc:f3:54:ca:fa:1d:05:18:b3:7d:66:63:95:06:
b3:03:35:c5:7e:17:3c:2a:c5:5d:de:36:bf:5c:08:be:74:3a:
73:fb:d2:fc:b1:ef:aa:91:80:17:44:00:ae:93:3f:28:02:04:
19:3f:2d:e5:31:56:91:4d:2f:9c:7b:f7:99:bf:fc:f5:91:38:
69:d2:03:51:b6:04:40:db:cb:91:0b:00:fc:07:7a:89:3e:73:
55:fb:d0:19:19:d2:27:6e:88:27:11:f3:2a:35:43:02:12:3c:
7f:f6:7c:9b:11:10:ed:b0:e2:43:09:93:4a:ad:f9:0b:34:07:
5e:77:12:23:f7:b4:d0:4e:0f:79:fa:39:9c:e5:99:3c:14:57:
ac:ed:4e:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:35:07 2026 by rpki-client