Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
File: sxk4vHICgkRLq9OyazSStFats5c.mft (raw, json)
Hash identifier: TMVvKCsxA62NWhThNX1j1qQ/RaPWsaZbM8/N8Sp985Y=
Subject key identifier: E3:F2:4B:30:24:96:2F:1F:F8:76:0B:3D:02:91:14:BD:58:8A:44:48
Authority key identifier: B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
Certificate issuer: /CN=b31938bc720282444babd3b26b3492b456adb397
Certificate serial: 019D28BBAFBAE1A11D77806BE9287CF3FAFC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
Manifest number: 0BA6
Signing time: Thu 26 Mar 2026 06:01:21 +0000
Manifest this update: Thu 26 Mar 2026 06:01:21 +0000
Manifest next update: Fri 27 Mar 2026 06:01:21 +0000
Files and hashes: 1: eaw_KDLii_O0OZBia4ceyJvvRgg.roa (hash: 785x1F9Iz8gQQoHICXoHX9Lh+Vh5PnxM3BQ0Ya5+hPc=)
2: sxk4vHICgkRLq9OyazSStFats5c.crl (hash: rx3PEKsC7UOpN6bwZhdbJfOxaR+MPRGSDT76Ljj6EaY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:af:ba:e1:a1:1d:77:80:6b:e9:28:7c:f3:fa:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31938bc720282444babd3b26b3492b456adb397
Validity
Not Before: Mar 26 06:01:21 2026 GMT
Not After : Mar 27 06:01:21 2026 GMT
Subject: CN=e3f24b3024962f1ff8760b3d029114bd588a4448
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:e9:7d:0c:ac:09:41:12:90:ac:b1:39:60:f3:
e0:e9:c5:ca:17:69:d7:9a:8d:a1:10:eb:2d:6c:dd:
db:05:ac:52:18:d9:74:f9:a0:15:d4:e5:4c:19:d6:
ee:09:a3:74:25:33:09:5c:84:63:7a:b4:55:15:68:
16:e1:1a:14:88:8f:09:d9:79:13:57:f7:94:a5:fd:
25:b9:cf:0b:47:d5:d0:1f:c1:9f:c8:ab:ca:a8:71:
8a:4d:79:60:b0:b4:73:e4:a5:37:88:87:f2:7c:fa:
8d:13:2b:6e:96:9c:96:54:e8:c5:6e:de:02:38:c0:
4c:06:98:89:32:2c:87:06:af:64:a6:d9:48:7f:3f:
56:d5:b1:27:78:7f:d4:9e:eb:99:13:76:87:06:23:
34:4c:a1:45:7d:df:03:40:9d:10:7c:4b:1d:4a:e1:
b6:15:dc:1a:af:7a:1f:4e:50:f7:26:9e:e1:90:5b:
27:44:af:e6:6c:44:6d:e0:c4:d3:98:0f:50:61:6a:
fb:15:18:03:bf:53:0e:3b:a1:08:be:07:56:ea:3e:
47:08:7e:d3:35:a5:1c:71:51:d8:8e:a5:84:38:f7:
d5:f4:51:b0:a1:a2:40:99:e7:3d:f0:ae:e3:f7:8a:
54:a2:50:34:5b:00:a0:d2:d1:23:2f:d9:c9:6b:c9:
ea:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:F2:4B:30:24:96:2F:1F:F8:76:0B:3D:02:91:14:BD:58:8A:44:48
X509v3 Authority Key Identifier:
keyid:B3:19:38:BC:72:02:82:44:4B:AB:D3:B2:6B:34:92:B4:56:AD:B3:97
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxk4vHICgkRLq9OyazSStFats5c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/75dede-5449-4d47-9b51-9b5df85c1140/1/sxk4vHICgkRLq9OyazSStFats5c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:cb:d4:e8:27:5c:94:33:4a:79:9e:c3:1f:6f:8c:69:de:97:
8f:96:5c:78:ca:97:0b:ad:e1:96:2e:bc:9d:b6:13:27:f0:b2:
6c:98:c1:c6:ea:fb:1f:29:79:0f:57:78:75:df:39:83:66:a2:
ac:88:3a:27:24:af:94:28:ee:a4:7e:ec:81:01:14:fa:4f:e7:
af:5f:02:a3:ab:31:99:0d:e8:49:91:09:b6:b6:b3:89:0f:ef:
e4:8e:ef:e2:0b:6d:34:8c:05:27:b4:e9:54:b2:d9:40:26:5a:
4e:75:68:66:82:37:42:ca:ee:73:d3:eb:e6:56:f5:4d:56:68:
e9:82:2f:92:04:13:49:f3:ca:a6:93:da:bb:cb:6c:45:19:a2:
5b:df:3b:46:8c:ab:d0:15:68:ed:42:df:7c:ce:ef:b8:fe:be:
ac:60:a4:80:25:c3:a5:ca:ca:24:c4:3c:de:3c:58:3e:26:0d:
b2:6c:6e:26:0e:f4:93:5b:25:b3:04:73:92:b2:76:79:00:49:
ad:13:ac:37:09:dd:06:26:a2:87:63:89:4e:ca:7f:65:a4:68:
78:55:d9:55:bf:ba:1e:c1:bd:b7:7a:3f:8a:6c:41:74:3c:0b:
0a:39:67:af:a9:b0:b8:45:c7:b3:24:eb:b3:32:6a:53:32:be:
e8:70:00:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 16:53:57 2026 by rpki-client