Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
File: S8hY5QhWNUaEpdBKPsw1klgNVI0.mft (raw, json)
Hash identifier: JltXvBumN/0THL+8pxBOHlJYd6J4lqhMXFusqG6kSpE=
Subject key identifier: 18:24:1A:DE:F2:F6:0A:E4:3A:15:68:98:FD:3C:92:C9:AF:BC:67:1E
Authority key identifier: 4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
Certificate issuer: /CN=4bc858e50856354684a5d04a3ecc3592580d548d
Certificate serial: 019D2A3BC3B2A34692D71FB95F0273ADC870
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
Manifest number: 0B46
Signing time: Thu 26 Mar 2026 13:00:52 +0000
Manifest this update: Thu 26 Mar 2026 13:00:52 +0000
Manifest next update: Fri 27 Mar 2026 13:00:52 +0000
Files and hashes: 1: S8hY5QhWNUaEpdBKPsw1klgNVI0.crl (hash: t3aswC6uSq4yco+P8KwE1/nFs5kMuBGlPdcP29dQdOY=)
2: hOCqHr0-rwjOn6wU8z8C-ggKXAo.roa (hash: aczilg5expuAqkln7fFu+xj4eV4HRQvyQA+wDQF1/60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:c3:b2:a3:46:92:d7:1f:b9:5f:02:73:ad:c8:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc858e50856354684a5d04a3ecc3592580d548d
Validity
Not Before: Mar 26 13:00:52 2026 GMT
Not After : Mar 27 13:00:52 2026 GMT
Subject: CN=18241adef2f60ae43a156898fd3c92c9afbc671e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7e:a2:c6:a6:ab:b6:7d:4e:4a:d5:42:dc:3b:
82:97:95:f1:d9:35:2c:ff:bf:77:17:24:80:04:b4:
5f:2e:06:03:76:48:0f:11:44:62:6e:4c:49:72:e8:
ae:b4:20:7e:da:85:5d:af:c7:3a:4c:bd:61:60:98:
e0:ff:43:bd:07:e4:11:1b:55:65:32:bd:83:42:16:
7a:a4:cb:c3:c0:cd:bc:64:bf:dc:a1:4d:16:56:a8:
db:b6:a0:52:96:3f:b8:43:1d:63:c2:47:07:98:ee:
4d:9c:c3:22:be:f4:e2:96:2c:07:66:01:67:a5:0f:
62:dc:0a:50:96:a5:64:14:00:df:25:7c:47:05:f8:
41:dd:6c:45:83:98:23:16:f7:a2:93:17:3f:4b:54:
a5:72:ff:44:1b:37:4a:70:b0:d6:60:3c:7e:c2:c3:
80:c7:54:e2:21:4e:19:34:ba:e3:cf:e4:6f:3b:3d:
ea:b7:ce:72:de:eb:3a:a2:1e:6e:05:71:40:05:59:
45:3a:73:6c:4a:00:99:f1:c1:a4:93:40:04:fe:7e:
c7:4d:a6:f0:82:aa:34:40:e2:e6:05:42:a8:5f:81:
df:cb:99:de:a3:c2:cd:f9:a8:d7:a0:f9:eb:ba:43:
d7:f3:28:6a:cc:fb:10:ca:73:4b:da:b4:06:a3:9d:
1e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:24:1A:DE:F2:F6:0A:E4:3A:15:68:98:FD:3C:92:C9:AF:BC:67:1E
X509v3 Authority Key Identifier:
keyid:4B:C8:58:E5:08:56:35:46:84:A5:D0:4A:3E:CC:35:92:58:0D:54:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8hY5QhWNUaEpdBKPsw1klgNVI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/267966-f039-4174-810d-3f4ef81a2e53/1/S8hY5QhWNUaEpdBKPsw1klgNVI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:c0:47:d8:34:22:10:e7:8d:e2:ad:56:82:d2:8b:de:e8:62:
b0:f5:ea:21:ea:46:69:b4:96:7e:41:b0:4d:ff:d1:04:1c:31:
c9:2d:55:5c:b4:19:39:af:a1:dd:78:42:fd:5d:82:a9:61:99:
46:55:9e:07:d2:d9:82:cd:7e:04:45:76:d8:73:7f:bd:da:e6:
d6:77:c3:06:09:63:1b:81:68:fc:96:39:68:dc:ec:f1:f5:a0:
07:59:3b:ee:bd:d5:c0:8d:5c:e6:23:67:6f:51:9e:09:cb:c8:
4a:3b:67:ab:23:32:a5:1e:0f:cb:85:34:c4:d4:b1:f4:ea:83:
1b:c2:94:52:ee:0b:8d:cd:76:75:e7:59:5d:54:87:28:8c:ab:
34:f1:4f:63:8f:f9:a1:d8:cc:09:31:9a:75:6e:07:7b:8f:99:
78:86:3c:15:60:02:88:77:9b:4d:7f:e1:e2:72:62:98:ce:00:
f1:66:00:b7:47:88:a4:3c:ff:e5:3f:1b:9d:75:05:92:57:92:
63:4d:77:7a:20:c0:6f:c5:53:2a:7a:7b:10:46:0b:c6:7e:48:
f4:3e:ac:aa:2b:c8:60:a1:02:de:1b:50:ab:7c:5e:d5:c6:88:
5b:df:e1:90:be:1b:3f:33:b5:0e:e9:bc:db:04:72:b8:9f:f4:
c4:d2:23:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:46:26 2026 by rpki-client