Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
File: S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json)
Hash identifier: a/3KvKk7tSocOMXSqnJcXJYqgAQ7ViaF6tQJKXB73Pg=
Subject key identifier: A5:B0:56:B4:54:ED:B5:5A:E4:2C:1A:2B:DC:66:00:68:88:A8:EB:70
Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
Certificate issuer: /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Certificate serial: 019D273AB781D085F808C30BD8806020388A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
Manifest number: 09B2
Signing time: Wed 25 Mar 2026 23:00:52 +0000
Manifest this update: Wed 25 Mar 2026 23:00:52 +0000
Manifest next update: Thu 26 Mar 2026 23:00:52 +0000
Files and hashes: 1: 76Y2-HUPTiLdTCSIpYCkR2ZgGcQ.roa (hash: aIEXIJxpvH5c1txE7w8Ef9ChmAewpEGy4MTuP+uMjCA=)
2: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: 7Kxh/jzks2LIA6guhZ14oLdjxInuZjERPV0QgaefDLw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:b7:81:d0:85:f8:08:c3:0b:d8:80:60:20:38:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Validity
Not Before: Mar 25 23:00:52 2026 GMT
Not After : Mar 26 23:00:52 2026 GMT
Subject: CN=a5b056b454edb55ae42c1a2bdc66006888a8eb70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:70:83:db:2f:57:d3:e5:28:63:8d:8d:b9:
81:7e:80:e2:75:a8:a4:92:d5:b0:00:01:82:0c:f3:
8d:ab:e9:90:1a:e1:c1:3b:3c:99:44:39:54:54:3c:
c5:2a:e5:52:6d:c2:ed:95:97:ac:3e:f4:4d:c2:ee:
91:b1:76:d8:1c:ce:22:bb:4c:49:ad:ad:e1:fb:a4:
8f:e9:83:64:d0:4b:bc:2b:01:55:76:5c:f9:ee:77:
ec:82:b1:e7:c4:65:fd:a3:1e:69:45:a5:45:9f:a2:
4c:99:51:0e:bf:44:e0:48:20:78:c9:77:2e:7b:c9:
9a:d4:1d:1f:98:cc:d1:c0:4e:1b:27:fd:2c:ac:d5:
8c:9e:af:0a:32:e8:17:1d:b9:52:8f:70:5f:09:45:
4f:68:85:ad:e4:86:ff:cb:07:67:aa:71:07:43:d3:
bc:c8:ba:84:e2:aa:f5:13:19:85:44:c9:b5:49:6c:
1c:9d:18:d3:26:74:58:4f:63:92:16:ad:f0:54:94:
89:a5:42:5f:36:9d:a7:8c:0e:0c:0f:86:66:63:c5:
99:43:0c:c7:c1:8e:93:6f:d7:b9:c2:fe:ea:94:b6:
90:53:79:4e:65:6e:d5:b7:53:2d:b0:24:11:a6:1d:
8a:64:27:ac:dd:b0:77:06:53:8c:55:e9:6c:36:b6:
dc:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:B0:56:B4:54:ED:B5:5A:E4:2C:1A:2B:DC:66:00:68:88:A8:EB:70
X509v3 Authority Key Identifier:
keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:ff:a5:d1:db:61:05:82:36:1f:28:bb:fc:f3:7d:d0:1d:8f:
75:e5:e8:d8:27:1b:bf:f7:fc:e1:b4:99:d4:08:6b:8f:b1:e1:
b6:a6:2e:49:50:d8:42:31:5a:b9:55:b1:82:46:b5:82:6f:26:
45:a0:e8:f2:db:24:7c:89:27:0e:3f:c7:a3:2b:ad:e9:a7:56:
05:09:43:02:39:7a:95:33:d4:c8:38:cb:e8:bc:4e:ac:53:89:
5d:17:63:d2:15:d9:8c:f1:73:ff:2b:e0:f1:29:a8:68:f2:e1:
2c:98:9b:f8:2c:28:82:32:f3:39:7e:a1:5d:bf:0b:48:72:49:
0b:e9:c5:5b:3a:16:0b:61:7a:01:13:3c:27:90:bd:d0:5a:7a:
eb:72:8b:4c:77:ea:21:e7:85:aa:9b:57:74:f4:72:86:a7:1d:
a4:a9:65:83:db:25:a5:cb:6e:60:01:31:9b:d0:3e:0b:05:c7:
3e:ad:04:b8:0d:bf:f1:9d:98:cf:09:10:5c:84:dc:02:dc:eb:
b9:73:ef:6d:6d:7a:a2:b0:5d:f4:0f:30:4e:2f:e8:09:69:5c:
41:95:16:2a:f9:f7:20:58:2c:2c:ba:9b:ba:80:e8:fc:de:40:
c9:9b:f6:3f:4d:d9:18:a5:73:f9:bf:71:ba:18:2a:e7:3d:2e:
5a:86:bf:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:54 2026 by rpki-client