Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
File: SanokeBtQid9xPtfvWnpq9jimIM.mft (raw, json)
Hash identifier: uOns/SPx9VuEgouYPOh2WlcZuwdcFYUTKzLDHLzQmL0=
Subject key identifier: 92:0E:A6:21:A1:21:1C:4F:36:B9:40:EE:91:46:13:C9:73:BC:1E:EB
Authority key identifier: 49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
Certificate issuer: /CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Certificate serial: 019D25F10E8E473018B3875A6FF1B459A8A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
Manifest number: 1889
Signing time: Wed 25 Mar 2026 17:00:47 +0000
Manifest this update: Wed 25 Mar 2026 17:00:47 +0000
Manifest next update: Thu 26 Mar 2026 17:00:47 +0000
Files and hashes: 1: 2IRl_xTGVsHML4htKUJ_WxgAa6I.roa (hash: Whl5xYBFDPOniYmTRL6Ne857if6B4W9DGqAY9abFaZ0=)
2: SanokeBtQid9xPtfvWnpq9jimIM.crl (hash: irxBCULXCNu0+/fMcCJMaadpg8uA79LHkLan1m03n1c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:0e:8e:47:30:18:b3:87:5a:6f:f1:b4:59:a8:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49a9e891e06d42277dc4fb5fbd69e9abd8e29883
Validity
Not Before: Mar 25 17:00:47 2026 GMT
Not After : Mar 26 17:00:47 2026 GMT
Subject: CN=920ea621a1211c4f36b940ee914613c973bc1eeb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:16:6a:b1:1c:28:c0:6d:1e:5a:e8:9b:32:0c:
43:4a:ff:3c:0c:e6:44:88:eb:cd:6f:88:c6:da:03:
9f:cb:46:1d:b6:d6:30:bd:91:c8:8b:bc:0c:f8:fe:
03:04:f6:14:65:8e:5c:3f:5d:3e:28:98:e4:e8:e4:
4e:84:a3:6f:2b:59:9e:9c:86:24:68:6c:c3:ac:e3:
7a:4e:50:4b:3b:77:fa:d8:d8:54:be:b7:88:b1:57:
3a:75:e2:bc:f6:42:ae:30:46:80:27:fc:30:bc:08:
50:cc:05:5b:27:db:20:1a:9c:b1:d6:d5:5b:bd:62:
06:b7:40:5c:54:84:57:c9:52:00:c9:6a:a0:e5:2d:
b9:a1:f9:71:e2:8b:dd:f8:5b:03:0d:05:b7:a6:66:
18:e6:47:8a:1e:39:17:63:93:d2:a9:01:2f:5b:0e:
7f:77:a1:fd:d9:93:e7:46:dc:a4:04:a7:e9:a6:6b:
66:f7:d4:3e:11:01:7e:a7:cb:0c:6b:fd:b2:77:72:
39:d2:df:c9:a3:b3:98:5a:45:43:ca:19:41:83:8e:
44:cd:ad:1b:b0:e3:ab:6d:ca:54:62:d0:76:b5:b5:
2c:56:c0:f4:4f:c5:da:b7:6d:91:7f:9c:a5:0f:35:
35:e7:ae:75:a3:ef:86:e6:5f:95:d1:48:cb:bd:79:
a8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
92:0E:A6:21:A1:21:1C:4F:36:B9:40:EE:91:46:13:C9:73:BC:1E:EB
X509v3 Authority Key Identifier:
keyid:49:A9:E8:91:E0:6D:42:27:7D:C4:FB:5F:BD:69:E9:AB:D8:E2:98:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SanokeBtQid9xPtfvWnpq9jimIM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/53696f-f973-47fb-8d79-addc6d4bb2e7/1/SanokeBtQid9xPtfvWnpq9jimIM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:12:8f:b8:a3:e2:53:b4:bf:59:0c:22:4f:f9:b5:d9:35:20:
32:ea:f8:c8:10:47:81:3c:95:77:d5:54:79:0c:98:a4:74:3a:
07:eb:aa:6e:2b:6a:4f:57:8b:5e:36:3a:53:1c:94:2a:ee:52:
01:4e:79:23:58:ae:2f:d5:e2:07:09:70:d2:3b:e9:6b:4e:7b:
45:97:dd:1c:cd:21:d0:18:d2:aa:bf:58:7c:df:41:9c:5d:77:
c4:d4:2a:6d:1d:43:d3:0f:c9:bd:cf:ea:ef:92:a9:e8:96:53:
86:94:92:b9:0d:00:fa:07:38:78:93:1e:8e:45:e9:bf:c2:60:
fc:5a:33:69:95:06:f2:81:35:7e:be:ff:da:17:a5:05:4c:bc:
c9:72:36:36:23:cf:f4:6a:3c:52:0f:7a:ad:50:cb:85:71:aa:
2a:8e:75:29:eb:6a:59:cf:32:2a:bc:b4:d7:0c:da:da:49:07:
55:6b:c1:01:77:8c:44:7d:c6:3d:37:6e:1a:84:4a:93:82:28:
54:f9:82:7b:f8:0a:17:f7:a8:80:f6:ac:86:4d:b5:aa:89:fc:
50:20:11:0b:6a:ac:12:02:16:fe:16:4d:9c:96:52:1f:df:b0:
57:23:85:b1:19:1d:18:32:2f:02:c3:32:ce:78:d4:0d:8a:b4:
9f:87:35:08
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:14:46 2026 by rpki-client