Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
File: sUq6i2B0k5NHjoPDYObL110Vb4k.mft (raw, json)
Hash identifier: 6uHeTD+tIbJ5wwTX8pGEwrI+rceaXlcQ6vPGZcZ74oQ=
Subject key identifier: D1:12:01:17:BE:4F:19:EF:CC:3F:07:9F:82:CF:23:3B:6F:2C:88:C4
Authority key identifier: B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
Certificate issuer: /CN=b14aba8b60749393478e83c360e6cbd75d156f89
Certificate serial: 019D258356E32399C95DD2C8E3A78BF05A2E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
Manifest number: 189B
Signing time: Wed 25 Mar 2026 15:00:57 +0000
Manifest this update: Wed 25 Mar 2026 15:00:57 +0000
Manifest next update: Thu 26 Mar 2026 15:00:57 +0000
Files and hashes: 1: 078JTG5aC7kT5hpXnvM9TEHYqCs.roa (hash: w5aP29yr0A3HT+G60IqAWj6UVNMXP2SYbaHF/75q+GE=)
2: 4f2DxLMVStxmUYg88VDQQBtlZGE.roa (hash: Uz7D5fgERb2SSzXvqC8vei90mKOO6rRdvCUGo8Z1qrQ=)
3: JFY54QWecCHKfWOIhQ6eHfwQTI8.roa (hash: c6DsCEx7huHmXsJraso36n2V45N6eM42EXKuT1wNzh8=)
4: UaKvatt20WH9gQlIsSy6W-ufg50.roa (hash: sbiiw8/EVICmdfUZZ0B0j5ynOnqwjUcr4uhl+cHCvEs=)
5: W684H9ZjjArniCEjwC9yQkmGBu0.roa (hash: U9JAd0XMmzuPxuOF9oeLFcesJRjPBSGh98hvwqHnhgM=)
6: kCsBaUzl0VJzCqTvefgRf9Ora-Y.roa (hash: xGacFlbxros0DtBMF2AYVgiGm+bKu4KlmyADoX0xnf0=)
7: sUq6i2B0k5NHjoPDYObL110Vb4k.crl (hash: Uiy16iBkzE5hNbqeoCn2OCdh+vDcO7Ine19D7WFdA1g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:83:56:e3:23:99:c9:5d:d2:c8:e3:a7:8b:f0:5a:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b14aba8b60749393478e83c360e6cbd75d156f89
Validity
Not Before: Mar 25 15:00:57 2026 GMT
Not After : Mar 26 15:00:57 2026 GMT
Subject: CN=d1120117be4f19efcc3f079f82cf233b6f2c88c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:8b:05:52:75:08:17:56:94:c2:bb:b5:af:0f:
27:8a:20:bf:75:22:61:ec:10:92:25:08:14:52:7f:
4b:80:70:91:07:19:ad:ef:ed:83:60:41:72:ff:8c:
2f:64:22:d4:9f:18:c2:83:16:a1:10:d7:9b:4a:55:
4f:8c:34:4e:5b:76:7f:37:6b:f5:fa:2c:d2:1e:a2:
68:bb:70:41:c4:90:13:77:d5:e6:e3:80:2b:67:a4:
b0:06:43:a4:9a:52:22:8a:27:5f:4a:44:3d:52:6b:
53:83:99:9c:d4:8d:23:95:88:2b:bc:89:c9:a5:80:
b6:a4:94:66:00:4a:a7:fb:88:a0:4f:c5:25:09:68:
76:75:db:b6:78:ac:8a:37:e9:a8:07:64:55:88:e3:
19:2e:6f:e5:75:19:4e:26:cb:f3:08:80:89:9a:19:
f4:8b:b3:10:60:03:19:72:cf:35:a2:7d:e8:1e:5c:
b6:50:73:b7:0d:bf:96:c5:1f:e0:59:45:c9:c0:dd:
ef:a1:d1:93:d8:99:65:63:3f:24:13:e2:c3:d6:7d:
a3:30:e9:0c:fe:25:ea:36:01:a7:77:e4:16:9d:14:
f1:06:8d:f6:23:3a:0d:5e:e6:07:54:90:f4:29:f3:
fa:55:49:65:2b:6b:ba:f5:ca:36:15:25:dc:18:f5:
3f:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:12:01:17:BE:4F:19:EF:CC:3F:07:9F:82:CF:23:3B:6F:2C:88:C4
X509v3 Authority Key Identifier:
keyid:B1:4A:BA:8B:60:74:93:93:47:8E:83:C3:60:E6:CB:D7:5D:15:6F:89
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sUq6i2B0k5NHjoPDYObL110Vb4k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/461685-073e-41af-9bb6-cf6c305212eb/1/sUq6i2B0k5NHjoPDYObL110Vb4k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:d5:e4:28:f0:bb:88:01:22:34:d0:4e:c7:58:6b:b7:6b:8b:
89:46:61:8a:67:d4:df:9d:5d:6d:8d:0c:2f:f4:df:83:26:86:
ff:fa:5f:ba:77:80:9a:ed:f0:8b:97:e9:11:57:44:5b:27:37:
14:9a:88:77:ff:b4:c9:16:a0:c7:3b:72:ec:5c:25:22:c6:91:
ec:00:60:fb:cb:ee:a8:c1:c5:cd:b2:fb:05:d2:3e:31:c6:b4:
9f:5c:0b:96:b6:71:5a:80:6b:d4:58:13:14:5d:e3:f6:18:66:
da:1d:24:38:ca:4f:82:71:9c:96:3e:7d:9d:9b:0a:be:62:98:
58:35:16:a4:10:a0:f8:c6:a0:6c:0d:9b:7e:b6:fe:c7:ef:83:
35:db:ae:a4:79:91:c9:98:43:ea:84:50:6d:be:ef:fb:98:f4:
6f:3f:f0:f5:19:69:cc:56:96:07:7d:b4:15:eb:0c:f7:46:36:
d1:fc:9f:43:26:89:88:18:5e:70:11:d3:fb:23:80:89:91:34:
ad:96:5c:9c:56:6e:d0:28:47:44:95:1f:a4:85:7e:78:da:70:
fd:19:22:f5:2b:47:5c:1e:dc:e9:2b:f6:ab:b4:74:aa:1c:1e:
fa:76:38:7d:39:9a:03:71:2e:e6:c0:bf:27:30:7b:69:19:03:
7b:99:bc:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:17:31 2026 by rpki-client