Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
File: sBCzoH7QdoStvu_aRTKhy2g6VpI.mft (raw, json)
Hash identifier: FAo9Oals33bcgKnbBVC9agTFnDQzsIfZUizQ1/1DyQs=
Subject key identifier: 5F:8E:26:86:BF:1B:E6:7B:90:71:6A:B0:94:7A:5E:C9:13:4F:C2:C0
Authority key identifier: B0:10:B3:A0:7E:D0:76:84:AD:BE:EF:DA:45:32:A1:CB:68:3A:56:92
Certificate issuer: /CN=b010b3a07ed07684adbeefda4532a1cb683a5692
Certificate serial: 019D28F2489623428BF24F67EB70AEC5B845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
Manifest number: 9F
Signing time: Thu 26 Mar 2026 07:01:00 +0000
Manifest this update: Thu 26 Mar 2026 07:01:00 +0000
Manifest next update: Fri 27 Mar 2026 07:01:00 +0000
Files and hashes: 1: HOsIByRB05sMesPlqYI8THFtGjM.roa (hash: VJopQfVewffY+pivrrV8JLnBTXPO+QkfD3SD6xVxU8E=)
2: sBCzoH7QdoStvu_aRTKhy2g6VpI.crl (hash: ublbDf3D16I0DlsZt0OKuaeGvtQaeUfYU9576HEp2RY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:48:96:23:42:8b:f2:4f:67:eb:70:ae:c5:b8:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b010b3a07ed07684adbeefda4532a1cb683a5692
Validity
Not Before: Mar 26 07:01:00 2026 GMT
Not After : Mar 27 07:01:00 2026 GMT
Subject: CN=5f8e2686bf1be67b90716ab0947a5ec9134fc2c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ce:83:84:01:0d:bc:69:7e:c1:b6:3b:04:28:
c7:fb:8f:1b:1f:3c:5b:0a:e5:04:c7:56:54:d3:80:
cc:2d:2b:3d:db:2b:6c:89:5e:a8:7a:4e:01:b6:71:
c8:9d:17:9e:2f:9e:eb:a3:b8:8e:c9:dd:b4:0b:7e:
68:f9:74:8e:91:c9:4a:2f:ea:b9:8e:98:75:47:99:
80:a7:b4:d2:b3:92:0a:2c:17:99:0f:83:10:33:44:
c0:73:3a:90:6f:c7:c7:af:6e:96:d7:ef:5f:5c:92:
a3:d7:b6:8b:43:74:24:6d:ea:e1:d0:46:00:d1:28:
cd:96:7c:27:a6:8d:cb:bb:e7:ad:34:dd:af:c6:6d:
02:dd:52:6b:12:5b:fd:98:d7:05:93:7e:4d:05:2a:
f0:ac:e2:32:14:b9:a0:01:00:27:f7:42:1a:6b:77:
9d:26:5c:76:08:41:e0:3f:ce:7a:f2:0f:8e:1d:e2:
e5:1b:02:16:5f:f6:01:a8:0c:00:a9:1b:ba:4e:4c:
9c:ac:aa:9b:2a:f2:74:66:1d:8e:b7:d5:f2:d8:17:
1a:49:49:ac:3a:f2:2e:59:78:81:91:6c:e3:02:54:
06:cb:72:57:5f:9b:f4:fc:ea:44:55:7a:46:a0:aa:
0e:c8:bf:40:0e:e0:de:b6:29:2f:d6:76:e1:05:c2:
52:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:8E:26:86:BF:1B:E6:7B:90:71:6A:B0:94:7A:5E:C9:13:4F:C2:C0
X509v3 Authority Key Identifier:
keyid:B0:10:B3:A0:7E:D0:76:84:AD:BE:EF:DA:45:32:A1:CB:68:3A:56:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBCzoH7QdoStvu_aRTKhy2g6VpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/cf1f1b-3d41-4660-aa57-63061f27aaf0/1/sBCzoH7QdoStvu_aRTKhy2g6VpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ee:5b:d2:93:fd:3c:24:55:01:b6:c4:1a:cf:25:fd:fa:20:
b5:6c:c6:86:24:98:9f:ba:81:46:e3:b4:0d:c0:07:09:a9:6b:
77:ca:23:de:af:71:34:8c:bf:8d:93:76:7a:17:bf:65:16:94:
77:5f:b2:b3:6b:54:45:b3:82:62:88:5e:d9:3f:73:1e:bf:4f:
39:d9:6a:4d:6c:cd:3b:f6:b7:52:2b:82:80:89:72:db:8c:d7:
f2:d7:75:77:27:48:9c:ac:4a:99:b0:54:d7:77:e5:0c:13:3b:
7e:37:b9:58:9e:51:2a:5e:2b:00:52:10:18:5a:5f:1a:d3:91:
04:82:93:f3:4f:4a:1d:8b:b7:c9:ea:43:e6:9b:d2:24:6f:ca:
5e:70:01:b3:17:ac:a8:45:4b:f5:da:6b:b5:d6:66:a5:88:aa:
02:f5:78:07:0a:ab:e7:85:4c:e0:64:f4:8f:58:17:da:41:e1:
c7:28:fa:e2:a9:4a:e1:af:63:27:09:47:ae:6b:ce:8a:f6:63:
22:cd:dd:49:f9:bd:42:7b:26:74:bc:c0:04:86:78:9a:ba:d9:
2c:6a:94:07:69:c3:69:e8:40:8a:f5:c9:69:f6:ef:e4:6b:f8:
a2:94:0f:8d:be:b9:bd:04:2e:8c:58:0f:fd:41:6d:b6:f1:18:
9b:fb:bb:6b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0o8kiWI0KL8k9n63CuxbhFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMTBiM2EwN2VkMDc2ODRhZGJlZWZkYTQ1MzJhMWNiNjgz
YTU2OTIwHhcNMjYwMzI2MDcwMTAwWhcNMjYwMzI3MDcwMTAwWjAzMTEwLwYDVQQD
Eyg1ZjhlMjY4NmJmMWJlNjdiOTA3MTZhYjA5NDdhNWVjOTEzNGZjMmMwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAts6DhAENvGl+wbY7BCjH+48bHzxb
CuUEx1ZU04DMLSs92ytsiV6oek4BtnHInReeL57ro7iOyd20C35o+XSOkclKL+q5
jph1R5mAp7TSs5IKLBeZD4MQM0TAczqQb8fHr26W1+9fXJKj17aLQ3Qkberh0EYA
0SjNlnwnpo3Lu+etNN2vxm0C3VJrElv9mNcFk35NBSrwrOIyFLmgAQAn90Iaa3ed
Jlx2CEHgP8568g+OHeLlGwIWX/YBqAwAqRu6TkycrKqbKvJ0Zh2Ot9Xy2BcaSUms
OvIuWXiBkWzjAlQGy3JXX5v0/OpEVXpGoKoOyL9ADuDetikv1nbhBcJSuQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF+OJoa/G+Z7kHFqsJR6XskTT8LAMB8GA1UdIwQY
MBaAFLAQs6B+0HaErb7v2kUyoctoOlaSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0JDem9IN1Fkb1N0dnVfYVJUS2h5Mmc2VnBJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My9jZjFmMWItM2Q0MS00NjYwLWFhNTct
NjMwNjFmMjdhYWYwLzEvc0JDem9IN1Fkb1N0dnVfYVJUS2h5Mmc2VnBJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80My9jZjFmMWItM2Q0MS00NjYwLWFhNTctNjMwNjFmMjdhYWYw
LzEvc0JDem9IN1Fkb1N0dnVfYVJUS2h5Mmc2VnBJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWu5b0pP9
PCRVAbbEGs8l/fogtWzGhiSYn7qBRuO0DcAHCalrd8oj3q9xNIy/jZN2ehe/ZRaU
d1+ys2tURbOCYohe2T9zHr9POdlqTWzNO/a3UiuCgIly24zX8td1dydInKxKmbBU
13flDBM7fje5WJ5RKl4rAFIQGFpfGtORBIKT809KHYu3yepD5pvSJG/KXnABsxes
qEVL9dprtdZmpYiqAvV4Bwqr54VM4GT0j1gX2kHhxyj64qlK4a9jJwlHrmvOivZj
Is3dSfm9QnsmdLzABIZ4mrrZLGqUB2nDaehAivXJafbv5Gv4opQPjb65vQQujFgP
/UFttvEYm/u7aw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 11:08:02 2026 by rpki-client