Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
File: rs1kyXg317-sBmN92VK97eDCXYU.mft (raw, json)
Hash identifier: v4wSlNONn4Noc78tLWdYsWhfQKKbMxOIzk2E1ZxBz4A=
Subject key identifier: 1C:35:1D:96:60:B0:D4:15:91:86:DB:E5:98:42:E6:72:33:BC:FD:4A
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: 019D265F469D10C36FC4033023087D70594E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
Manifest number: 11A4
Signing time: Wed 25 Mar 2026 19:01:11 +0000
Manifest this update: Wed 25 Mar 2026 19:01:11 +0000
Manifest next update: Thu 26 Mar 2026 19:01:11 +0000
Files and hashes: 1: AQy-kY2cHFUJdvCu8RaXSm0u9OQ.roa (hash: RBQiu9sWWqL4vqKsGVfSX3sl/SJ1Xr1YL1xHQKrA3HM=)
2: K-RSBEB1ZNkw3BDgpDKvXT-jHFk.roa (hash: Ek8U88NKRYg8I4QyXUu+1m6S0Vw3QVig3cYX4BA41DY=)
3: WL2FEa958Kjqled1nJg_T9tBeoM.roa (hash: JqTb5QBDeJhpoV0bTkZHjnWe5k2iGZ6/9FsmESELmIY=)
4: eeigoSZvhxriUU8uVwc0KC2ZNqg.roa (hash: BVqjzzOba75rz4RwKPXup3anTRy7Y0r6aHlcT5afx7Q=)
5: gDEbtn2Bm22RWVusEqJbEgaueu4.roa (hash: xXuFvRKXUrwVjGE6wkVPHC4STPuoOyCxY+cA2kJF334=)
6: gqcIGF4cnQ7Zo-s6vBQeyMRZ3Kw.roa (hash: 5WHbZVFPJqF6d7sQt81f3HSwNWk6p/6vqblB7r2uSB0=)
7: rs1kyXg317-sBmN92VK97eDCXYU.crl (hash: iOJFExT/1eFsUoMaovxMVnA/uKN12I7UGLpsBZMZau8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:46:9d:10:c3:6f:c4:03:30:23:08:7d:70:59:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: Mar 25 19:01:11 2026 GMT
Not After : Mar 26 19:01:11 2026 GMT
Subject: CN=1c351d9660b0d4159186dbe59842e67233bcfd4a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:cf:00:06:be:8a:3c:2f:f4:75:24:a6:a8:da:
7f:26:8c:47:81:45:4f:3c:2a:06:ff:db:54:92:fe:
5c:a5:c6:ac:47:ce:06:8b:5f:66:0b:a0:1b:e2:d0:
73:4c:54:4d:7a:f7:b9:92:74:b2:2a:61:54:54:82:
a0:99:8c:6e:ba:54:8b:1d:d0:cc:e7:eb:6a:9d:60:
ee:2a:a3:f2:26:da:4d:4f:02:ed:8b:f3:04:48:0c:
fd:53:f7:93:a0:6f:54:dd:a6:60:aa:65:59:1f:92:
e7:c0:b9:bc:95:fc:50:db:8d:11:6a:07:12:24:54:
02:46:0c:2e:f6:6b:fa:a8:e3:8a:24:27:d2:ae:80:
31:f9:c3:28:80:b4:22:00:aa:9c:f4:52:75:cd:c6:
c0:2f:ee:5e:5e:df:c2:74:56:51:36:9d:33:1b:1b:
72:a9:0b:e4:c1:91:08:50:95:ae:c6:8e:0b:aa:2e:
01:7d:b7:62:8c:05:77:7a:1f:3b:9a:ad:6d:d1:ba:
18:96:f4:4e:42:2a:b8:a8:13:b9:dc:56:a1:55:d5:
1b:1f:c8:0d:a5:c3:7a:ce:08:16:ba:1f:cc:5c:0c:
fc:bc:41:d2:ae:a0:32:8a:5b:a0:ba:58:1b:74:cb:
5b:1f:06:74:4d:28:22:5f:61:3f:a7:8c:03:29:eb:
87:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:35:1D:96:60:B0:D4:15:91:86:DB:E5:98:42:E6:72:33:BC:FD:4A
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:a4:3f:44:25:19:d7:ac:e8:00:48:8c:52:c2:83:86:22:55:
27:b9:23:72:2c:d1:a4:fc:3d:57:3e:23:63:db:e3:cb:29:3d:
a4:bd:ef:34:5a:ed:a5:5a:4e:27:f5:d0:71:e2:43:34:3f:2c:
14:a0:29:8c:a3:40:8a:b1:5c:8d:e5:fe:eb:5c:e3:e3:4d:52:
f6:10:26:f6:32:f4:7d:cb:12:1d:11:cb:1f:52:f7:c2:df:76:
e3:9c:22:5a:94:77:f6:ac:5f:ad:c9:59:69:f6:9c:6d:61:0b:
02:6e:4f:ac:3b:63:69:69:97:2f:6c:62:d1:ac:a3:50:65:02:
dc:87:36:45:6d:11:35:77:5e:6a:0f:b1:01:b7:9b:cd:c8:03:
e5:05:ad:a4:1b:cd:ea:da:3e:52:96:19:a1:5d:b5:d9:33:3d:
37:5e:99:01:c5:c9:cc:4a:b3:3e:eb:af:67:9f:53:12:34:b9:
f5:e5:45:dc:c0:a4:a8:b4:13:25:80:1a:d0:75:b3:c5:c6:1d:
74:e6:57:f6:65:34:5f:91:ca:d2:85:7d:38:e9:a6:10:46:36:
25:29:57:42:30:be:25:99:99:fd:8e:d5:01:c9:58:21:6f:e4:
a2:1b:b7:64:8d:8f:52:a5:50:84:02:a7:57:86:22:b7:c0:63:
fd:02:da:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:58 2026 by rpki-client