Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
File: sHATRrrVXff13IGLu7z7t9sQcKs.mft (raw, json)
Hash identifier: PqxjpzZogKq0pSNh34wT8dGfEWant8+3vGDC5wW0PIg=
Subject key identifier: 5E:40:BC:C9:FF:1B:EC:42:E1:8C:05:B6:C5:5D:C7:F2:57:48:C8:76
Authority key identifier: B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
Certificate issuer: /CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Certificate serial: 019D27DF6B293E5C9F7447D2DF69722A3DB9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
Manifest number: 0A5B
Signing time: Thu 26 Mar 2026 02:00:46 +0000
Manifest this update: Thu 26 Mar 2026 02:00:46 +0000
Manifest next update: Fri 27 Mar 2026 02:00:46 +0000
Files and hashes: 1: R2homvSPlS0ZNmTrlajY_zO_3zQ.roa (hash: up0EjA2CeJ2YIvafcu9UiDmzcn/ykgETYaqOziBtni8=)
2: sHATRrrVXff13IGLu7z7t9sQcKs.crl (hash: r5X76kLmWiXWmKm6JMKWQBCw+ubTGQXlRZbgs0JRXAE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:6b:29:3e:5c:9f:74:47:d2:df:69:72:2a:3d:b9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0701346bad55df7f5dc818bbbbcfbb7db1070ab
Validity
Not Before: Mar 26 02:00:46 2026 GMT
Not After : Mar 27 02:00:46 2026 GMT
Subject: CN=5e40bcc9ff1bec42e18c05b6c55dc7f25748c876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:b3:2e:57:da:fc:64:eb:e5:26:df:18:32:da:
9f:99:32:83:ca:fd:9a:75:b9:82:f8:6b:94:f4:dc:
03:34:ac:c7:cf:09:44:1f:72:28:6f:3b:1e:d8:b9:
2f:e7:1b:d6:ab:44:4e:d2:f4:6c:12:c0:2f:4b:fd:
24:27:65:0d:8b:c8:01:00:13:88:68:17:52:f0:b9:
39:4f:eb:2d:87:0c:fc:df:7a:0c:49:db:4b:55:cf:
a6:b9:4e:3c:b0:4c:90:b1:c7:be:2e:c0:87:dd:e0:
a7:a8:f0:b0:f0:3d:2b:8d:1f:ed:a4:d8:bf:fd:3b:
74:ef:6a:aa:91:81:dd:e3:57:a5:2c:c6:9e:3b:44:
1c:a2:60:29:f2:d5:16:d6:08:38:4b:fc:d6:47:87:
ff:c0:3a:cb:56:e3:9a:87:f8:df:19:c5:ea:52:90:
19:d8:f4:da:44:b1:9c:fe:fc:ac:ad:80:38:f9:61:
44:b0:1c:06:b1:0c:47:92:5c:73:27:6c:ee:d5:af:
6d:87:4c:8f:b6:32:ae:cb:e5:50:3b:01:45:f1:66:
28:81:25:4d:70:8f:93:45:c6:4d:5f:41:2a:30:17:
61:8b:4f:06:29:02:f4:5f:80:dc:af:46:6f:8b:57:
0d:09:98:d0:a2:ba:40:ec:20:6e:c2:d5:10:8e:8b:
4e:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:40:BC:C9:FF:1B:EC:42:E1:8C:05:B6:C5:5D:C7:F2:57:48:C8:76
X509v3 Authority Key Identifier:
keyid:B0:70:13:46:BA:D5:5D:F7:F5:DC:81:8B:BB:BC:FB:B7:DB:10:70:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sHATRrrVXff13IGLu7z7t9sQcKs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/2f5f22-7439-4208-8b39-7d11fcf17123/1/sHATRrrVXff13IGLu7z7t9sQcKs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:9d:70:6c:7f:69:b1:a4:45:b1:91:ff:92:08:be:83:fb:c2:
df:4c:c8:10:be:4a:8d:22:11:a5:b4:3f:75:e6:86:9e:01:c9:
8c:e9:b5:bc:28:97:54:b0:01:93:3a:07:84:37:fa:54:1e:15:
c6:55:be:6d:9d:af:0d:7e:fe:0e:b9:eb:11:78:d1:37:d2:0a:
f6:36:05:0c:e6:70:19:8f:21:9c:12:86:c8:1b:bc:48:7b:55:
94:e7:12:0b:05:7a:44:45:83:8b:ce:24:1b:2c:b9:99:af:29:
8a:87:6b:bb:72:79:78:b2:e9:7d:32:34:bd:a1:3b:bd:be:06:
3c:cb:0b:56:b5:57:5c:59:03:83:35:92:8b:a8:ab:54:fa:01:
b0:81:d3:28:e3:2e:d2:26:ff:11:5b:61:60:2f:01:61:e6:59:
71:0a:b8:13:d8:25:ea:3d:78:a9:b2:fc:32:31:6f:2d:ee:96:
39:0d:3d:ef:f8:0f:62:75:bd:e3:b5:1b:30:0b:f4:a1:1f:e6:
38:f1:a6:d1:ac:5c:bc:41:67:87:63:8f:40:d6:e9:5b:98:f1:
14:f6:5d:81:dd:db:27:af:2c:a9:43:3a:2d:04:2f:b6:ea:50:
18:25:73:c8:bb:82:59:d7:f0:03:10:1f:20:48:78:f5:74:75:
05:32:b2:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:54:45 2026 by rpki-client