Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
File: sh47KsUJcPsSbL3xnX-zFdzBxF0.mft (raw, json)
Hash identifier: W2DhhyGsS07awA6aED8u0es4giXHd9CGK3HZUsZutEI=
Subject key identifier: 18:5C:C7:EB:60:53:F7:6D:FA:93:7E:EF:FC:2C:6D:D8:C8:BE:A3:98
Authority key identifier: B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
Certificate issuer: /CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Certificate serial: 019D27043A15511A2CEFEF10E4248C875014
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
Manifest number: 0314
Signing time: Wed 25 Mar 2026 22:01:21 +0000
Manifest this update: Wed 25 Mar 2026 22:01:21 +0000
Manifest next update: Thu 26 Mar 2026 22:01:21 +0000
Files and hashes: 1: ExsHE4JND829crxsW7zedd1gI4E.roa (hash: PwF0kYYWy9VG4ZuDcqRgCgPtqUp4IvaWx84Jor85iVQ=)
2: sh47KsUJcPsSbL3xnX-zFdzBxF0.crl (hash: jRpbbmbuZ8PDstII5Emg1b2+GswSYcocudEbH4ZjtCg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:3a:15:51:1a:2c:ef:ef:10:e4:24:8c:87:50:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b21e3b2ac50970fb126cbdf19d7fb315dcc1c45d
Validity
Not Before: Mar 25 22:01:21 2026 GMT
Not After : Mar 26 22:01:21 2026 GMT
Subject: CN=185cc7eb6053f76dfa937eeffc2c6dd8c8bea398
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:62:d7:95:e0:7f:30:a3:be:82:a5:d8:3b:c8:
47:e6:a2:e2:9a:cb:39:5f:7d:5d:4c:4a:38:45:f1:
4f:c0:dd:91:b1:c9:5d:f7:25:f5:a5:f8:44:c7:5e:
ae:b2:65:1a:2f:76:56:c0:72:09:79:1e:05:70:8b:
47:f5:17:cb:d3:02:fc:0a:d0:c7:df:7f:86:f3:eb:
3b:2d:85:8b:a5:14:94:70:d1:a2:ec:64:0c:b8:cb:
07:c3:bb:90:f7:5c:6b:c0:a6:60:75:85:39:4a:b6:
57:89:75:a9:81:d7:27:4d:11:0c:ee:51:81:33:54:
87:0d:97:dc:5c:bc:e9:0e:83:17:ba:42:2a:37:25:
2e:3d:c1:20:d8:92:64:48:d4:fc:07:f8:89:ac:ec:
c3:4a:1d:05:71:b1:fa:b5:70:1e:19:1a:bb:12:2f:
b4:51:fe:e7:41:c4:13:30:80:4d:aa:88:c1:98:2d:
4b:e9:c6:c3:53:9b:89:7b:88:0e:91:84:8a:e6:22:
63:2a:80:3c:9c:a2:2a:ab:44:b2:f0:35:3d:31:21:
62:f2:0a:58:08:a8:7a:18:0e:cf:b6:5e:cf:aa:8e:
d3:b2:8e:f3:b2:c4:52:94:95:f1:97:28:0f:25:51:
c8:70:86:84:f5:a3:54:c3:99:3d:24:5e:81:4a:82:
b5:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:5C:C7:EB:60:53:F7:6D:FA:93:7E:EF:FC:2C:6D:D8:C8:BE:A3:98
X509v3 Authority Key Identifier:
keyid:B2:1E:3B:2A:C5:09:70:FB:12:6C:BD:F1:9D:7F:B3:15:DC:C1:C4:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sh47KsUJcPsSbL3xnX-zFdzBxF0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/52a1e5-86f1-49f7-a773-cb3e29b6ad32/1/sh47KsUJcPsSbL3xnX-zFdzBxF0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:e4:06:e2:53:4d:dd:d2:b7:d8:1e:d3:6d:70:ed:06:48:bb:
c7:1f:6c:93:07:f6:33:4a:5f:dc:6a:96:ee:8b:27:e6:61:c7:
08:df:58:7b:dd:9b:30:b0:01:8e:40:ae:c7:02:15:7b:2f:d9:
7d:f6:d7:ff:69:e7:a3:74:8a:09:cf:13:40:b8:aa:f8:db:9b:
b9:4f:79:be:ac:aa:ff:13:20:86:44:f2:fe:76:b0:ea:c6:cf:
5c:63:4a:51:9e:d1:84:97:9c:42:5c:d3:e3:b2:9a:85:73:25:
9b:f8:4e:f4:e2:19:8f:55:cc:76:29:bd:6f:f0:e3:a8:cb:ea:
54:9a:97:36:9b:e2:22:07:d1:52:ef:27:60:3e:97:70:48:4e:
c5:47:1a:4c:0d:c1:08:cd:b7:63:07:81:3d:0e:22:a2:74:62:
16:ff:77:25:22:38:8f:a8:c8:74:f0:b3:2a:b4:0d:4f:89:7f:
9c:79:67:96:2c:11:c9:c2:f4:96:cc:2e:35:12:29:97:34:d7:
ca:b0:02:78:36:fd:b6:37:39:1c:84:5b:33:32:33:d3:36:d7:
fe:6f:e1:67:03:95:9d:db:9a:c2:cd:4d:04:90:19:56:fd:ff:
12:8d:2d:e7:0c:0e:38:ec:8b:ca:c5:e2:38:c9:73:19:bb:6c:
94:a5:04:b2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:17:09 2026 by rpki-client