Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
File: sXLI1PyYbeufzrHw0MrifBwxNcM.mft (raw, json)
Hash identifier: zpjoJCtXj8lMc8Ar0GwAqKczjRDdnPHwME9JM4UAj3w=
Subject key identifier: 66:7A:F2:1F:B8:93:EA:A6:A5:75:7E:C2:40:F6:0B:A4:8D:36:95:C9
Authority key identifier: B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
Certificate issuer: /CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Certificate serial: 019D32D0C46ED3182D8E247A6E7EB0EC6043
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
Manifest number: 0D83
Signing time: Sat 28 Mar 2026 05:00:35 +0000
Manifest this update: Sat 28 Mar 2026 05:00:35 +0000
Manifest next update: Sun 29 Mar 2026 05:00:35 +0000
Files and hashes: 1: BSURPBQvXpuCpbYMk4EscNV2NGg.roa (hash: usmbumk2NjOoHhKjq8HbSTuaHBgHl6uoN4Uf/sG7QEY=)
2: sXLI1PyYbeufzrHw0MrifBwxNcM.crl (hash: 3MtHhlrZZalI3TKpKqDyBvoxME2rdhY2GpRe1omDCZ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:32:d0:c4:6e:d3:18:2d:8e:24:7a:6e:7e:b0:ec:60:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b172c8d4fc986deb9fceb1f0d0cae27c1c3135c3
Validity
Not Before: Mar 28 05:00:35 2026 GMT
Not After : Mar 29 05:00:35 2026 GMT
Subject: CN=667af21fb893eaa6a5757ec240f60ba48d3695c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:18:bd:e6:eb:56:9a:9b:8c:fb:f7:61:9f:9e:
fc:83:79:07:60:8e:7a:59:9e:83:d9:d7:3c:66:8e:
6b:42:9f:b2:0c:bc:dc:13:80:af:9a:ed:c1:d0:ce:
d1:34:57:86:c5:be:10:db:34:60:cd:f5:a0:74:e4:
6d:5e:cb:b5:e8:2f:a1:4e:c3:17:02:93:e8:29:ca:
6d:cb:1f:1c:a4:d7:99:15:6e:50:15:ac:82:72:0f:
a5:f9:be:34:ff:51:68:97:bf:af:ec:19:39:84:ba:
ad:06:4d:77:39:92:60:30:01:83:38:f7:d1:06:17:
97:0d:73:0d:ca:d7:3a:dd:96:98:a4:bf:9f:2a:4f:
44:21:d6:12:12:be:67:34:04:9b:da:61:89:52:ee:
c3:9e:9f:7e:93:0a:c7:68:1a:85:ac:7c:c5:bf:e1:
26:d6:59:e4:29:30:d2:36:83:99:77:bf:55:7b:8b:
7e:ee:0a:2d:28:8c:d9:64:4b:b3:ba:37:e7:0a:c1:
b2:e9:86:6d:d3:63:86:da:de:58:75:d0:18:f6:2d:
30:15:fb:5e:be:84:1a:e2:64:61:18:ad:4b:30:76:
52:32:00:a9:9b:f7:c7:56:f1:18:3c:3d:1e:79:57:
b9:a9:38:2b:66:dc:c6:e1:42:0a:8c:cc:cf:34:5e:
81:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:7A:F2:1F:B8:93:EA:A6:A5:75:7E:C2:40:F6:0B:A4:8D:36:95:C9
X509v3 Authority Key Identifier:
keyid:B1:72:C8:D4:FC:98:6D:EB:9F:CE:B1:F0:D0:CA:E2:7C:1C:31:35:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXLI1PyYbeufzrHw0MrifBwxNcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bb3b62-3302-45aa-968a-ecbb3fc0a725/1/sXLI1PyYbeufzrHw0MrifBwxNcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:bf:df:03:fc:33:65:5c:9d:77:80:60:77:17:8d:b4:22:af:
93:1e:bd:cc:95:97:2f:0e:6b:30:22:a2:e2:52:04:1c:62:bd:
6b:20:74:0c:55:2f:c3:3e:b1:38:89:c6:81:c5:37:15:89:57:
92:11:3f:bc:d1:5d:b6:a3:04:57:73:f6:34:5b:ec:ac:c2:97:
ae:d5:66:a7:a2:d5:c7:8f:d9:63:f5:23:3f:a0:1f:06:71:c5:
90:7f:38:dd:44:31:7e:99:0c:50:20:c2:60:22:9c:cb:af:7e:
ac:f9:49:17:f1:ea:25:e7:0c:36:11:d0:7e:eb:75:a7:08:9a:
32:46:61:87:7b:bb:85:0b:8b:89:da:71:7f:b0:e0:b1:1a:15:
c9:1f:8f:31:fb:22:93:d5:58:ff:18:bf:cb:a7:eb:12:d7:a4:
37:7a:f4:91:1a:98:e6:de:a7:ec:2f:3c:58:b5:34:52:18:b2:
a5:6e:38:ff:2c:d3:fd:9f:83:70:f7:95:f1:be:e2:9a:e1:d8:
81:8a:9b:4c:49:c7:45:fd:7a:60:4d:63:09:3e:02:40:7e:1c:
5f:64:11:ca:72:02:cb:30:c7:a8:c2:06:22:7e:cc:a7:80:ed:
c1:ee:46:2b:6b:35:a9:15:0e:ab:bb:74:d0:72:39:6b:7f:d7:
2f:92:54:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:33:10 2026 by rpki-client