Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: W7SlhxGL2tS+E6omlyrGXbicu7VcWLploZWtWs/j3+w=
Subject key identifier: D4:42:2F:7F:72:09:57:52:7E:87:70:2F:D7:E6:A5:57:E9:51:3E:19
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 019D265F54A9CFEB4416859F98A6E84A7E92
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 1815
Signing time: Wed 25 Mar 2026 19:01:14 +0000
Manifest this update: Wed 25 Mar 2026 19:01:14 +0000
Manifest next update: Thu 26 Mar 2026 19:01:14 +0000
Files and hashes: 1: 4eGQ-UBGNs_4XAP1phxy5eDsOEU.roa (hash: NGm7oj0oNNHffCOXmAY3fJHH7vgq8EjhCAsgIYkz9sk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: StudbYgdO/OX69EfuP6k/LxecrLAO0TiTmTN9g5yn5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:54:a9:cf:eb:44:16:85:9f:98:a6:e8:4a:7e:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: Mar 25 19:01:14 2026 GMT
Not After : Mar 26 19:01:14 2026 GMT
Subject: CN=d4422f7f720957527e87702fd7e6a557e9513e19
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:64:fc:37:90:ec:ce:5b:a6:a7:ea:ac:8b:33:
b3:6a:01:30:98:4f:1e:b0:ed:4a:0c:0c:2c:ea:be:
28:33:1d:00:c0:63:a9:5a:fc:3b:4e:24:00:7c:c4:
5f:2d:8e:e5:ef:3a:aa:ee:b5:51:3f:3c:15:7f:0c:
2b:50:67:32:d4:4f:bd:14:d3:31:ea:db:28:9d:ad:
41:b9:06:54:5a:e1:03:5b:f5:57:fa:ed:90:07:95:
e6:4f:da:80:bb:c2:e5:89:89:c0:e3:1c:b0:85:af:
10:c0:ae:7a:32:59:98:51:10:47:e0:c9:17:45:e5:
80:6d:1f:bb:4d:99:f7:3b:d8:4b:8e:59:5e:56:be:
a9:7a:4d:51:6c:05:23:43:60:e0:32:5a:47:b8:02:
3f:f0:d5:7d:51:9c:73:d6:73:2d:72:16:5f:35:8c:
0f:c7:3a:32:60:a3:3a:2d:ab:9f:b6:0f:c4:aa:a9:
2f:fe:a2:0d:80:a6:05:28:fd:56:30:d1:d9:12:a4:
97:c5:0d:1c:38:72:de:66:ab:35:6e:0a:32:64:e6:
8a:0b:e1:13:65:09:aa:51:03:b1:e5:a9:69:4e:8c:
ee:2e:96:e9:9b:d4:50:14:43:04:d9:f9:fb:ab:dc:
bc:a1:b8:56:0e:23:27:91:05:b1:88:44:ec:47:48:
7f:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:42:2F:7F:72:09:57:52:7E:87:70:2F:D7:E6:A5:57:E9:51:3E:19
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:f1:5a:56:d4:39:0c:29:6c:29:e2:53:f6:4a:53:0f:9c:34:
9a:df:39:5a:96:4f:f7:b1:94:70:05:2b:23:70:9d:dc:15:dc:
5e:7c:5d:7b:ed:bf:ad:3a:5f:64:68:26:10:22:37:c6:37:2c:
82:a7:9b:b5:82:3d:fc:21:8d:ce:c5:a3:d5:96:51:ab:35:2b:
6f:b3:43:83:12:b4:52:f6:28:a4:55:03:d6:fa:59:3a:da:43:
9b:4b:02:58:84:b6:3e:5f:6a:2b:f4:14:da:8c:6f:86:14:93:
75:bf:0b:04:b0:6b:0b:fa:ae:f7:61:e6:84:0f:75:6e:5c:5f:
cf:2f:af:ef:50:2f:e2:6c:9b:54:9e:4a:71:8c:ef:58:ef:87:
4a:1c:52:9c:83:3b:09:79:0d:ca:c5:23:1d:e2:c2:22:82:a9:
95:d9:e5:25:af:e0:01:a9:bf:f5:27:84:b7:46:ca:7f:9e:f6:
d2:10:20:45:e0:f4:44:59:bb:de:0e:d7:4e:25:ef:27:01:74:
89:d9:bb:1e:a9:91:66:49:c6:63:93:6f:80:1f:3b:55:b7:3c:
5d:bc:57:ba:07:0c:1c:8c:2c:b2:a0:09:1f:49:48:03:3a:65:
e1:ac:75:b5:fc:b6:41:35:3f:3f:9d:08:d4:e8:1f:f2:68:d5:
10:2a:c8:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:37 2026 by rpki-client