Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
File: stCgxoogOf8MpRQCQRUnHIoEZgg.mft (raw, json)
Hash identifier: FRXQsPo5wCWEUnejcrdRHWOv+BfnQYRVk0kF0mDAKR4=
Subject key identifier: 82:64:EE:29:52:45:1B:8A:CF:BA:C8:68:F0:23:CA:81:71:EC:9C:EB
Authority key identifier: B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
Certificate issuer: /CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Certificate serial: 019E1D90107E8C48282FA9B15F42D2D9489F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
Manifest number: 1895
Signing time: Tue 12 May 2026 19:00:41 +0000
Manifest this update: Tue 12 May 2026 19:00:41 +0000
Manifest next update: Wed 13 May 2026 19:00:41 +0000
Files and hashes: 1: 4eGQ-UBGNs_4XAP1phxy5eDsOEU.roa (hash: NGm7oj0oNNHffCOXmAY3fJHH7vgq8EjhCAsgIYkz9sk=)
2: stCgxoogOf8MpRQCQRUnHIoEZgg.crl (hash: +ehXiQkOYdLM++aAFEkKtef/26n4a7tf4Hm5LAqk7v8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:10:7e:8c:48:28:2f:a9:b1:5f:42:d2:d9:48:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2d0a0c68a2039ff0ca514024115271c8a046608
Validity
Not Before: May 12 19:00:41 2026 GMT
Not After : May 13 19:00:41 2026 GMT
Subject: CN=8264ee2952451b8acfbac868f023ca8171ec9ceb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:ef:60:5c:59:33:2d:36:cd:71:b2:e9:3d:
2c:bf:20:52:85:51:3b:84:ca:35:60:8f:eb:18:ee:
c6:4e:ea:a2:f4:c6:37:11:90:c4:dd:bd:2b:92:eb:
cd:6a:ff:16:9d:32:ce:bd:8a:0b:23:1a:a3:f1:1d:
97:ca:f7:e9:b0:1a:1a:f6:82:0d:ed:8e:c2:45:9c:
ee:a4:86:3e:a8:d1:82:a2:b6:b5:44:21:53:98:4a:
7f:29:9f:57:8d:e0:9f:57:34:9f:2e:77:1e:f0:cc:
db:c9:80:c6:07:16:f5:4e:8d:ab:41:dd:1c:4b:16:
25:69:81:19:79:17:93:fa:e7:18:60:89:d6:eb:a2:
e9:e4:24:b2:9c:57:1e:ab:67:64:01:47:5a:ba:59:
dd:2a:31:f0:81:45:45:5f:cb:64:4a:24:37:c3:fb:
50:47:45:77:95:12:5f:b5:2d:1d:35:c0:3a:0a:8c:
2a:c2:5d:29:3f:30:3e:d7:16:c4:47:e1:d3:b3:20:
e9:c7:16:8d:32:0f:63:70:5c:cd:ad:30:50:fa:2b:
e2:22:fc:9e:7f:a6:28:44:0e:76:2b:d9:dc:e3:79:
ee:36:24:a5:b4:9d:d7:97:fa:f3:68:b4:c9:e3:e5:
b9:d2:62:0d:b5:65:b2:9e:97:4d:e3:ab:5e:c4:cc:
5d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:64:EE:29:52:45:1B:8A:CF:BA:C8:68:F0:23:CA:81:71:EC:9C:EB
X509v3 Authority Key Identifier:
keyid:B2:D0:A0:C6:8A:20:39:FF:0C:A5:14:02:41:15:27:1C:8A:04:66:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/stCgxoogOf8MpRQCQRUnHIoEZgg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/97/b3d0d7-e10a-486f-885d-41ab7c872fea/1/stCgxoogOf8MpRQCQRUnHIoEZgg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:8f:19:23:76:0f:1e:3f:c3:74:da:61:14:ca:e4:a1:c6:2f:
ef:f4:cd:35:d8:1c:97:98:63:c4:91:51:f8:c7:69:14:b2:a8:
51:d6:65:62:40:87:2a:a6:9d:bc:52:06:dd:fc:62:3e:b7:78:
b3:a6:5f:ba:d4:4f:db:39:f5:a2:a6:c1:ac:a4:a3:f1:f1:4e:
c9:d8:cd:8e:0e:94:c3:7e:49:4e:f1:1d:5a:3c:29:dc:53:0c:
1c:5e:56:cb:0b:c2:44:dc:5c:03:a3:9b:4f:b7:e1:08:7b:17:
66:cc:1f:31:d1:a1:3d:9e:85:ed:5b:5a:d1:0b:9f:d6:12:48:
f2:96:37:9b:1d:e2:fa:c7:b2:81:32:ee:6d:76:3d:0c:d0:c3:
84:44:5d:25:d6:74:89:4e:b1:e4:d7:e6:93:92:f6:82:66:eb:
e8:f1:6b:fc:5f:61:38:3c:f7:71:cf:6b:4a:7d:eb:30:21:62:
e0:44:a2:ac:ca:2c:de:d1:a4:9c:98:47:6f:5c:cf:a6:98:34:
dc:26:c3:60:79:d0:06:8c:2a:29:1b:4e:7f:40:30:fc:ae:08:
b4:f9:c2:86:43:1b:ca:be:17:a0:d4:36:6f:2f:13:6a:e0:c7:
cf:47:72:a8:6a:89:83:d5:57:94:c3:5e:20:07:e3:50:9d:00:
74:1a:c8:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:16:56 2026 by rpki-client