Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
File: sbIBNjzMVWvsiHAladjTgaDolWY.mft (raw, json)
Hash identifier: mGtOayOhs1QG7TAaRcBN/MOujbMjcT4xzC08oo2K/ss=
Subject key identifier: 7F:01:1C:25:C4:CA:8B:72:06:80:8B:D6:A9:F8:C6:A9:2C:6B:E8:7B
Authority key identifier: B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
Certificate issuer: /CN=b1b201363ccc556bec88702569d8d381a0e89566
Certificate serial: 019D2A7243A06F9E581924BE62F896FD0004
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
Manifest number: 0F03
Signing time: Thu 26 Mar 2026 14:00:24 +0000
Manifest this update: Thu 26 Mar 2026 14:00:24 +0000
Manifest next update: Fri 27 Mar 2026 14:00:24 +0000
Files and hashes: 1: f1nU_RitPyLO36_PnZA-KwEjrxk.roa (hash: r/91ZEbv3l6yrw+0PR08C/xqKU/CqoOOpJu55heJw8o=)
2: sbIBNjzMVWvsiHAladjTgaDolWY.crl (hash: vmLLkKoDqVAQ+lut/mFK26KRqverhMwB9cAqEjkxubc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:72:43:a0:6f:9e:58:19:24:be:62:f8:96:fd:00:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1b201363ccc556bec88702569d8d381a0e89566
Validity
Not Before: Mar 26 14:00:24 2026 GMT
Not After : Mar 27 14:00:24 2026 GMT
Subject: CN=7f011c25c4ca8b7206808bd6a9f8c6a92c6be87b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:68:c1:8e:22:68:58:0c:02:5a:b0:df:07:29:
a6:49:a6:3a:dc:fe:8f:f6:ea:3e:86:48:bf:b3:77:
29:d2:62:fe:74:ff:13:89:a6:9a:4e:ae:80:b5:01:
dd:8a:d1:77:cf:4b:07:f6:2f:f7:6b:95:22:2f:f1:
2f:2d:57:a3:ad:3b:49:5f:04:2d:59:b9:fc:98:03:
ee:b1:04:70:bd:6e:4c:d2:4a:d7:17:ec:7a:06:34:
0d:db:69:44:97:db:f3:92:91:11:8e:2c:26:8a:58:
68:79:8e:11:a8:d9:f5:73:88:69:52:67:2d:c2:93:
11:da:2f:28:50:51:3c:c6:43:50:d6:ca:d8:98:94:
36:60:23:7b:7b:85:15:ed:12:6f:f8:b5:ce:56:7d:
07:fb:53:0e:a2:fc:63:70:59:63:b7:a9:5a:8b:4b:
37:9c:01:7b:6e:12:36:ac:ad:58:c2:8f:c8:8f:87:
c2:38:99:ae:55:0b:85:b5:f9:09:31:00:7d:77:b1:
5a:82:98:26:21:bc:06:33:de:47:d8:d5:4b:51:19:
36:55:e9:af:12:91:dc:03:e6:15:bf:db:7b:34:c7:
61:00:7c:3f:29:64:11:cf:47:fc:2c:26:81:8b:f6:
0b:10:62:e0:90:ac:a8:1d:2f:d7:e8:55:cb:17:53:
cf:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:01:1C:25:C4:CA:8B:72:06:80:8B:D6:A9:F8:C6:A9:2C:6B:E8:7B
X509v3 Authority Key Identifier:
keyid:B1:B2:01:36:3C:CC:55:6B:EC:88:70:25:69:D8:D3:81:A0:E8:95:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sbIBNjzMVWvsiHAladjTgaDolWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c6/5ae8bf-f999-4c74-9f46-325627c466e2/1/sbIBNjzMVWvsiHAladjTgaDolWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:29:94:96:99:0d:62:30:f4:71:bf:73:87:7e:a5:2a:d0:17:
c3:83:35:55:fc:e6:6c:c3:ae:ad:03:40:87:f0:cb:3b:df:1b:
b3:ab:11:21:d0:3a:98:b8:72:58:a9:74:e4:0f:ca:99:4b:16:
68:1c:3b:fc:79:a7:4b:20:f6:c0:6a:00:8d:d9:85:09:3d:57:
3e:24:21:25:11:59:e0:e3:b9:de:35:fd:18:eb:45:3b:c3:3e:
5b:8a:ed:e7:7f:ea:0e:d9:15:11:d4:4e:c0:9f:68:3a:db:15:
ef:9d:46:17:5b:60:aa:23:8f:11:97:53:1f:f1:66:d3:e8:8d:
6b:f6:b1:c3:5b:e3:35:9e:73:38:ca:b6:f8:f0:ab:2d:dc:14:
8c:78:16:ea:e1:b2:83:26:95:a7:99:1d:e8:bb:d3:1c:28:72:
1b:08:96:b1:af:3c:ed:77:7a:71:7f:50:47:81:2e:9b:77:48:
a3:8d:30:d1:83:3b:7a:f3:8c:67:6c:1c:29:fe:df:e1:2e:28:
5a:bc:a8:e5:b1:58:b2:30:93:90:62:a9:c6:7d:15:6c:4b:b9:
db:33:b5:12:98:8d:00:17:2e:24:a3:9a:a2:2e:ce:0a:20:8a:
79:aa:04:86:b6:ed:c0:65:46:13:9e:f1:c4:c1:06:40:a8:c7:
74:5e:e7:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 17:43:59 2026 by rpki-client