Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: UGYpmgLKGLOQbmLMUYjiQ37yXkOku+LIoq50QrcJtcQ=
Subject key identifier: 1E:F2:1E:7B:8F:5D:93:ED:64:5F:31:29:D9:DB:49:B9:E9:CD:9B:6E
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 019D299743306C3B15C776F13336322A1A6D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: 0302
Signing time: Thu 26 Mar 2026 10:01:12 +0000
Manifest this update: Thu 26 Mar 2026 10:01:12 +0000
Manifest next update: Fri 27 Mar 2026 10:01:12 +0000
Files and hashes: 1: VHON0UPXUmDCRotYlV87Iz0_BQA.roa (hash: GIyQ67eHu/aoLix8N514mxryUkStZ2+ADYIfzZPnFM0=)
2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: XNs3GN+LifvmRL5J7UPLQPG+AU0pIhUmuK1OxD/vZhc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:43:30:6c:3b:15:c7:76:f1:33:36:32:2a:1a:6d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Mar 26 10:01:12 2026 GMT
Not After : Mar 27 10:01:12 2026 GMT
Subject: CN=1ef21e7b8f5d93ed645f3129d9db49b9e9cd9b6e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9b:4c:ff:81:c7:dc:09:0e:14:f0:35:ab:1c:
a4:7c:58:b8:64:da:dc:bb:61:72:72:23:ee:d3:c5:
0d:eb:74:02:09:69:1a:a0:db:58:8c:90:35:e8:27:
91:2a:7a:01:d8:10:59:b7:7f:83:a8:60:35:d8:c0:
a3:a5:9b:d7:3a:58:36:5e:5a:05:4d:35:6e:30:9e:
07:dd:1f:56:dd:54:ed:46:2f:d5:95:63:a1:dd:3c:
43:e8:2f:b0:4d:eb:7c:b7:b2:c8:a8:b4:bf:e7:25:
25:7f:f4:dc:33:87:1f:66:f2:75:42:30:0d:cb:56:
09:97:90:49:98:0c:a3:e3:00:6e:57:55:3d:7e:2a:
30:f1:92:f7:0c:ab:9a:cf:af:bf:07:04:d8:68:b8:
02:6e:b1:12:c9:de:01:c6:f0:e8:f2:1b:9e:ff:96:
84:62:b0:be:fc:21:a8:51:19:9a:24:7c:9a:52:8f:
ba:1b:85:74:f8:d4:ab:e0:23:a3:9e:a5:36:e5:3f:
e4:a2:b6:c3:a9:69:2e:85:f5:70:d8:c9:7f:dd:b3:
e8:ae:2f:ff:39:fd:aa:e2:8d:c3:0c:c3:10:2c:83:
e5:e6:5f:dc:ca:d2:27:59:a7:64:ad:6d:e6:a7:c0:
b9:ac:61:93:e0:42:51:08:94:4e:52:4c:56:94:2f:
97:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:F2:1E:7B:8F:5D:93:ED:64:5F:31:29:D9:DB:49:B9:E9:CD:9B:6E
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:51:9c:fd:ca:27:d1:d0:e8:52:b2:fc:fe:49:26:c5:24:e8:
a5:7d:83:99:67:6e:34:16:9c:18:3b:01:90:69:c5:b4:75:69:
64:2f:92:76:6e:a3:ef:df:95:6c:bd:f8:19:3c:4d:b5:fb:81:
95:5a:1e:57:ab:70:8a:bc:96:e0:4f:86:80:24:43:47:40:dc:
d8:a5:eb:13:c8:bb:3a:e0:1f:1c:bb:92:80:74:49:be:89:bc:
0c:31:ca:27:eb:68:1a:eb:c2:ff:57:14:a0:57:05:79:0d:a1:
f0:f5:6f:07:15:e4:73:94:a7:35:8d:dd:7e:bd:91:10:bd:45:
fc:74:62:04:21:af:a3:c8:3e:20:4a:27:36:5e:12:b7:cf:df:
2b:9e:50:c9:4a:8d:7f:98:40:78:96:73:c2:f5:2f:3c:62:fb:
70:70:86:91:49:c6:04:97:b0:24:e2:67:c2:95:05:bc:28:5b:
b1:c1:25:20:98:32:01:00:32:ec:04:3c:7c:ae:4e:10:32:40:
1c:d5:09:17:0d:6b:44:96:5b:f5:59:a6:52:22:99:97:bc:27:
72:75:50:fd:4a:7a:5e:01:e0:0d:0c:9d:ef:2b:33:44:e0:52:
a4:15:6a:2e:c4:a3:65:71:99:05:c5:4a:9f:f9:8f:ca:67:8e:
9f:72:1f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:02:17 2026 by rpki-client