Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
File: sK3wWv729l-hmmHDCuT7EcfPJbY.mft (raw, json)
Hash identifier: pvnuVasCTIMQ6fdYuef7n0yOZFTQZVwXLatulnLwGnY=
Subject key identifier: 2B:5F:C2:F8:3A:A8:9E:70:90:55:FD:33:1C:23:D6:22:35:4C:06:C4
Authority key identifier: B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
Certificate issuer: /CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Certificate serial: 019D333ED730EC1A080D175DABD3DA749022
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
Manifest number: 188E
Signing time: Sat 28 Mar 2026 07:00:49 +0000
Manifest this update: Sat 28 Mar 2026 07:00:49 +0000
Manifest next update: Sun 29 Mar 2026 07:00:49 +0000
Files and hashes: 1: cJdPxb0RSH0QMcbmsxnfVVZLI9o.roa (hash: 7Mc+8VOQ2R5S9UUsL5A35++MoKrgCRu3M3X3wsPiNFQ=)
2: sK3wWv729l-hmmHDCuT7EcfPJbY.crl (hash: R+TRVEbCOD2odF/NhtskfC+tf9VBtrbIDVFfNDVjfo0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 00:55:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:33:3e:d7:30:ec:1a:08:0d:17:5d:ab:d3:da:74:90:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0adf05afef6f65fa19a61c30ae4fb11c7cf25b6
Validity
Not Before: Mar 28 07:00:49 2026 GMT
Not After : Mar 29 07:00:49 2026 GMT
Subject: CN=2b5fc2f83aa89e709055fd331c23d622354c06c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:52:51:25:69:1c:b2:56:5b:3c:3a:a5:1e:13:
4e:82:42:51:49:d5:0d:4a:67:e3:f7:32:ab:25:85:
de:d0:d8:aa:cc:14:51:b9:e4:68:5f:1a:c6:74:67:
a1:1f:cf:5c:fc:23:af:ac:fc:56:43:0e:2e:b8:ee:
3b:46:58:12:1e:72:9d:ae:5d:2b:b0:00:5f:58:f1:
10:09:ad:26:9e:38:bd:73:32:3f:ea:dc:1f:bc:0d:
ed:49:5f:ec:79:18:50:5b:ac:91:be:66:4c:3a:72:
d1:83:36:dc:73:92:44:d2:c4:8c:c6:2c:cd:84:3a:
91:0c:c7:63:5d:dd:a2:cc:61:93:63:9c:69:d7:ed:
ed:7b:15:37:e4:4f:45:fb:5e:47:0d:23:6f:9b:7e:
e7:c1:ae:ce:33:90:88:b4:5b:38:05:09:d8:8b:99:
09:14:b3:02:0b:25:58:34:d5:b7:f7:59:b3:ba:3a:
4a:46:5a:2c:19:28:da:38:50:db:a1:6a:c0:33:bf:
53:58:9b:82:63:14:93:05:45:a6:d3:30:5f:18:5c:
8a:22:6a:04:02:a3:5d:c7:43:68:c6:c7:5e:4c:49:
96:71:27:cd:4a:16:46:2d:77:c6:fc:3b:1e:27:b6:
52:bc:85:11:6e:1a:43:c2:c0:e9:94:db:95:7b:1b:
c8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:5F:C2:F8:3A:A8:9E:70:90:55:FD:33:1C:23:D6:22:35:4C:06:C4
X509v3 Authority Key Identifier:
keyid:B0:AD:F0:5A:FE:F6:F6:5F:A1:9A:61:C3:0A:E4:FB:11:C7:CF:25:B6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK3wWv729l-hmmHDCuT7EcfPJbY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e9/70959b-d79b-42dc-b893-5f2d0e2ae714/1/sK3wWv729l-hmmHDCuT7EcfPJbY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:68:76:83:34:aa:99:20:40:08:ab:d0:af:7e:ba:4e:ba:af:
c3:c5:d8:7d:51:f2:4d:91:18:35:1f:f8:d7:d0:b1:ae:83:0c:
48:7a:72:a3:eb:8a:32:5e:ac:0b:5e:29:c6:88:b6:f9:8c:cf:
fe:b7:7c:23:63:a4:a7:86:1e:5f:1e:63:00:a7:d9:a5:2d:b2:
ea:3f:54:cf:52:d9:1f:79:41:25:a6:43:db:3f:81:04:15:96:
a5:ec:bd:61:c3:8a:9b:d9:71:e8:7f:66:73:04:b9:28:83:4e:
7b:d7:25:da:ed:88:09:66:e4:09:0f:a5:58:45:39:22:45:cd:
f6:5b:d1:3e:f1:6c:1a:3d:ed:a1:89:91:78:af:48:57:56:30:
dc:7d:f4:7b:8e:94:a9:fd:74:93:2e:ba:1c:f5:44:14:ab:28:
0a:da:35:12:7e:3e:42:c1:c9:e5:a3:f3:71:47:6b:97:13:78:
b1:1b:7f:ab:03:24:c5:ac:ad:b6:57:fd:ab:ed:eb:8b:57:94:
62:ca:bd:2c:ac:89:9e:d1:c7:31:ff:18:0d:c6:e3:92:e7:13:
bc:f1:ce:c0:cd:64:e2:dc:e4:06:da:8a:0d:d6:c7:95:4b:c3:
36:87:4e:b8:d7:72:ff:a7:bc:61:44:29:3d:07:72:7b:a1:69:
0d:0e:6a:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 10:34:07 2026 by rpki-client