Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: eP6KSngfuvBtaW4wO9KaBjOjR4s0PAi9CqqMHzHbmKo=
Subject key identifier: F8:0C:E9:49:7F:2A:A0:6A:DB:5F:D3:BD:54:08:14:14:BD:92:D9:0E
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 019D27A8A5665B2310B891876443A87EB1CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 13F8
Signing time: Thu 26 Mar 2026 01:00:56 +0000
Manifest this update: Thu 26 Mar 2026 01:00:56 +0000
Manifest next update: Fri 27 Mar 2026 01:00:56 +0000
Files and hashes: 1: cTa4k-r506Jm5F65mksggvloVDA.roa (hash: VUs6amyf7QVphS7d5atiRKNg/52+c1LBxHY+3So5haI=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: qi/5AEv9RmMk0ZPH6nO5k7pl6P/8FEDMTFp3crrsEzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:a5:66:5b:23:10:b8:91:87:64:43:a8:7e:b1:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Mar 26 01:00:56 2026 GMT
Not After : Mar 27 01:00:56 2026 GMT
Subject: CN=f80ce9497f2aa06adb5fd3bd54081414bd92d90e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:2b:4b:67:87:73:3c:ba:31:dd:ef:6d:e4:de:
06:bb:87:bc:1f:92:85:86:5e:91:66:88:f4:cf:62:
a1:6d:f9:40:8d:78:c1:b4:13:89:8d:47:ae:3e:7e:
bc:e2:c6:ea:e5:00:b7:c2:38:9c:8c:61:48:d7:e1:
66:21:cc:42:91:cc:d5:d3:32:b4:5f:12:b7:7b:2d:
1b:c8:b8:d6:3f:80:ef:34:2d:c7:4b:9a:84:1c:fc:
07:16:80:d7:83:9e:4b:2f:d4:66:f1:59:cf:d2:39:
da:9d:5c:bc:03:17:dd:3b:b6:a8:e9:bf:07:a8:45:
e8:45:53:e5:46:ff:c8:89:92:a1:8a:a2:fc:5e:66:
17:74:00:49:75:09:a7:96:0c:46:de:8b:cd:59:72:
68:21:6e:4c:72:87:e3:7d:c3:94:08:af:fd:53:46:
11:0c:cc:b6:40:dc:3b:04:91:05:c2:8c:0d:42:93:
4c:63:e3:d4:52:46:52:8d:ff:5f:4a:5c:64:63:51:
e8:95:9b:04:e7:9c:a4:ec:18:e6:8f:c3:91:60:80:
9d:4b:0d:44:51:ca:ef:20:fe:aa:7d:ed:92:c9:62:
4b:0d:52:da:05:88:b9:1f:4f:58:a0:2c:de:e3:82:
05:c5:25:7a:e7:78:9a:c7:29:e1:2a:ae:68:51:43:
69:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:0C:E9:49:7F:2A:A0:6A:DB:5F:D3:BD:54:08:14:14:BD:92:D9:0E
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:7b:47:38:2a:43:39:e9:78:df:34:bb:9f:00:bf:30:a9:14:
26:ef:21:a7:5e:1b:f2:c0:f1:2a:7a:3e:3f:6f:7c:c3:25:ae:
33:98:58:4f:b1:9d:4d:a1:c4:5a:24:61:03:b9:d2:b2:9b:a7:
26:72:67:2c:ef:fb:5a:0b:c6:9c:9d:27:df:89:65:90:1e:9f:
3f:d7:dd:70:c2:71:98:d0:7d:ac:07:e2:e2:03:3e:90:cd:3b:
cc:d9:1d:b0:96:2d:a6:c9:b5:bf:05:26:4e:fa:7c:e8:e4:b8:
95:3b:5a:b9:e1:4f:43:97:45:77:9a:3e:50:49:06:b6:f1:97:
b3:ee:aa:3b:f6:16:ba:44:6e:d0:1b:9f:5e:78:61:2f:c5:3c:
e7:b2:ff:86:84:ad:a9:2c:cc:14:37:f4:76:4b:9f:f7:a1:46:
f6:70:f8:0b:f5:ed:56:93:c1:54:a1:b0:31:ce:1e:cc:13:3c:
c0:e3:ae:67:d4:5f:2b:cd:b8:1d:65:5c:cf:e4:b0:fd:bb:f5:
fc:ef:3e:4c:3f:34:b5:4a:85:77:51:94:3d:62:a2:2f:17:49:
3e:f8:c4:7b:dc:42:d2:5c:0c:2c:0d:2b:72:f8:37:60:ed:5f:
41:79:31:94:bd:dc:d1:00:f2:60:52:20:22:a5:d9:ed:51:7e:
90:e2:43:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:23:19 2026 by rpki-client