Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
File: sYxKQwCDfE6hetHjghoJrVN2QIc.mft (raw, json)
Hash identifier: Kobcs2L3/kPSHz2tq69L/Fdt3Z2FbH80TvRNy2W3K70=
Subject key identifier: F0:F0:02:AC:A6:88:FF:D7:F7:07:16:96:FA:16:B0:DC:44:7B:6A:EA
Authority key identifier: B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
Certificate issuer: /CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Certificate serial: 019D3977A377EFE55F7D1BF570A986EFF51E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
Manifest number: 1128
Signing time: Sun 29 Mar 2026 12:00:34 +0000
Manifest this update: Sun 29 Mar 2026 12:00:34 +0000
Manifest next update: Mon 30 Mar 2026 12:00:34 +0000
Files and hashes: 1: OztHm958aRJRxZODVtzftmoIutM.roa (hash: LyCjNgF1WRtdSw3T7qrOJsi3Hm2+foAc8JYBqHMHMdE=)
2: sYxKQwCDfE6hetHjghoJrVN2QIc.crl (hash: VKlC4xn6/Oudk3dHLvCOb+GIFJsDtjetOI0cVgDEwvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:a3:77:ef:e5:5f:7d:1b:f5:70:a9:86:ef:f5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18c4a4300837c4ea17ad1e3821a09ad53764087
Validity
Not Before: Mar 29 12:00:34 2026 GMT
Not After : Mar 30 12:00:34 2026 GMT
Subject: CN=f0f002aca688ffd7f7071696fa16b0dc447b6aea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:b5:03:d9:33:c4:94:91:73:9e:d8:68:90:de:
f4:0b:04:65:86:9d:5c:5d:9f:a3:06:c4:fe:ad:c0:
d3:6d:a2:fd:e1:76:32:16:be:29:35:05:9b:07:19:
91:8e:03:34:0a:56:3a:44:04:cf:72:95:30:b0:0c:
8a:b5:81:3a:0b:a8:58:c2:94:e5:fd:26:a4:96:35:
ce:d4:91:ad:8f:8f:e1:d1:fc:ad:7b:34:08:23:9a:
5c:91:6b:4d:30:45:08:b6:ca:1d:80:29:91:06:e5:
9f:21:b4:3c:c7:b9:bf:f4:48:8d:fe:ed:39:7d:90:
8c:73:df:a0:53:97:73:9f:dc:52:ac:00:f0:8e:44:
8f:8d:69:f8:5f:b4:c0:ed:19:e1:dd:41:dc:26:ed:
83:47:74:a3:9c:05:aa:7d:98:d7:63:a1:6d:e0:6f:
a6:24:87:bb:08:bc:b0:89:2e:2e:19:9f:da:a5:3b:
2d:6d:ec:60:98:06:fb:7a:47:0e:47:aa:11:f2:4b:
c3:42:07:f5:eb:36:bc:80:93:7a:ff:8d:fe:32:ef:
28:bb:a5:37:4d:6f:fc:a5:b6:b1:50:32:bd:1e:cb:
d7:6f:61:69:a9:9d:3a:ee:e1:6e:6d:09:a3:d9:d2:
e4:38:2b:6f:ca:fc:a1:0a:49:32:ee:e0:fb:bc:90:
6c:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F0:02:AC:A6:88:FF:D7:F7:07:16:96:FA:16:B0:DC:44:7B:6A:EA
X509v3 Authority Key Identifier:
keyid:B1:8C:4A:43:00:83:7C:4E:A1:7A:D1:E3:82:1A:09:AD:53:76:40:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYxKQwCDfE6hetHjghoJrVN2QIc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/af4e4b-2026-4bbb-9628-f08a0ae92b8d/1/sYxKQwCDfE6hetHjghoJrVN2QIc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:10:63:e7:a3:d3:f8:cd:8b:a3:8e:6f:47:c9:9b:d5:3b:08:
9c:e0:af:c7:70:c6:97:7c:b2:23:e3:c6:58:31:3b:ad:11:9d:
c3:c5:83:0e:00:2e:c6:cd:b8:a5:2d:5c:09:35:e1:25:bd:25:
e7:b2:29:0f:8b:cf:74:ae:97:fc:13:72:2c:e2:b2:59:70:0f:
ab:e8:b1:57:01:c0:ed:f8:4f:42:36:6b:86:23:e8:0e:e5:42:
00:19:3c:d4:fb:00:b5:7a:56:0a:12:bc:07:2c:83:14:f7:97:
51:4b:e9:26:84:21:b2:e7:43:1f:9f:87:12:29:c1:93:0b:09:
29:33:11:97:ad:83:12:80:66:24:bf:c9:fa:e9:f1:b6:40:da:
8e:62:16:52:1a:72:9e:8a:c9:59:65:24:9a:09:ff:4c:fb:b0:
04:3e:12:c7:88:35:fe:c3:27:88:36:37:d0:f0:f5:64:99:ea:
bd:cd:1e:06:42:5e:bc:c8:75:d1:e9:cb:c4:7d:fe:1a:94:72:
ed:5d:8f:61:df:45:7b:59:e7:97:9f:84:57:fe:6a:73:39:42:
a6:6e:85:7b:b9:65:28:fa:54:71:56:45:66:0a:90:1b:a6:e3:
c2:d5:b8:73:27:d6:c9:ef:a0:9d:b0:f0:d2:f0:1e:77:1b:91:
12:66:d9:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:07 2026 by rpki-client