Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
File: so7x9PiCePTfGec-M4HOzXjgacE.mft (raw, json)
Hash identifier: a4JXM2SzGyvKzvgrJGTgJ/pwrfXo3JvRBc6U4gX4T1Y=
Subject key identifier: 0B:E6:91:6A:82:18:7E:26:80:07:CE:F0:F6:6B:76:44:93:05:BC:FE
Authority key identifier: B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
Certificate issuer: /CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Certificate serial: 019D3789C732E014E91DA29642EF846172FA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
Manifest number: 0538
Signing time: Sun 29 Mar 2026 03:01:09 +0000
Manifest this update: Sun 29 Mar 2026 03:01:09 +0000
Manifest next update: Mon 30 Mar 2026 03:01:09 +0000
Files and hashes: 1: WmDNL-b0WkRscYpfEnZaGcaTcFM.roa (hash: vFHl+C0H692uAua09x2J70xulx0PssETV1wVHPp2xHA=)
2: so7x9PiCePTfGec-M4HOzXjgacE.crl (hash: Ldv6PO9SRtwX/1vYdjyJw/jSokYr5aBilOv9HTMBbJU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:c7:32:e0:14:e9:1d:a2:96:42:ef:84:61:72:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b28ef1f4f88278f4df19e73e3381cecd78e069c1
Validity
Not Before: Mar 29 03:01:09 2026 GMT
Not After : Mar 30 03:01:09 2026 GMT
Subject: CN=0be6916a82187e268007cef0f66b76449305bcfe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:79:8d:b9:73:f1:fb:bd:79:95:f4:be:38:a2:
9c:bc:e0:37:3b:7c:41:dd:ff:f7:77:32:d6:06:1b:
02:29:11:1a:10:11:b9:0c:45:35:02:8c:a1:76:6f:
0f:39:f3:4e:e9:24:b2:7d:0d:3c:75:63:78:ba:9e:
10:b1:ff:a2:6f:e1:a4:6f:04:51:fc:21:7a:b3:c4:
0f:9e:cc:b3:e5:d4:49:69:4b:03:66:fa:03:f0:b7:
e4:8a:4d:b7:f6:b1:fe:df:b4:22:56:56:2d:4f:7e:
ac:c5:b0:f9:8f:4b:5d:0d:e4:80:af:f9:4c:3f:c4:
54:c0:b8:9e:8f:15:d0:70:2c:2a:5f:4e:97:b5:3a:
0c:23:2f:31:ed:a7:39:a0:0e:f1:ac:c2:31:ad:49:
8b:a1:61:b1:fd:46:1f:da:ca:89:d0:3e:2f:92:d5:
29:22:c3:04:6b:3a:04:8a:02:2f:ef:38:9b:4b:f4:
ff:9e:de:bf:65:f2:0c:e6:a9:d9:83:0a:4c:e4:98:
b0:22:1b:0c:b5:7a:ed:8c:80:39:d1:58:5a:51:12:
52:f7:6f:14:89:42:99:91:4d:5a:6e:34:03:f0:08:
51:f3:cf:b8:6a:15:39:c5:db:17:47:62:57:9f:37:
3e:fc:97:8d:29:3a:e2:84:a8:97:32:e4:94:d7:9b:
9d:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0B:E6:91:6A:82:18:7E:26:80:07:CE:F0:F6:6B:76:44:93:05:BC:FE
X509v3 Authority Key Identifier:
keyid:B2:8E:F1:F4:F8:82:78:F4:DF:19:E7:3E:33:81:CE:CD:78:E0:69:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/so7x9PiCePTfGec-M4HOzXjgacE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/1f051b-e735-49b8-bc6d-9ef0a59927b1/1/so7x9PiCePTfGec-M4HOzXjgacE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:ad:19:c0:8b:db:e8:ab:96:24:fa:70:b1:4c:25:86:12:6c:
26:25:65:79:76:0a:ad:aa:02:7e:89:0e:c0:6f:0e:f4:e8:c8:
29:9f:58:28:2c:44:9d:ad:37:5e:7d:25:18:a5:eb:a3:73:e8:
73:48:83:31:20:fc:b5:4d:40:eb:3e:ff:1f:10:37:2c:33:51:
a2:59:84:ed:77:f0:93:61:5c:1c:1c:68:74:b2:ed:9c:80:d4:
b9:ed:49:a3:68:fb:1f:c9:6b:82:2e:91:67:27:b6:00:8e:88:
3a:af:7a:52:c7:6b:d7:11:e7:1c:56:73:90:8d:1c:09:60:7a:
4a:93:e2:06:a7:ec:cc:78:97:24:e7:4d:9d:63:e5:ff:d8:42:
5a:fd:e4:6d:1e:0a:09:ff:7e:93:e4:5d:e1:7a:53:6f:f4:46:
f4:09:76:99:83:7e:5a:8d:d8:07:59:a9:ad:02:89:80:dd:e0:
d3:ef:91:01:11:f8:07:d3:2c:3b:95:1b:3a:cd:1f:ee:d6:98:
4d:77:9b:24:ee:02:1d:f6:de:c3:d9:3c:0d:8c:e2:90:03:e2:
a2:28:c9:75:78:0c:3f:81:f9:0f:32:83:e3:13:b4:09:71:7b:
fc:59:69:6f:fe:78:ec:d4:61:6f:98:14:e0:3d:77:1e:2d:e8:
9c:8b:38:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:13:25 2026 by rpki-client