Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
File: 1ftSajPzZqqJRhiOXTJr3ORuLEA.mft (raw, json)
Hash identifier: kCxWeQ0Sp2YsycbuGWx2qw/lOCBj1h+r8r9QskrPnzo=
Subject key identifier: B2:FA:6B:03:CE:85:E4:E5:CC:9E:72:28:D4:31:24:75:91:4C:6E:E2
Authority key identifier: D5:FB:52:6A:33:F3:66:AA:89:46:18:8E:5D:32:6B:DC:E4:6E:2C:40
Certificate issuer: /CN=d5fb526a33f366aa8946188e5d326bdce46e2c40
Certificate serial: 019D371B6321F5AD0651F311E8F02F2A2B0B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
Manifest number: 0AF9
Signing time: Sun 29 Mar 2026 01:00:34 +0000
Manifest this update: Sun 29 Mar 2026 01:00:34 +0000
Manifest next update: Mon 30 Mar 2026 01:00:34 +0000
Files and hashes: 1: 1ftSajPzZqqJRhiOXTJr3ORuLEA.crl (hash: IIm2r5IqqPv7BIM+2tZ574K7COtSuKPOCx/EMkJTu0w=)
2: zYE8FUPFtiLYSakQbWMYmGaB8Dk.roa (hash: e4WusMf1jCNYs3vcwJpmwZbgUW6eoVWnObCKagC+ZGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.crl
rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:63:21:f5:ad:06:51:f3:11:e8:f0:2f:2a:2b:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5fb526a33f366aa8946188e5d326bdce46e2c40
Validity
Not Before: Mar 29 01:00:34 2026 GMT
Not After : Mar 30 01:00:34 2026 GMT
Subject: CN=b2fa6b03ce85e4e5cc9e7228d4312475914c6ee2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:b0:36:9d:31:51:2f:0f:2c:0e:a3:d4:68:eb:
42:3a:8e:48:87:61:ab:e9:01:26:53:4f:75:a1:ee:
03:61:e8:7a:60:32:fa:87:54:87:ee:0c:0f:a0:5b:
36:9e:04:c3:fb:27:bf:74:0e:cf:8d:f2:59:07:45:
b0:bc:60:97:b4:85:01:1c:ce:37:db:27:d9:9b:70:
9d:05:19:71:a6:9e:8f:8b:84:2a:1c:8f:b4:2c:05:
b5:b7:50:a3:f4:57:9a:82:0c:22:91:eb:e0:6d:d0:
5d:51:29:27:b8:a4:b2:b0:e6:6d:dc:66:fe:f6:86:
eb:db:c9:8b:3c:45:7d:36:31:c5:32:5c:78:b8:bf:
53:1a:6b:97:95:05:fe:33:11:d0:bc:e4:2a:92:3d:
7f:71:d9:fb:29:bc:13:8d:13:f9:84:ac:10:cd:2e:
0d:12:90:05:22:09:c4:24:2a:e7:70:20:81:4b:f3:
a2:97:6f:10:04:50:e6:e1:08:6b:92:ea:60:bf:0d:
1c:04:2e:cf:61:1f:69:ea:e1:6d:88:aa:de:e1:cd:
2b:91:ba:2a:6b:f8:c5:61:f3:02:96:5e:c7:87:70:
fd:e0:f5:06:f2:b7:1a:0a:fe:6c:56:9e:07:e3:a7:
94:66:35:5b:7a:15:43:d6:86:7d:28:95:23:ac:26:
46:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:FA:6B:03:CE:85:E4:E5:CC:9E:72:28:D4:31:24:75:91:4C:6E:E2
X509v3 Authority Key Identifier:
keyid:D5:FB:52:6A:33:F3:66:AA:89:46:18:8E:5D:32:6B:DC:E4:6E:2C:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1ftSajPzZqqJRhiOXTJr3ORuLEA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/19/4a27cb-8cd6-45cc-8246-0e9d3eca44c2/1/1ftSajPzZqqJRhiOXTJr3ORuLEA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:9f:6c:a5:fc:57:05:6a:15:28:3d:de:bb:6c:d2:90:45:85:
6a:ef:85:f4:e2:23:c3:79:8a:ff:f3:13:aa:fb:47:43:4f:b8:
8b:3d:c6:11:dc:f7:62:22:8b:c2:c3:42:a3:b4:4b:00:20:7c:
0e:44:2b:ef:5c:9e:f6:b7:be:6f:38:37:20:52:40:f5:cf:95:
ac:23:4f:63:e5:a4:7a:97:30:00:eb:4d:d6:a4:14:fc:b7:fc:
6d:e1:77:7c:6f:fb:a1:e1:88:f5:1a:87:54:4b:95:c4:b6:3f:
1b:7f:9b:f5:f1:87:32:bf:f6:6c:19:e2:ff:82:40:0d:eb:9e:
28:a6:99:d1:a2:ed:99:ac:57:c1:37:df:a9:c7:34:89:34:83:
55:35:8a:59:a7:41:dd:25:1b:3b:8a:3d:2c:7f:20:fa:55:c3:
be:b8:b9:38:c4:ac:0e:99:14:15:28:3d:8d:6c:ee:b0:b6:5f:
91:87:ba:2b:d5:08:9a:ef:40:67:30:b2:10:4d:d8:90:d0:e3:
0b:b0:62:b2:a7:11:d4:e6:78:a4:4b:42:36:07:3c:3a:85:4c:
b0:2f:ab:89:22:a4:30:cc:c4:12:ec:f1:75:68:27:dc:f1:e8:
e6:d5:90:ef:f6:64:37:74:c5:f0:14:7f:5a:e7:59:9d:0f:58:
61:1b:73:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:41 2026 by rpki-client