Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
File: spIJTWkd9KfDjxa3VVfpwm1KxpI.mft (raw, json)
Hash identifier: F12WuMN2wGIDRpYgXO5NQVZZUrCgRE4qJBl8dgg3X0w=
Subject key identifier: C3:0D:C4:B6:E6:F0:33:C2:07:29:64:55:16:9B:AB:2F:FF:46:B3:1E
Authority key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
Certificate issuer: /CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Certificate serial: 019CED81F8DB653730F23FCD67EFD88D1845
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
Manifest number: 176E
Signing time: Sat 14 Mar 2026 18:00:43 +0000
Manifest this update: Sat 14 Mar 2026 18:00:43 +0000
Manifest next update: Sun 15 Mar 2026 18:00:43 +0000
Files and hashes: 1: 0E-nyOZ29zT4VlvH5MYeOKciQqI.roa (hash: n1KClvottVe9Rxjk6bmhkUknz6tneHeORGIxNcy3VKk=)
2: spIJTWkd9KfDjxa3VVfpwm1KxpI.crl (hash: XFkevZPUVSAY7tNS0viLulfnsrapAUC9c0jQiu+KrW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 15 Mar 2026 12:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ed:81:f8:db:65:37:30:f2:3f:cd:67:ef:d8:8d:18:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b292094d691df4a7c38f16b75557e9c26d4ac692
Validity
Not Before: Mar 14 18:00:43 2026 GMT
Not After : Mar 15 18:00:43 2026 GMT
Subject: CN=c30dc4b6e6f033c207296455169bab2fff46b31e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:ea:70:22:20:b9:d8:d3:6d:b9:c5:45:9d:b4:
65:46:92:91:ca:2c:06:51:36:99:30:3c:cf:df:e9:
d4:e1:03:15:ab:f3:2c:83:93:d5:c5:d7:ad:79:15:
e4:3b:5c:ab:6c:cf:50:01:76:f4:df:ee:91:ff:27:
96:2b:34:c0:3f:49:4a:72:2f:8f:47:1f:da:e3:44:
bb:8e:72:4e:6d:f9:72:b0:f1:30:d4:b6:7d:ed:6c:
53:20:91:5d:93:14:57:50:01:fa:82:1d:29:e5:9d:
52:82:8e:41:bd:44:04:c4:d8:b2:9a:bf:1e:07:cf:
15:4b:84:ae:9f:8b:50:e4:7d:6d:3b:39:3a:0a:49:
0c:a2:ea:e6:1c:6b:e8:f7:ef:c6:00:7b:87:c3:ef:
ec:ca:3b:e9:49:45:85:9f:bd:b8:6f:79:f3:b8:bb:
c7:f6:59:7c:3a:3e:5f:b7:e0:5f:7c:34:6a:48:3e:
65:af:cd:4f:51:e7:b5:0b:ff:98:5f:b2:f0:e2:14:
47:7e:59:2b:90:fa:87:30:b2:90:74:eb:d1:e8:c8:
31:c8:4c:d8:03:0e:72:5b:86:ff:54:c1:f3:59:6b:
09:cc:dd:d5:25:e6:42:57:ad:20:3c:bb:38:ac:68:
5f:be:f0:c8:47:22:ac:46:11:65:3e:30:b1:a5:cd:
ce:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:0D:C4:B6:E6:F0:33:C2:07:29:64:55:16:9B:AB:2F:FF:46:B3:1E
X509v3 Authority Key Identifier:
keyid:B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:24:31:45:b8:6b:70:08:56:28:e0:ed:a4:92:76:b3:43:3d:
c0:86:0e:ea:4f:58:85:fe:11:8c:f9:cf:2a:c7:bc:a0:63:87:
e8:1c:8d:c1:6c:00:8c:06:d2:16:04:71:5b:03:6f:fe:ed:ba:
4b:e0:c1:a3:2e:0d:21:43:01:1d:df:53:2a:b9:29:97:19:b4:
e3:9a:37:c0:53:19:b7:b0:27:bf:10:73:de:b0:7f:9d:97:c8:
19:b5:a3:fb:d2:0b:f4:49:91:ea:30:98:68:4d:41:a6:a3:e3:
bd:f5:11:48:4f:00:96:82:7d:b2:19:59:a6:98:82:79:d5:12:
41:b3:1e:2d:ad:0e:19:55:14:4f:67:8d:27:2d:64:32:45:d7:
41:86:c2:75:4e:c4:aa:13:d8:e0:2b:cb:b2:91:d1:81:cd:34:
bc:bd:37:e2:06:55:94:5c:53:6d:4d:45:9e:af:8b:92:ea:0d:
f9:fc:9f:08:92:6f:ba:b4:86:bb:d1:68:20:3c:a0:07:c7:69:
53:be:86:f9:cc:67:a8:a6:e4:71:7a:1c:28:0b:f2:e6:d1:a0:
47:46:59:f9:b6:4d:40:65:2d:c9:9c:ca:a2:9a:f8:94:79:9b:
d1:1b:4e:dc:85:1e:a8:a3:18:40:a3:ad:eb:ce:bf:d7:d8:47:
a7:3f:78:e3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 14 22:32:35 2026 by rpki-client