Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
File: sXQMTAefLR3uhUOfgngbm651apU.mft (raw, json)
Hash identifier: pKZFUgA8VsB6K2UZXbvpnAejVuzaopSDgx4cNUY+TJo=
Subject key identifier: 7B:70:1F:E4:78:E2:21:A5:F0:1D:84:37:1D:68:74:79:C0:53:5F:DB
Authority key identifier: B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
Certificate issuer: /CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Certificate serial: 019D382E4D721F5697245B7E108249DE10BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
Manifest number: 14DC
Signing time: Sun 29 Mar 2026 06:00:51 +0000
Manifest this update: Sun 29 Mar 2026 06:00:51 +0000
Manifest next update: Mon 30 Mar 2026 06:00:51 +0000
Files and hashes: 1: k2NLRoGGs_1_tPLBpVuQ2tQaPX8.roa (hash: 7U/P0XBJOG36kibHl1+nAbvsI31pDTNTQ+rTrF6SsdE=)
2: kfGT7rmG_b7NtjrIHfozveynidI.roa (hash: fvmGEPse0L5/dDUx9Eg53Q73vcZQitS7udRiA39FkwA=)
3: sXQMTAefLR3uhUOfgngbm651apU.crl (hash: LN89NEXq865Ue2tn2P9QSH99JnUVo4W1ZfX0R4+SeZw=)
4: yS_lGMVX6IuAVI6W1sAw8zbKOfs.roa (hash: xRXUXVbiVTSPwLv7pVaMbiKs2q5E3HgTW6OSYD6dOfI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:4d:72:1f:56:97:24:5b:7e:10:82:49:de:10:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1740c4c079f2d1dee85439f82781b9bae756a95
Validity
Not Before: Mar 29 06:00:51 2026 GMT
Not After : Mar 30 06:00:51 2026 GMT
Subject: CN=7b701fe478e221a5f01d84371d687479c0535fdb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:e8:98:bb:1c:99:ff:97:50:56:e3:98:e5:b7:
f1:9d:25:06:c2:66:12:89:5d:51:4f:c5:92:bf:d3:
4e:ca:7f:86:b9:3d:76:a1:f6:2d:60:e9:ed:18:e6:
93:bd:cd:ad:19:22:46:93:1b:1a:c6:8e:19:f9:3c:
46:24:ce:08:41:db:b4:0b:01:b0:8b:61:09:4a:f5:
dd:7a:15:34:80:26:92:97:51:52:01:26:a4:0d:4c:
e3:96:da:06:87:0a:6f:d8:ed:3b:a5:4c:8e:d3:0e:
f8:3a:b2:ef:e4:e8:8e:59:94:4c:b5:29:37:1c:a8:
37:aa:f1:91:1e:d6:f6:6d:27:66:ed:4f:1b:ae:30:
24:85:61:57:79:00:68:fe:15:6e:25:b0:9b:ef:15:
7d:43:57:01:1c:9d:8c:c0:ba:5a:5b:12:69:9d:3a:
d3:7c:ec:b0:f1:38:bf:f0:a6:af:e9:fc:ca:62:46:
36:1d:7f:41:33:55:ee:ad:36:38:78:6a:9f:40:97:
df:cc:af:de:4a:3b:10:87:41:71:41:b2:fc:bb:29:
3a:c0:33:34:b1:d5:e8:3d:82:3f:d3:cf:63:7f:ec:
d9:87:60:c1:c4:1f:a9:77:26:00:71:85:73:7c:1f:
98:c8:1d:22:dd:15:13:5d:43:f8:34:4e:b6:f9:66:
95:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:70:1F:E4:78:E2:21:A5:F0:1D:84:37:1D:68:74:79:C0:53:5F:DB
X509v3 Authority Key Identifier:
keyid:B1:74:0C:4C:07:9F:2D:1D:EE:85:43:9F:82:78:1B:9B:AE:75:6A:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sXQMTAefLR3uhUOfgngbm651apU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/72a495-2b5d-4a23-99c4-ef0671c7c0df/1/sXQMTAefLR3uhUOfgngbm651apU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:75:2c:e4:87:17:bd:7c:6c:1e:b1:08:d1:fe:31:77:96:0f:
3d:cf:33:9a:e0:f1:ec:76:2a:b4:2f:99:1b:d3:be:af:89:9f:
c3:f1:c9:07:21:a6:f0:88:9c:8e:5c:ca:74:01:eb:3c:f6:61:
ef:a9:ce:74:d8:99:bf:08:1b:0c:a1:2e:05:d9:77:1f:63:1b:
8b:28:b3:d8:64:ba:82:55:45:3b:c9:dc:ea:98:6f:99:78:cb:
a3:ab:08:9b:08:01:8b:b1:31:f6:ff:0f:34:5c:db:c1:dc:c8:
d1:4f:ab:40:5f:94:86:1a:33:6f:ba:ce:d0:2c:06:df:24:77:
23:20:90:a6:fa:99:d4:a7:6f:3e:6d:21:fe:74:2c:bf:31:e7:
55:d4:94:2b:9d:de:0b:49:8d:9a:ae:d9:65:2a:94:d6:6b:1f:
90:dc:d7:19:9c:93:0c:35:41:de:ec:27:6d:e5:65:1d:27:8b:
23:22:2d:4a:ee:39:35:85:7c:a8:c3:85:e4:28:33:cd:f7:da:
e0:fb:44:b2:8f:7a:65:b5:49:9f:e2:84:02:83:ff:17:17:d4:
e2:04:2b:12:29:06:48:96:5b:71:1d:c4:e1:58:ab:8e:30:e4:
74:5f:06:fb:95:96:2b:3b:17:5a:dc:09:5b:c0:58:94:3f:4c:
3f:5f:38:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:23 2026 by rpki-client