Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
File: sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft (raw, json)
Hash identifier: Xqv+RoZUKmwNbWy5hLAUADVtyu99CYShWwTEA9ooxQE=
Subject key identifier: F2:07:1F:82:DE:00:CF:DC:49:BF:35:2C:A4:81:FA:69:31:94:B5:E2
Authority key identifier: B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47
Certificate issuer: /CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947
Certificate serial: 019DCED05FD4FF0E54B0DB104E6FD4034BE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
Manifest number: 0BFD
Signing time: Mon 27 Apr 2026 12:00:55 +0000
Manifest this update: Mon 27 Apr 2026 12:00:55 +0000
Manifest next update: Tue 28 Apr 2026 12:00:55 +0000
Files and hashes: 1: fwlXtqb10A-wV_bek-0TtXLyN60.roa (hash: EBH4JtRrxBkeHaZ/uJMc1tdnxhG7UT1SgBTpReFISGs=)
2: sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl (hash: MsR+0rf0z2P/C3Y6eSfFygta/DmQ3VZiFNCfsS0eYZQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:d0:5f:d4:ff:0e:54:b0:db:10:4e:6f:d4:03:4b:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947
Validity
Not Before: Apr 27 12:00:55 2026 GMT
Not After : Apr 28 12:00:55 2026 GMT
Subject: CN=f2071f82de00cfdc49bf352ca481fa693194b5e2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:33:06:5e:e5:80:cd:14:88:f2:1d:02:62:65:
e6:38:cd:cb:c0:86:65:58:ad:54:85:65:f3:7b:ef:
99:d8:33:5d:87:b2:6d:79:bf:83:58:e6:13:1a:4d:
04:77:57:80:3a:be:fd:6c:9b:4f:4c:35:3f:bd:62:
bf:21:5a:58:7e:e3:0a:51:44:aa:dd:26:94:ef:2e:
c7:dc:d8:f7:cc:9f:14:6b:0f:b6:cf:c9:63:7d:11:
07:fd:ed:c6:9a:98:87:55:0f:6a:82:b3:a3:54:a4:
07:d4:65:56:c7:bb:d9:fd:99:ac:a7:f3:4b:4c:dc:
90:ea:a7:7f:db:69:65:df:bb:c4:7c:25:a3:0b:a3:
c4:be:13:77:47:86:d7:4f:77:e2:6a:20:67:89:69:
f9:0d:f9:21:dc:72:b2:42:f2:44:37:e8:68:22:94:
94:db:97:b1:bf:a9:02:46:a4:2d:4a:95:26:8f:3a:
51:25:3f:ce:71:c5:38:80:41:e0:b9:ab:c2:cf:84:
c4:02:9c:2c:d5:ad:1e:25:d2:68:3f:77:ca:1e:e2:
86:c1:6e:d4:9c:74:c9:7d:b9:d5:72:be:df:83:9a:
93:53:d7:af:ea:d9:3c:7d:ed:c5:e8:4d:13:a3:00:
54:65:6b:4e:2c:5d:f7:22:9f:f2:56:31:df:c0:fd:
1b:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F2:07:1F:82:DE:00:CF:DC:49:BF:35:2C:A4:81:FA:69:31:94:B5:E2
X509v3 Authority Key Identifier:
keyid:B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:56:a3:b5:e6:03:d9:2d:9b:01:bf:76:cf:c0:9a:c5:8f:37:
31:e1:67:5c:cf:f0:ec:cf:e5:f0:b3:e5:c0:f8:34:57:25:97:
35:5a:86:2c:b1:9c:be:24:76:01:5a:3b:10:f5:0a:0c:c9:fc:
8a:1d:64:61:c4:c3:7c:0c:54:50:a1:40:d3:97:36:94:85:aa:
ee:0a:8f:77:ee:f2:08:3b:df:b4:01:e1:71:e2:5c:d8:f2:f7:
bc:b1:ff:81:4b:ef:21:ed:9c:65:ce:08:92:26:c1:8e:11:7f:
d7:d0:e9:c2:0a:a2:59:32:5f:cc:9c:65:b3:ef:e0:3f:eb:fa:
f7:a8:2e:38:64:9f:c5:2a:cc:20:d6:c9:be:bd:99:fc:ae:f0:
e9:3c:2f:f7:82:cd:3f:16:97:72:91:50:fa:e3:48:30:b0:48:
fb:ed:56:32:1f:b1:84:31:50:ec:0e:fb:af:10:f3:2a:ac:56:
32:4b:24:95:9a:46:cb:a7:d1:da:59:da:94:bf:56:b8:c4:f8:
9e:67:9f:6e:23:ac:4d:5a:1e:da:1e:cd:d8:8e:93:6b:57:01:
67:3a:39:bc:25:aa:26:1a:aa:d1:66:f5:9f:1b:5a:36:50:e4:
ae:8b:76:76:16:f4:23:bb:81:ed:51:8b:3c:84:3e:1f:d5:2c:
00:e9:29:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 15:48:53 2026 by rpki-client