Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
File: sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft (raw, json)
Hash identifier: WqoO0s0x0tP88lUZZM6dpN1FHLACPlYo8wuWsy+6LZE=
Subject key identifier: AF:A0:A7:A1:F6:E6:F4:90:21:9D:C9:E2:9B:39:AA:5C:8A:E7:39:7C
Authority key identifier: B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47
Certificate issuer: /CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947
Certificate serial: 019CE523C4C2CA485DC5A39F9F1E0F551977
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
Manifest number: 0B84
Signing time: Fri 13 Mar 2026 03:00:52 +0000
Manifest this update: Fri 13 Mar 2026 03:00:52 +0000
Manifest next update: Sat 14 Mar 2026 03:00:52 +0000
Files and hashes: 1: fwlXtqb10A-wV_bek-0TtXLyN60.roa (hash: EBH4JtRrxBkeHaZ/uJMc1tdnxhG7UT1SgBTpReFISGs=)
2: sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl (hash: w59RzO3NDfB54WCBhPL+wVaHjBTMA3lBmkcwgsxn1mw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl
rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 03:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:c4:c2:ca:48:5d:c5:a3:9f:9f:1e:0f:55:19:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1859f3d2cd283e7db90f02fe1b0d4f615605947
Validity
Not Before: Mar 13 03:00:52 2026 GMT
Not After : Mar 14 03:00:52 2026 GMT
Subject: CN=afa0a7a1f6e6f490219dc9e29b39aa5c8ae7397c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:53:1c:98:90:c2:1a:83:53:d0:ef:57:cd:0b:
3a:a7:a5:be:2b:0c:1e:bb:69:04:cd:48:97:ad:f9:
60:43:9b:34:e3:21:5c:52:5d:43:e1:d3:41:ee:11:
bc:73:bd:2c:25:19:c6:11:4d:00:04:be:a5:cd:7b:
b0:0a:48:aa:da:20:d7:87:e6:f5:b7:30:6a:bc:9d:
c4:01:86:c3:3f:3f:f0:ec:51:99:12:32:07:3a:07:
62:64:a2:79:c0:8f:7c:cc:75:ff:d8:80:65:1f:cf:
15:19:7c:5a:f8:3d:61:db:64:d1:99:25:b3:41:e5:
ee:ff:df:03:52:c8:ee:73:94:af:1e:4e:34:d7:6c:
fc:ab:be:9e:5e:3c:86:a0:2e:c3:dd:a6:f3:0a:b9:
21:4a:1f:d8:7d:32:48:2d:06:2e:df:5e:ae:eb:d8:
07:25:fe:fa:b7:dc:01:d4:2e:a1:76:8d:03:4c:24:
31:9e:17:e0:04:a7:8f:e5:e3:8c:4d:55:b4:bf:26:
07:03:17:82:37:ac:28:b9:80:89:54:02:b7:24:6e:
00:47:4e:a2:ef:62:29:41:9a:ef:e0:91:b9:89:63:
d1:c0:f5:cb:ad:2b:87:a6:6f:db:29:d2:2d:62:f3:
bc:9e:c5:21:06:e6:59:41:79:12:cd:96:4f:e2:68:
fa:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:A0:A7:A1:F6:E6:F4:90:21:9D:C9:E2:9B:39:AA:5C:8A:E7:39:7C
X509v3 Authority Key Identifier:
keyid:B1:85:9F:3D:2C:D2:83:E7:DB:90:F0:2F:E1:B0:D4:F6:15:60:59:47
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYWfPSzSg-fbkPAv4bDU9hVgWUc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/28/f7a560-8873-40ee-a7c5-2aadc5c3c57d/1/sYWfPSzSg-fbkPAv4bDU9hVgWUc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:8c:8c:3f:a3:7c:c3:ca:fc:69:41:3a:c7:c6:45:5a:25:2a:
b3:c8:65:69:f5:9a:be:97:f6:fe:57:6a:3c:bf:4a:93:d1:c2:
e0:81:7a:fa:e5:e8:13:13:0e:d2:18:8e:a7:31:5f:60:a0:84:
be:50:47:c6:56:74:34:8d:5a:9d:3e:d0:30:9a:21:c6:4a:a9:
42:d2:8d:a4:e6:cb:55:88:d5:29:7c:87:ea:04:79:43:b7:0e:
d6:1e:fb:81:32:65:65:4f:de:37:5a:b3:6d:8f:67:fc:ab:38:
95:f8:dc:cd:af:c5:ef:5a:0f:88:42:86:a4:bd:1c:90:e8:13:
18:b4:69:65:db:ed:c6:c8:32:a5:56:6f:cb:87:9d:8e:2d:7a:
99:7c:2f:d0:15:69:44:2e:0f:2f:ce:a6:d7:b0:1d:69:95:5a:
9d:63:2d:38:77:79:19:fc:10:ac:d7:2c:97:5d:3e:1e:41:f4:
b2:fd:65:52:65:aa:a0:38:d9:18:81:b9:5f:36:55:40:10:03:
dc:ed:61:fa:49:d8:3c:a8:5c:50:5b:3f:12:84:44:fd:41:e7:
63:84:d5:f6:d9:20:67:b8:8c:83:c5:28:c0:8f:d2:f4:5b:19:
05:c5:46:2b:c3:82:3b:11:ed:2d:78:d4:7e:78:2d:2d:cc:22:
e8:d4:e5:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 12:12:40 2026 by rpki-client