Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
File: sPiohfd3bSq5m7TyDoTTBuA5SqM.mft (raw, json)
Hash identifier: Dt/8cyog7MGz55r1IXDesAJou0rD0/MLAUSMZuhSX8w=
Subject key identifier: F1:AF:B3:8A:79:89:EA:67:9F:08:3E:93:17:7A:8B:A9:AD:71:F5:75
Authority key identifier: B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
Certificate issuer: /CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Certificate serial: 019D382E525364EFA2CF3DF2C2D0F0CF60D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
Manifest number: 1623
Signing time: Sun 29 Mar 2026 06:00:52 +0000
Manifest this update: Sun 29 Mar 2026 06:00:52 +0000
Manifest next update: Mon 30 Mar 2026 06:00:52 +0000
Files and hashes: 1: 05WyMyWcwnVDoZCr0BbmBiMaPoc.roa (hash: ZxXNQ2QkuA/tbUaOYs+oznQKVfcUfC5jKVIgdvSVmnk=)
2: sPiohfd3bSq5m7TyDoTTBuA5SqM.crl (hash: rTGfFN+dI+Bf9NuyPvABvw6sZNOwP/Rlq7V//DLcDkY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:52:53:64:ef:a2:cf:3d:f2:c2:d0:f0:cf:60:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0f8a885f7776d2ab99bb4f20e84d306e0394aa3
Validity
Not Before: Mar 29 06:00:52 2026 GMT
Not After : Mar 30 06:00:52 2026 GMT
Subject: CN=f1afb38a7989ea679f083e93177a8ba9ad71f575
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:a3:1c:3f:21:bd:58:09:1e:34:19:9f:03:fa:
4e:3c:3e:f2:8f:e4:f5:37:42:e2:b3:3d:96:56:82:
41:5c:b7:49:d1:58:8d:0b:ee:a1:c2:de:66:38:43:
a9:44:a2:b7:f3:6e:ab:93:80:1d:95:59:a2:60:e0:
79:a4:63:ca:18:4f:81:ee:b6:33:35:20:b1:b7:2a:
fc:9c:ba:82:32:95:41:e3:ee:98:66:3a:ad:1d:09:
71:d6:30:0c:b9:0d:2d:58:29:90:6f:63:0b:3e:87:
86:a7:25:98:22:fb:c6:b6:fb:52:7c:da:cf:1f:ea:
8f:73:1c:dc:f8:06:6d:7a:56:10:f5:c0:97:7e:f9:
b9:3f:8b:b3:b7:5d:68:50:d0:8a:d6:2a:f6:21:51:
ab:79:74:df:e7:fe:38:9f:1f:b2:cc:cd:73:c8:ae:
3b:76:76:6d:86:75:13:b7:6e:6e:7b:ca:c0:74:ba:
12:31:e5:33:f5:ef:fb:b6:6e:4c:1d:05:a0:26:91:
44:6e:36:0c:5c:0c:53:5b:09:58:7c:52:6d:f2:10:
6d:1e:1f:99:3d:6e:87:cf:88:50:93:5a:72:3b:9a:
62:af:19:f1:7e:66:f1:5b:e1:2e:d6:5c:9e:1c:10:
51:94:50:90:cc:4f:a3:ff:00:3a:50:a0:d6:99:f5:
e3:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:AF:B3:8A:79:89:EA:67:9F:08:3E:93:17:7A:8B:A9:AD:71:F5:75
X509v3 Authority Key Identifier:
keyid:B0:F8:A8:85:F7:77:6D:2A:B9:9B:B4:F2:0E:84:D3:06:E0:39:4A:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sPiohfd3bSq5m7TyDoTTBuA5SqM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/b1282f-71c5-47e7-aea1-4d05498aa97d/1/sPiohfd3bSq5m7TyDoTTBuA5SqM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:36:51:b9:5a:c9:96:fc:50:2e:3a:1b:e0:6d:f8:89:fb:59:
6f:e1:b5:ed:ea:31:ca:91:79:fb:61:52:d3:0d:66:98:b4:8c:
e2:e5:5d:f8:5c:03:37:76:6d:fa:13:1d:15:e8:f1:05:57:05:
27:20:eb:ff:e4:29:5a:d4:a9:9a:a5:3e:0e:e0:d5:5e:5c:fa:
95:9b:1d:51:3b:6f:10:55:16:e3:d6:74:b1:bd:e4:ba:16:b6:
53:0d:c4:ac:70:26:cb:57:a6:fd:b2:44:85:b1:0c:7c:6f:e9:
3f:aa:cc:75:45:97:47:65:e0:7f:17:0d:c0:37:1b:b8:49:89:
9d:7b:a0:71:e5:88:21:62:cd:9a:b6:04:f5:b3:40:ff:b4:d5:
0b:f8:0c:e4:9a:3d:52:b4:7f:f2:23:b7:68:6d:b3:43:a8:a1:
29:d4:ff:28:b2:e1:44:7d:ef:c4:e9:e2:a3:32:2e:12:29:c8:
dd:c6:03:92:7f:2f:8e:e8:99:3d:7c:f9:9c:87:d7:a3:b2:2e:
dc:5e:44:2f:d6:ba:01:99:28:d0:6b:50:d0:87:c3:2b:e1:36:
59:62:8e:ba:8d:9a:82:62:af:b5:1a:7c:80:0b:45:b1:9c:b4:
18:8a:7f:56:a6:fc:8c:9e:6d:87:76:83:a3:76:20:8d:01:10:
93:af:9d:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:05 2026 by rpki-client