Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
File: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft (raw, json)
Hash identifier: xnWTNidQ6ZwGi4fBNn+cCtR/2RIv6M/52rKPlBlV4ac=
Subject key identifier: 5A:5F:76:91:C5:1A:8B:70:4C:17:6E:56:CC:B9:43:24:88:F5:BE:C4
Authority key identifier: 4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
Certificate issuer: /CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Certificate serial: 019D386573109BCFE84D5BCFC26EA9665985
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
Manifest number: 152A
Signing time: Sun 29 Mar 2026 07:01:05 +0000
Manifest this update: Sun 29 Mar 2026 07:01:05 +0000
Manifest next update: Mon 30 Mar 2026 07:01:05 +0000
Files and hashes: 1: S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl (hash: oNWQmP7vb51WNffUn4BlcAi+CcSYl+9OWdtwkgebj40=)
2: oZ5KMTsfThBFq6HeEDiKMmNpYEI.roa (hash: Fya1WLYfdNkhjXqChkihYHmhU9AOfJPUlY74dXuOW2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:73:10:9b:cf:e8:4d:5b:cf:c2:6e:a9:66:59:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b72066d7e6ca8ad2ffa62a69b067923a42df96f
Validity
Not Before: Mar 29 07:01:05 2026 GMT
Not After : Mar 30 07:01:05 2026 GMT
Subject: CN=5a5f7691c51a8b704c176e56ccb9432488f5bec4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:13:69:b7:5b:80:1f:5b:4b:58:a5:1e:89:4d:
28:d2:1b:39:22:f6:9d:14:e2:b4:b4:5c:3f:da:77:
b8:97:d7:bf:30:b7:4d:5e:c4:b6:39:2e:c6:fa:44:
0a:6c:b4:4c:bb:0c:ec:5e:b5:f1:52:bf:53:93:72:
48:45:0e:db:57:6b:6e:07:c0:58:d8:6d:3f:25:37:
7f:2c:8b:b4:44:c1:2d:4b:1d:db:9f:9f:5a:27:a7:
1b:cb:20:36:59:8b:49:9f:e9:93:40:43:42:1a:a4:
70:fc:be:54:6d:5d:3c:b2:92:95:cd:12:73:7f:20:
c3:95:d4:2d:f7:ab:7a:82:b6:80:53:82:5a:d2:2d:
eb:22:98:29:92:4b:ce:d6:85:e4:60:bb:67:c9:fb:
03:68:f6:42:52:44:4b:13:0e:5e:c1:14:7a:93:3c:
5e:94:fd:63:9b:55:9a:9a:3f:86:81:c5:66:01:d8:
10:f2:47:3e:b3:09:1f:b5:bb:30:91:87:a3:97:13:
38:1b:93:1d:1b:d4:eb:ce:31:2a:6c:6c:67:a2:c3:
0a:d7:3b:9f:90:8c:75:b3:ca:ed:d3:0f:9c:3c:cc:
c7:ee:80:de:f2:61:96:84:78:58:21:1e:47:e3:93:
f7:41:7f:a4:95:ba:8d:66:0a:47:ef:78:7c:df:7d:
b2:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:5F:76:91:C5:1A:8B:70:4C:17:6E:56:CC:B9:43:24:88:F5:BE:C4
X509v3 Authority Key Identifier:
keyid:4B:72:06:6D:7E:6C:A8:AD:2F:FA:62:A6:9B:06:79:23:A4:2D:F9:6F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/45/a64b09-64df-470c-a64d-1f6991877b26/1/S3IGbX5sqK0v-mKmmwZ5I6Qt-W8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:c1:18:e5:52:cc:fa:f1:fb:0e:ba:57:4c:99:7e:aa:4c:ef:
93:f5:7d:b1:7e:b2:95:66:4b:85:d9:55:84:74:d4:a8:b8:5d:
31:b1:92:52:b9:c8:47:18:f5:1b:c6:a4:d0:4d:7b:c8:7f:2a:
7d:67:4a:73:19:38:db:97:35:63:0d:da:06:02:cb:c8:4b:e5:
2f:4d:64:21:b4:95:e9:87:17:11:22:92:f8:5a:1e:f5:14:90:
0d:9b:8f:e7:e2:ff:ca:dc:de:fa:e9:ab:61:aa:65:a6:ea:69:
e5:71:67:f0:30:dd:7c:ec:07:72:54:b8:0e:45:87:ae:02:02:
94:f7:e7:f2:94:e5:f6:f3:0b:2c:74:cf:f3:11:c0:9a:8f:cc:
28:07:cb:72:53:77:b4:31:35:40:eb:7d:46:f9:ad:48:51:01:
e4:21:9a:b4:07:f4:a6:7b:3f:98:22:45:42:3d:80:e6:dc:7d:
a7:1f:5a:46:1a:29:c3:5a:69:e5:1f:49:f2:31:e7:8b:ae:9a:
a8:7f:43:b1:6c:11:4c:11:59:f9:c1:b9:44:ff:ba:4a:4c:9b:
fd:c4:f5:08:66:8c:ee:69:56:88:cf:f1:9a:aa:9d:d7:65:5a:
47:00:74:fc:e7:55:44:7f:d4:03:81:dc:f1:95:71:a7:a4:e5:
9d:7b:e1:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:46 2026 by rpki-client