Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
File: sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft (raw, json)
Hash identifier: lNCnx4D+GNid480zamGbkMp/Vu86jbBFCj5d4PFmDTc=
Subject key identifier: 7E:85:9E:F8:D2:C8:2B:65:13:01:87:91:3B:94:B3:E5:43:80:C6:99
Authority key identifier: B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C
Certificate issuer: /CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c
Certificate serial: 019D389BE4C24ADA71A28B27804F8ED24D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
Manifest number: 0D0C
Signing time: Sun 29 Mar 2026 08:00:33 +0000
Manifest this update: Sun 29 Mar 2026 08:00:33 +0000
Manifest next update: Mon 30 Mar 2026 08:00:33 +0000
Files and hashes: 1: q0Y1p5XaMB9ViOtAFAUBAb62WEo.roa (hash: Y0brd6EFMahPzlPl3xKPC6MzSQAtYq85BSXJQ3hFrzY=)
2: sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl (hash: nsClc2ASMTRplJk8hmjm8egOdj/62FEqzyVxlbQ3jqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl
rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e4:c2:4a:da:71:a2:8b:27:80:4f:8e:d2:4d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b19549d68305e29dfb00069a52d3d4e1f2c5604c
Validity
Not Before: Mar 29 08:00:33 2026 GMT
Not After : Mar 30 08:00:33 2026 GMT
Subject: CN=7e859ef8d2c82b65130187913b94b3e54380c699
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:ff:60:54:e1:c2:e7:57:1f:98:25:0c:97:6f:
9a:8b:05:d0:80:e7:be:37:a0:b1:80:63:66:b7:22:
7c:b4:fb:f1:cc:f5:e3:83:f4:ed:07:dd:a0:bb:c8:
f5:25:d0:52:ba:00:76:23:18:36:16:32:fe:ae:94:
b1:e0:e5:cf:14:20:31:52:81:7d:6e:a4:2d:78:2c:
b7:dd:7f:42:8a:5a:2b:2a:ba:ce:c8:c6:ab:e3:27:
12:c8:7c:a2:6f:b5:d0:26:80:a3:6c:98:82:c2:77:
41:e6:cd:49:44:e6:e8:d7:8d:5b:4b:2b:9a:34:4a:
08:7a:d1:38:d6:92:e2:25:d1:7f:8f:b8:7f:2d:f6:
8b:b0:02:10:78:17:59:1d:3e:6f:9e:c7:1e:9b:03:
66:7c:4a:39:15:66:bf:24:9d:58:1f:09:55:e9:19:
9b:0c:58:fb:b1:d9:7b:d2:b0:77:d5:8f:7b:f7:fa:
4e:93:d5:bd:de:28:cb:2d:86:21:b6:72:d0:b5:ba:
7d:cf:cf:da:94:0f:c0:cf:bc:ed:fc:a3:07:2d:52:
c6:00:0c:c6:60:6a:8f:26:98:d0:71:72:ad:7a:16:
66:46:1a:e4:ba:f5:30:9b:92:02:38:1b:4c:86:b7:
19:b4:16:6d:94:52:aa:d8:65:f1:40:a3:df:53:62:
a6:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:85:9E:F8:D2:C8:2B:65:13:01:87:91:3B:94:B3:E5:43:80:C6:99
X509v3 Authority Key Identifier:
keyid:B1:95:49:D6:83:05:E2:9D:FB:00:06:9A:52:D3:D4:E1:F2:C5:60:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sZVJ1oMF4p37AAaaUtPU4fLFYEw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/64/af1f72-ce8e-42b1-be5a-a283c9048f0f/1/sZVJ1oMF4p37AAaaUtPU4fLFYEw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:4a:88:8b:2c:19:6b:af:75:b8:01:35:a3:8d:4e:ee:4f:a1:
de:1c:47:c0:e3:b4:2b:05:9b:9c:c8:f2:54:b7:28:e1:25:d3:
2f:5b:48:38:2f:36:91:82:d9:e3:0e:ca:60:c4:dd:f5:6b:d8:
f2:9f:6f:86:2e:44:7b:a1:71:38:88:ad:53:2b:1b:73:c6:f0:
ab:48:5d:48:f1:b0:a1:90:d4:d7:94:c3:5f:3d:88:04:85:d4:
5a:59:76:dd:51:42:10:14:a9:a4:ac:9a:7a:7e:1e:e8:df:8f:
45:01:6f:5d:59:85:f3:76:60:4c:52:72:00:68:7d:71:de:a7:
5c:01:c5:3a:d2:ab:76:10:07:d3:d0:00:f0:41:39:dc:ed:fb:
27:72:f0:75:6b:89:ba:cc:8c:fd:76:41:fe:60:2f:8e:4f:98:
bf:81:ae:47:14:60:8d:6f:ba:3c:f8:7d:ab:ff:bd:f0:d8:d3:
28:91:7d:ef:af:1e:02:fb:76:b4:cf:4c:42:ab:c6:bf:f8:8e:
f3:9b:94:3c:93:45:44:2b:6c:ee:64:1a:f2:ee:09:36:ee:07:
8d:4c:00:86:f1:d5:82:32:32:d2:19:d5:9b:db:3f:ac:ec:7b:
9c:fd:7e:04:56:2d:72:71:ac:7a:df:00:e0:02:33:18:bf:cf:
d4:03:42:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:59:06 2026 by rpki-client