Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
File: sVS0YRuM6ChydbxHppr6N4tBQL8.mft (raw, json)
Hash identifier: h7X73zHIPY2+rnHj42CtxStqr35c+g6le6DfnQZcdHc=
Subject key identifier: A1:99:4A:CD:17:90:98:F1:87:4A:F6:F4:C2:46:74:A1:51:6B:3C:57
Authority key identifier: B1:54:B4:61:1B:8C:E8:28:72:75:BC:47:A6:9A:FA:37:8B:41:40:BF
Certificate issuer: /CN=b154b4611b8ce8287275bc47a69afa378b4140bf
Certificate serial: 019D389BA6E6E94FD21CAFE43852258A0E8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
Manifest number: 0512
Signing time: Sun 29 Mar 2026 08:00:17 +0000
Manifest this update: Sun 29 Mar 2026 08:00:17 +0000
Manifest next update: Mon 30 Mar 2026 08:00:17 +0000
Files and hashes: 1: ZgmGF0xyruYag3oLwVeIssRnGzA.roa (hash: ZGrhqDqWep/rissiscgLJfcqAEbcRvWxXS2En1y9Bvw=)
2: sVS0YRuM6ChydbxHppr6N4tBQL8.crl (hash: VApew8Cza3nwtDRuoAGNOmMRyTDwQ1kaZxBJ9nozIEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:a6:e6:e9:4f:d2:1c:af:e4:38:52:25:8a:0e:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b154b4611b8ce8287275bc47a69afa378b4140bf
Validity
Not Before: Mar 29 08:00:17 2026 GMT
Not After : Mar 30 08:00:17 2026 GMT
Subject: CN=a1994acd179098f1874af6f4c24674a1516b3c57
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4b:18:d9:18:7a:d5:fc:b2:77:ef:96:c5:84:
8d:55:27:df:1c:d8:48:25:16:a0:af:08:4b:f6:cd:
19:ac:00:4b:d2:07:c3:5c:2a:8f:1a:df:6d:2e:2b:
49:bd:8f:17:25:3f:fd:81:2d:9c:10:7a:d8:c6:7e:
95:36:67:b5:ef:82:9b:84:9c:ac:ff:dd:e5:5d:55:
a0:bc:31:44:08:38:d0:1d:9b:50:50:f9:07:10:c3:
7f:46:89:ed:40:61:93:d7:6e:75:b5:35:28:58:13:
48:d3:7a:c8:3b:c9:ef:73:bd:da:f2:44:cc:07:86:
9a:b3:b7:67:77:c7:10:ec:5a:2d:46:9c:63:aa:eb:
80:5c:eb:6c:9e:e0:d7:b4:a6:19:1c:4b:c2:f1:2c:
b1:7b:c9:ba:4d:a6:40:aa:d0:6f:99:1d:80:01:de:
18:83:5c:79:45:19:16:62:dd:f3:07:2c:1a:84:e7:
3d:50:93:fb:62:8e:45:76:f5:44:7c:bc:27:1b:4d:
37:2f:aa:00:1f:05:13:14:be:c5:0b:21:60:fc:9a:
07:aa:7e:f7:ab:63:7d:03:ba:cc:44:d1:b9:86:44:
3a:50:04:7e:0b:7a:3e:9b:51:eb:7a:0d:b8:50:ca:
22:49:0b:63:d0:de:64:09:1f:a9:14:8b:7b:61:ea:
97:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A1:99:4A:CD:17:90:98:F1:87:4A:F6:F4:C2:46:74:A1:51:6B:3C:57
X509v3 Authority Key Identifier:
keyid:B1:54:B4:61:1B:8C:E8:28:72:75:BC:47:A6:9A:FA:37:8B:41:40:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sVS0YRuM6ChydbxHppr6N4tBQL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/bf2c25-6928-4bcb-84fb-4b12475851b8/1/sVS0YRuM6ChydbxHppr6N4tBQL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ce:1c:b3:31:2c:d4:eb:31:1b:94:6d:f4:6b:9d:3d:9e:9d:89:
65:f8:58:55:78:c2:04:05:4c:a1:55:bc:f9:b9:49:d1:6e:41:
35:9a:08:e2:5b:71:53:d3:72:f7:d6:95:a5:bf:25:e5:3e:04:
6d:8e:5d:68:87:b0:1e:4c:95:7f:0d:d2:e8:eb:fb:82:bd:8b:
fa:f7:24:09:50:f7:8e:a8:15:33:1f:ae:cd:3b:21:62:2d:15:
84:f4:29:34:51:cb:1c:f6:cc:bd:e3:33:01:3b:78:9d:cc:2c:
97:e9:de:f4:70:b1:3d:43:8f:39:a7:be:c4:cd:7f:ff:dc:0b:
31:15:41:0d:cf:2a:93:94:b3:06:ad:3b:79:f1:9c:c2:61:b4:
dd:af:da:00:29:20:79:65:92:a9:b4:8c:0a:c5:ed:9b:c0:d1:
63:36:12:5e:99:86:52:05:e8:39:28:0e:6a:dc:03:1d:73:97:
c7:b9:6e:0e:16:a4:67:1d:46:36:dd:b4:ca:e4:93:a9:77:8d:
bb:3e:b6:e3:2f:ea:d2:aa:9b:6c:6d:41:d1:84:0c:9b:a9:fc:
83:f9:a5:0d:03:86:57:93:49:ad:7f:4b:36:5b:64:7e:00:96:
9a:91:d4:55:30:8b:e2:12:6c:a9:9a:6e:87:7c:e6:07:f2:3d:
92:7f:db:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:24:42 2026 by rpki-client