Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
File: sK0iZDwtl71x-LY0-40dT58B9Kc.mft (raw, json)
Hash identifier: xqSs3H98+gCyXiZvrZxJNUWBonIP23YzQfu7FwCtkWc=
Subject key identifier: B2:CF:3F:0B:F8:01:E1:FE:09:66:3C:2F:C2:69:59:15:57:61:75:B3
Authority key identifier: B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
Certificate issuer: /CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Certificate serial: 019CE291199C19E5FC27B0C6F5676DC79CE4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
Manifest number: 12C1
Signing time: Thu 12 Mar 2026 15:01:25 +0000
Manifest this update: Thu 12 Mar 2026 15:01:25 +0000
Manifest next update: Fri 13 Mar 2026 15:01:25 +0000
Files and hashes: 1: h3sE5dxGeAbRDxvt7OESDDknJfw.roa (hash: o8FzyZkryMLyMcYf+Zp1JhuP+yJeZt+99zqw52fdpd8=)
2: sK0iZDwtl71x-LY0-40dT58B9Kc.crl (hash: nTVhIrgtyMIZMBDUxjReJ7uUGTNFe3IXB/BfoDnYwQI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 15:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:91:19:9c:19:e5:fc:27:b0:c6:f5:67:6d:c7:9c:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0ad22643c2d97bd71f8b634fb8d1d4f9f01f4a7
Validity
Not Before: Mar 12 15:01:25 2026 GMT
Not After : Mar 13 15:01:25 2026 GMT
Subject: CN=b2cf3f0bf801e1fe09663c2fc2695915576175b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:43:6d:5c:a4:ce:ac:d4:31:74:f0:1b:51:a3:
85:4e:b3:e8:97:9e:d7:b5:64:20:9e:88:c8:3e:be:
f0:74:bf:61:d8:73:b5:82:6b:3b:6f:54:86:15:78:
ba:9d:19:69:6f:5f:8e:89:64:c6:ea:d1:9b:b1:9f:
0d:7e:5a:0a:cb:e7:aa:df:18:d6:9e:69:15:a4:76:
6e:1a:fa:c6:11:cc:d0:32:9c:c3:81:95:a3:5d:3c:
e2:59:4f:61:30:35:42:48:70:5f:04:49:87:30:64:
7d:03:b0:fc:a8:4d:e2:20:80:4f:d8:92:c7:14:e4:
7a:99:39:2f:57:b3:64:b3:71:21:db:68:34:c0:ad:
d0:e2:cd:34:c2:d9:d3:c4:0a:e1:fa:aa:d2:53:47:
e6:dc:41:9c:3f:b1:c0:a6:5f:e6:59:7f:02:dd:e4:
27:4b:e5:17:88:3d:2d:da:9d:3d:b0:f3:51:00:12:
09:c9:50:df:10:5f:68:8c:a5:17:a7:a7:f6:96:b0:
98:dd:fa:27:b9:f6:3c:94:88:a1:4e:c1:95:44:3a:
1c:02:21:8d:16:98:42:37:ab:29:49:d4:11:35:db:
22:22:6f:92:f5:8b:de:c0:b0:92:8a:c8:5d:f0:98:
22:2e:8e:e3:30:9a:43:ec:b1:bd:a4:4e:10:21:25:
77:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:CF:3F:0B:F8:01:E1:FE:09:66:3C:2F:C2:69:59:15:57:61:75:B3
X509v3 Authority Key Identifier:
keyid:B0:AD:22:64:3C:2D:97:BD:71:F8:B6:34:FB:8D:1D:4F:9F:01:F4:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sK0iZDwtl71x-LY0-40dT58B9Kc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/30b3ff-7036-4a2e-8eb5-074ffb423c13/1/sK0iZDwtl71x-LY0-40dT58B9Kc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:45:b5:8c:66:54:22:d5:53:da:ba:5f:c3:11:4e:92:fb:6e:
6d:c3:5a:76:ba:35:ba:40:98:8e:b5:75:41:a6:76:57:55:e4:
bf:4c:3c:7c:06:b9:30:17:fc:a6:80:2b:d9:7a:c5:90:0f:5e:
fb:de:01:6d:01:82:77:11:66:92:ef:fe:50:f3:51:88:aa:fe:
f1:c1:d3:c5:d9:10:33:ba:05:43:44:3d:09:24:c6:0b:06:30:
dc:51:fb:18:ff:8f:fa:88:cd:0f:e2:f2:19:e8:35:0f:73:36:
78:3a:d2:f7:b1:ce:34:76:80:dc:d4:76:1a:ee:74:eb:88:48:
d3:74:4d:91:56:c3:b6:c6:15:93:b0:66:09:89:c4:90:8d:e1:
ae:df:26:8e:8d:68:b0:fc:8a:ed:51:2c:b9:d6:09:4a:4f:6d:
ad:ef:08:83:4b:58:b6:2e:08:56:dd:50:2a:8c:37:a1:87:76:
1f:2b:b0:72:08:9b:a1:df:08:5c:4c:84:1f:25:42:e4:4f:cc:
fa:b7:65:43:bf:64:f0:1d:47:5b:80:39:2e:2d:c4:b2:0a:f4:
71:6a:4b:74:e1:27:26:ab:39:7e:84:36:e0:82:78:52:78:53:
c8:ce:90:d0:0e:8e:13:71:6b:dc:7a:dc:65:cb:49:44:fa:e3:
cc:11:a1:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 12 22:56:30 2026 by rpki-client