Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
File: sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft (raw, json)
Hash identifier: dGGbrLzr0hI8RsggwwVkzuxX08UGeQjC3Bmu/H1L4vE=
Subject key identifier: F9:DF:53:D5:73:52:2E:0A:52:A0:77:54:9B:6D:0B:9E:CA:09:8E:6D
Authority key identifier: B1:81:56:81:86:42:DC:8F:04:E4:0F:86:77:56:8D:66:3C:CF:4B:1B
Certificate issuer: /CN=b18156818642dc8f04e40f8677568d663ccf4b1b
Certificate serial: 019D3940DBE45AEE86CDBE83B886492D7E79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
Manifest number: 0282
Signing time: Sun 29 Mar 2026 11:00:45 +0000
Manifest this update: Sun 29 Mar 2026 11:00:45 +0000
Manifest next update: Mon 30 Mar 2026 11:00:45 +0000
Files and hashes: 1: qJPr5FWDClx-5QPYN1YF97DQrSk.roa (hash: KvT5oKXk2KycBv8riPWP86JI847k87GD38dyIt4mKbo=)
2: sYFWgYZC3I8E5A-Gd1aNZjzPSxs.crl (hash: uwy7+AwxHXC/xEEJNT1mRofTSLBEKO1faF1UYl913sk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
rsync://rpki.ripe.net/repository/DEFAULT/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:40:db:e4:5a:ee:86:cd:be:83:b8:86:49:2d:7e:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b18156818642dc8f04e40f8677568d663ccf4b1b
Validity
Not Before: Mar 29 11:00:45 2026 GMT
Not After : Mar 30 11:00:45 2026 GMT
Subject: CN=f9df53d573522e0a52a077549b6d0b9eca098e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:29:33:fb:52:14:3b:53:7d:c5:51:d6:62:8f:
01:f0:89:f0:ec:74:17:a4:2e:8d:d7:ea:b2:be:6d:
87:25:cc:4f:34:9f:29:c7:33:3f:ac:90:e1:db:0f:
9b:e1:32:53:40:81:5b:88:37:e2:d4:35:a4:7b:35:
7a:d0:3d:36:77:7b:4d:92:9a:56:ec:d7:72:cf:e4:
46:62:dc:f6:29:18:44:82:25:62:8c:ff:56:75:df:
a0:9f:70:09:25:44:15:34:89:05:42:14:b7:46:5f:
74:2e:aa:52:5f:eb:f1:36:07:29:a2:3d:5e:32:46:
ce:7b:8a:f8:41:c0:b3:98:fa:fc:6f:0b:01:a6:8d:
85:37:93:d7:75:24:66:df:14:a5:a7:38:15:9a:23:
c9:66:5b:bf:12:a4:b8:28:40:65:9a:3f:1b:3e:59:
e5:6c:fd:fe:3b:9e:c5:bf:00:e4:51:df:e6:7c:48:
1c:11:93:13:ea:ad:9a:a1:f3:0a:19:8a:e9:89:3d:
a6:fc:9e:90:ba:4e:d7:2f:f0:a8:61:53:96:38:3d:
0f:49:9e:47:07:6f:b2:cd:61:b8:04:4b:b0:b1:e0:
89:fc:c3:53:0a:4a:07:89:ed:66:7e:01:61:a1:b9:
64:ea:f9:a9:06:c1:cc:b0:67:b3:c0:8e:1b:28:6c:
e3:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:DF:53:D5:73:52:2E:0A:52:A0:77:54:9B:6D:0B:9E:CA:09:8E:6D
X509v3 Authority Key Identifier:
keyid:B1:81:56:81:86:42:DC:8F:04:E4:0F:86:77:56:8D:66:3C:CF:4B:1B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/566532-b077-4889-9fe6-6576c6d9aa69/1/sYFWgYZC3I8E5A-Gd1aNZjzPSxs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:43:aa:ea:83:64:dc:91:ae:8f:41:9b:66:8f:32:50:eb:ad:
23:b8:77:cb:3e:43:03:a6:8c:ce:76:ca:3e:89:30:89:e9:e9:
fc:99:3f:76:e8:49:cd:af:b7:6c:c1:df:0b:ae:7c:55:2d:73:
05:75:04:3f:74:da:24:0a:da:ff:a1:9b:b3:6b:50:14:59:48:
7a:7b:00:fa:8b:6a:7e:b8:e3:72:df:9a:27:4c:8f:6b:27:3d:
83:ee:9b:d1:6a:dd:76:d7:8e:d8:d2:bb:86:fd:ce:82:79:35:
25:5a:1c:cf:8d:e1:6b:92:8a:bf:c4:6c:f0:f0:bb:8e:f4:cc:
ea:ac:46:63:27:9a:c4:03:fe:58:c3:b9:32:26:7a:ba:5c:6e:
1c:3d:ad:72:d6:c5:3b:d3:c9:00:dc:fd:47:71:cb:e2:9f:d8:
51:99:33:24:6e:c3:33:91:a8:02:9a:ac:82:68:4e:5c:cd:ef:
27:a8:c0:29:0b:90:9f:46:bf:0d:5d:f0:4e:05:d1:43:01:a4:
2b:bf:2a:ab:b4:35:c2:3c:8c:c8:82:72:75:16:53:ae:87:bd:
1c:ab:2c:37:90:47:3a:5a:c2:5a:89:0b:c8:a3:c4:9b:db:61:
b3:c1:58:cd:d7:23:38:33:63:63:25:b1:3d:bf:b7:1e:c1:ae:
18:a9:e0:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:41:00 2026 by rpki-client