Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
File: S8K4kvLb729UtFNg_rD4QUpahQQ.mft (raw, json)
Hash identifier: qbYwv2AM9BR0ryeYofVGpZ+8cGD4wiIuEEWw+FqFYD8=
Subject key identifier: 74:5B:81:72:45:3D:B3:DE:0C:42:EE:74:0F:E2:F1:AF:77:7E:F1:13
Authority key identifier: 4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
Certificate issuer: /CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Certificate serial: 019D37F785238454E2C3C21206EF9DF003F8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
Manifest number: 128A
Signing time: Sun 29 Mar 2026 05:01:01 +0000
Manifest this update: Sun 29 Mar 2026 05:01:01 +0000
Manifest next update: Mon 30 Mar 2026 05:01:01 +0000
Files and hashes: 1: F4rY5JVMtMl_zYzUZwZp4oeHP1I.roa (hash: E0rqrVkOGoV8SRKX7SA5ZbTVTAKBdcJrr4ggv5rMXIg=)
2: S8K4kvLb729UtFNg_rD4QUpahQQ.crl (hash: z8Yw2sbviBP19RmvIwW3w3OcvMDyNBsSlwJ7XLnKWbw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:85:23:84:54:e2:c3:c2:12:06:ef:9d:f0:03:f8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4bc2b892f2dbef6f54b45360feb0f8414a5a8504
Validity
Not Before: Mar 29 05:01:01 2026 GMT
Not After : Mar 30 05:01:01 2026 GMT
Subject: CN=745b8172453db3de0c42ee740fe2f1af777ef113
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:cd:63:0d:fb:60:e9:a0:06:0c:c2:45:31:34:
1a:35:63:4b:47:43:b5:e4:c3:b0:00:4c:f6:04:64:
11:c4:dc:76:8e:8b:bf:2c:7b:b1:69:dc:5a:b3:fc:
c4:0d:7c:e6:99:90:df:6d:9f:90:fd:c7:03:59:c7:
02:88:23:07:39:d0:60:30:f2:2e:63:5e:09:f2:33:
97:05:d6:29:af:3b:af:c7:65:33:13:29:85:ed:a6:
30:70:22:98:0d:18:fc:40:9c:aa:ae:20:b9:41:a4:
f6:38:50:fd:85:1a:75:8a:de:3a:c2:78:a7:a1:98:
82:f4:19:e5:ad:3a:ae:59:06:9e:ba:77:62:a2:42:
84:d0:31:cd:2f:9f:b0:f3:1d:4b:ee:11:7c:7b:5f:
88:78:d7:fe:1b:d9:e8:2d:72:7f:27:6b:70:2e:bd:
95:78:ad:5f:52:69:63:0e:18:54:0f:92:8e:0d:27:
19:bb:44:40:e2:39:bf:02:76:4e:6f:43:d4:b7:81:
03:0b:e3:f6:33:c0:7b:18:7f:8e:10:a4:d4:34:df:
74:3c:a2:9c:0f:85:f2:1a:51:3f:84:70:04:a1:68:
eb:36:98:8e:3e:40:0d:02:44:0e:82:e9:44:45:40:
c1:14:7c:bc:cb:cf:3d:ef:e5:a0:fc:b6:7f:b2:28:
fd:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:5B:81:72:45:3D:B3:DE:0C:42:EE:74:0F:E2:F1:AF:77:7E:F1:13
X509v3 Authority Key Identifier:
keyid:4B:C2:B8:92:F2:DB:EF:6F:54:B4:53:60:FE:B0:F8:41:4A:5A:85:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S8K4kvLb729UtFNg_rD4QUpahQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/c1a852-55f5-4505-8d90-2157a575db0b/1/S8K4kvLb729UtFNg_rD4QUpahQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:cd:27:86:6a:13:ae:f8:a8:31:35:54:b7:77:aa:92:b3:7e:
10:22:5c:84:ce:5a:81:a0:9d:43:2f:4c:43:89:61:01:4a:9b:
e9:07:32:c4:2d:71:28:fb:0b:f0:11:45:41:ce:21:23:d3:b4:
5f:bf:07:1e:9c:95:00:1c:4e:f3:a3:dc:f7:16:3f:1f:ea:c4:
e7:a4:aa:26:cf:fe:31:2d:de:01:57:7b:05:2d:65:fe:22:be:
23:fe:93:59:94:18:ae:d1:bf:93:2f:1e:b1:74:00:05:00:fb:
a5:b5:47:88:cc:48:1a:bc:78:a1:2b:48:77:bd:46:d9:e1:9d:
48:42:6b:63:4f:53:10:76:ff:a8:7e:ff:5b:3c:ca:bb:f0:20:
ab:96:47:b2:2d:3a:e4:6b:71:6d:20:fc:bf:73:3e:bb:13:ed:
bf:46:84:3a:92:e7:8b:5e:af:59:9d:ce:3b:bf:d9:01:e9:b6:
78:c0:c8:15:76:5e:c6:46:b5:dd:a9:9a:c4:3b:8b:f9:18:1f:
21:d2:3a:3c:25:2a:6a:1a:15:8e:32:b5:e8:da:68:1d:83:3d:
6e:e7:ba:6d:df:f4:df:4c:65:1e:08:21:1c:04:52:44:0a:34:
c2:d0:3d:3f:6e:5b:90:98:6f:cb:8b:7b:db:70:2a:b1:e1:04:
d6:ba:d5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:55:43 2026 by rpki-client