Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
File: srQdL319OFfgdfKk8vnT4ETy5TY.mft (raw, json)
Hash identifier: icTpPmajFuM7uNWKjs5ZtiVgBLQ31Dd20H8FSPh1dB8=
Subject key identifier: 66:5A:F5:3F:8C:30:68:DC:5D:DB:8E:C6:B1:78:76:ED:31:EA:E6:A3
Authority key identifier: B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36
Certificate issuer: /CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536
Certificate serial: 019D382E506F9E9718BEF4DCD93C312AC4B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
Manifest number: 0884
Signing time: Sun 29 Mar 2026 06:00:52 +0000
Manifest this update: Sun 29 Mar 2026 06:00:52 +0000
Manifest next update: Mon 30 Mar 2026 06:00:52 +0000
Files and hashes: 1: Spy7lYm24U3zdnyHMnurxfa2T6k.roa (hash: JcDra+5Gb+YXgz7R5LBtufPmpQV8nA+XRnuojSfqw4U=)
2: srQdL319OFfgdfKk8vnT4ETy5TY.crl (hash: AOHbypsvNQt7ESAnvWJsh4myP+icKeXdZCqoXMlwMDs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:50:6f:9e:97:18:be:f4:dc:d9:3c:31:2a:c4:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b2b41d2f7d7d3857e075f2a4f2f9d3e044f2e536
Validity
Not Before: Mar 29 06:00:52 2026 GMT
Not After : Mar 30 06:00:52 2026 GMT
Subject: CN=665af53f8c3068dc5ddb8ec6b17876ed31eae6a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:4d:ac:be:66:ce:61:39:5a:b4:61:f1:70:96:
ea:ef:dd:11:f4:bf:a4:44:e9:58:4a:b0:17:5e:88:
f7:27:0e:a6:6a:4d:ae:35:27:eb:36:8d:14:f5:ed:
2a:1d:9f:68:23:03:5d:15:5a:6d:45:2d:81:ef:33:
6f:31:9a:11:40:4d:42:d6:fe:27:4f:71:20:ce:6d:
4b:43:6a:7a:bc:7a:8c:cc:47:3b:d8:22:9e:ee:f0:
17:94:16:9d:8e:d7:60:d6:ee:83:07:6c:76:1e:70:
ec:b4:db:5a:a4:0c:8c:f0:8b:ad:4c:68:c4:ee:51:
ff:69:2d:52:90:50:ca:e0:83:43:5b:27:d3:cd:ea:
00:80:6f:32:1d:a1:a2:fc:8e:e9:16:d5:54:79:d7:
d0:8e:a2:7a:ab:40:a1:c1:40:e1:f1:32:9a:24:71:
68:de:45:d4:23:d7:9e:cd:f2:8c:71:e2:68:e5:52:
a8:3c:b5:8d:5e:8a:0e:8d:15:e9:04:98:76:38:2d:
d1:18:2c:f0:44:5f:83:e1:63:9c:ec:a1:37:e7:d0:
70:b5:e8:90:16:3b:de:51:e0:b1:2c:1f:7f:0b:2b:
9a:4b:25:80:d8:d1:c0:ae:f8:03:70:04:ae:9e:3b:
a3:d9:2e:ad:f6:0f:32:47:40:62:9b:c4:15:e8:0a:
8b:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:5A:F5:3F:8C:30:68:DC:5D:DB:8E:C6:B1:78:76:ED:31:EA:E6:A3
X509v3 Authority Key Identifier:
keyid:B2:B4:1D:2F:7D:7D:38:57:E0:75:F2:A4:F2:F9:D3:E0:44:F2:E5:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/srQdL319OFfgdfKk8vnT4ETy5TY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/d77ac4-dc66-434f-8423-c9e20ccd476f/1/srQdL319OFfgdfKk8vnT4ETy5TY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:bc:55:69:8e:c0:26:5a:f6:b0:39:68:95:a4:6f:ac:5a:10:
0e:3d:bc:59:0e:75:84:a4:e9:be:96:be:96:70:34:43:f2:ae:
4d:f8:16:a1:14:f0:c4:db:10:a6:ae:5b:22:df:3b:82:17:92:
e9:e0:5e:5b:15:5c:c4:60:2d:1f:f3:79:84:78:7c:95:f4:3b:
b6:e8:08:9a:23:6a:2c:13:9e:1c:90:b9:0a:f7:49:09:43:b4:
a8:a0:5c:db:c5:49:d5:67:60:5d:4c:cb:a6:1a:10:e1:33:15:
d9:30:9e:3c:9e:35:a5:e8:3b:dc:8a:44:88:e3:5c:56:28:86:
46:62:e0:19:74:a3:96:6c:62:e1:0f:b2:bc:13:57:df:1c:49:
c1:76:9c:46:ef:43:c5:0c:56:35:e9:3b:92:2a:79:4f:3b:0a:
f6:e1:c3:64:ca:ae:a9:16:a3:f4:e7:5e:4b:7b:19:b0:f7:c7:
d4:43:97:1c:34:b2:b3:a9:d8:87:e5:c2:6a:48:c1:78:6e:2e:
38:3b:48:f4:6f:9e:3a:0c:6c:dd:58:00:bd:73:65:bd:91:81:
78:47:bf:b0:28:80:00:e7:2a:b3:4e:ef:d4:ef:4b:8f:9c:99:
96:a2:bd:be:cf:b8:cb:12:d2:cc:66:ba:5c:d8:14:89:65:55:
7b:cd:04:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:02 2026 by rpki-client