Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: B5y9um3x4fFUciAhz12JbAAuIJaiOPGJkKoVg62A7sg=
Subject key identifier: 48:DF:23:44:36:B2:46:10:79:44:17:F0:2C:5F:08:B2:43:93:8F:00
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 019F12658EC0257CEE5A36256DD7D93BCF2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: 040D
Signing time: Mon 29 Jun 2026 08:01:13 +0000
Manifest this update: Mon 29 Jun 2026 08:01:13 +0000
Manifest next update: Tue 30 Jun 2026 08:01:13 +0000
Files and hashes: 1: FkN5wCpqf47xHpP2qPmsCVpZA5A.roa (hash: 6NsTbMJNSxy3emhsWHcWB2UjLqNQnQDr6NiMOXPxTg4=)
2: InFnBGmGL8Q0FS0kuwygTEx8_Lw.asa (hash: zLqLkWTB98DOsRwXQTGdXmZzjw6dskDN5dpYGFPv88s=)
3: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: COjljkQSw0rxUuN545PY80o0azYPHQfk/A3Vkjrplz0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:8e:c0:25:7c:ee:5a:36:25:6d:d7:d9:3b:cf:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Jun 29 08:01:13 2026 GMT
Not After : Jun 30 08:01:13 2026 GMT
Subject: CN=48df234436b24610794417f02c5f08b243938f00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:00:96:ec:38:5e:59:46:18:9d:e2:e0:ee:25:
bf:78:46:3e:52:3c:b7:af:c2:b9:bc:5a:85:d8:5e:
8f:ac:28:8b:5d:00:b9:5a:7e:1d:10:75:ea:6a:f1:
93:20:94:b9:00:b8:6b:c7:42:1d:ab:04:6f:86:29:
a3:8d:b4:f5:73:7b:11:eb:de:c1:99:00:d5:01:3b:
8f:de:81:c1:27:70:31:2a:50:f8:4d:eb:9f:02:3b:
b6:a1:0e:bd:3b:14:1b:9f:a8:ae:f7:b4:75:c8:16:
9d:0a:50:07:8e:05:bb:19:b0:6a:87:1d:4f:81:b9:
f5:61:6a:78:51:47:f2:ae:40:af:b6:e3:61:e4:b5:
ec:5a:45:ba:5e:54:0f:ec:9c:2e:b8:5c:f1:b8:1f:
49:b4:2e:63:3d:78:96:6f:18:bc:2b:b6:13:c4:7e:
ab:79:3b:a7:c9:c2:d0:e4:be:6b:bd:1f:34:6f:ab:
7b:f4:e6:9f:ea:e5:a3:9f:13:e4:b1:90:f9:e6:c8:
61:17:1e:ad:5c:21:70:bd:31:bf:20:d5:32:59:c9:
80:eb:c8:b1:29:ad:8d:da:52:74:40:13:6f:50:66:
8d:d0:6e:e3:ce:4b:f5:71:a8:e4:3b:b7:4d:90:a4:
6e:bc:c0:d8:85:7d:b7:fe:18:0d:52:9f:ef:3b:ee:
82:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:DF:23:44:36:B2:46:10:79:44:17:F0:2C:5F:08:B2:43:93:8F:00
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:66:a1:cf:28:83:fa:25:42:84:c4:4a:6c:99:7f:b8:1f:6b:
34:67:6b:7f:87:ea:74:79:d6:01:c5:66:2c:99:c5:2a:79:d7:
13:b4:ae:18:5c:bc:32:a9:be:67:c4:54:f4:b3:14:3b:20:a8:
ed:eb:30:26:4a:5e:95:54:c0:f9:f1:6d:fd:52:a6:01:19:92:
a9:08:88:f9:10:84:14:3b:e7:b9:73:3f:ec:1f:f9:f4:5f:62:
de:b1:d8:01:5e:4a:4d:37:72:fb:51:4a:13:48:97:60:ae:f3:
10:34:86:be:52:fa:99:f0:aa:37:86:b8:c9:49:9e:dd:fb:7b:
2b:4a:4a:a5:f1:66:c6:9b:28:ee:2a:d0:c6:67:69:3b:39:f2:
7a:70:03:ca:6d:fb:43:e6:f0:34:d2:2d:85:df:5a:d4:c3:9f:
16:62:31:81:eb:92:e7:ea:d7:23:33:1b:d7:3f:2e:b1:7e:3d:
79:87:bc:21:f3:56:f9:2a:db:6e:ca:51:17:c6:de:89:44:35:
c5:32:0d:b0:dd:ac:0e:92:70:e7:8b:23:e6:ca:9c:ee:4f:7b:
d4:9a:98:28:6d:18:4f:52:80:27:74:8f:4d:82:f5:99:5e:06:
0c:fc:fa:71:5a:48:49:f8:64:b2:4a:f6:ee:92:b4:7d:7e:ac:
9f:96:4b:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:38:25 2026 by rpki-client