Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
File: sFcIRcI56ZkcibxcUEMekIeGDE0.mft (raw, json)
Hash identifier: CVe7zU3TjhMZlRRw6S1uYi+b/BmAiVGQxHsYz7IuzFE=
Subject key identifier: 09:2F:04:9A:64:40:AD:DF:D5:77:02:08:F6:A3:C5:B0:B9:CE:3E:6D
Authority key identifier: B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
Certificate issuer: /CN=b0570845c239e9991c89bc5c50431e9087860c4d
Certificate serial: 019D390A5ED17CA746F792AA9BB184F7A846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
Manifest number: 030A
Signing time: Sun 29 Mar 2026 10:01:14 +0000
Manifest this update: Sun 29 Mar 2026 10:01:14 +0000
Manifest next update: Mon 30 Mar 2026 10:01:14 +0000
Files and hashes: 1: VHON0UPXUmDCRotYlV87Iz0_BQA.roa (hash: GIyQ67eHu/aoLix8N514mxryUkStZ2+ADYIfzZPnFM0=)
2: sFcIRcI56ZkcibxcUEMekIeGDE0.crl (hash: nYCvf3RAxXsAHS1JG5aqFKG+lekCics0GDwXkXakOys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:5e:d1:7c:a7:46:f7:92:aa:9b:b1:84:f7:a8:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0570845c239e9991c89bc5c50431e9087860c4d
Validity
Not Before: Mar 29 10:01:14 2026 GMT
Not After : Mar 30 10:01:14 2026 GMT
Subject: CN=092f049a6440addfd5770208f6a3c5b0b9ce3e6d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:22:2b:5f:bc:cc:63:3a:dd:0b:de:0f:64:79:
d8:b9:a3:32:f4:76:89:55:12:3e:6a:f5:26:6c:72:
3e:02:62:df:04:6c:16:d8:60:a2:ea:c2:6d:f4:21:
06:f5:57:47:de:27:e9:a8:2f:3b:72:04:0a:66:13:
2b:e7:99:8a:d9:c7:6b:65:ef:7c:3a:c9:5a:f3:93:
f9:a3:83:17:bc:90:69:8c:32:6e:55:cb:a3:d8:91:
0c:ed:3a:1b:28:53:02:a4:84:0b:02:9a:64:c5:7d:
5d:db:2e:49:fe:9c:69:93:d3:ba:ca:e3:bf:33:63:
30:d7:29:06:b2:d2:e1:9e:8d:1d:cd:59:46:ab:d2:
ca:97:6a:77:18:a5:34:9c:cf:32:8f:69:da:f3:5f:
98:54:4d:68:44:1b:fa:b8:62:fe:c5:4c:b8:2c:a3:
59:27:67:f2:ea:97:69:ba:76:b7:26:3c:bf:c8:a7:
33:70:71:85:ad:b8:aa:37:90:42:24:22:63:22:b9:
0d:74:d1:86:84:e0:19:41:c6:a1:db:b2:34:9a:ae:
ff:23:91:fc:fc:8f:61:3a:ac:b4:27:ca:9b:48:03:
84:b2:6c:c4:75:57:36:78:32:55:f0:c0:7d:72:9f:
cf:09:27:50:99:18:19:dc:f0:d1:14:d9:14:84:6a:
c1:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:2F:04:9A:64:40:AD:DF:D5:77:02:08:F6:A3:C5:B0:B9:CE:3E:6D
X509v3 Authority Key Identifier:
keyid:B0:57:08:45:C2:39:E9:99:1C:89:BC:5C:50:43:1E:90:87:86:0C:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sFcIRcI56ZkcibxcUEMekIeGDE0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/1e7c48-f8c2-4679-b771-46ca26aff545/1/sFcIRcI56ZkcibxcUEMekIeGDE0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:7b:7e:6f:82:1e:94:cb:bb:4d:59:f1:b4:a2:b9:42:2d:a0:
6b:70:3b:f6:72:19:3b:52:4d:9d:32:34:29:37:2e:64:c1:a3:
ae:d6:b9:11:8e:77:08:e4:7f:db:3b:50:08:e1:95:d3:5e:af:
74:29:a1:e5:21:55:d6:f5:9d:17:db:bf:2a:f5:dc:73:b8:fc:
78:73:1f:5d:1c:41:71:bd:24:7d:db:6e:77:84:6d:dc:a0:46:
e1:fd:0b:5a:67:e5:15:ff:18:75:7d:b4:73:bd:39:66:d3:5e:
b9:83:6d:f9:1e:09:73:93:15:5f:9d:57:9b:1f:fa:34:f6:63:
f6:7d:02:ec:7c:0d:1e:a1:c6:b3:e9:96:75:ca:95:0c:9e:dd:
48:3c:ad:82:b2:a8:14:e8:2a:bb:7b:68:b8:4f:9d:14:71:ec:
04:f0:29:3f:ba:0d:7a:05:49:ee:7b:ab:5c:87:1f:72:8f:2b:
7e:86:6b:c1:18:2a:1c:ad:b5:01:1f:ad:1e:2b:05:7d:c5:82:
7a:30:26:2e:60:27:a0:76:ca:a2:9f:72:32:51:ed:59:46:b8:
e1:66:c1:dc:07:34:30:da:59:9b:6d:1d:39:85:4c:2d:ba:5e:
69:21:25:77:0b:03:27:99:81:53:da:df:3f:b2:fd:45:b7:a3:
06:e8:6a:10
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:36:36 2026 by rpki-client