Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
File: sl2FaYjGKmAgc-wpOFgd1KWG-48.mft (raw, json)
Hash identifier: 5MYP62XyW+dNCjYtGxEsMe2gJo+yX45+wifCR1tjKNs=
Subject key identifier: 70:BD:43:7F:77:D0:EC:D6:48:FE:35:86:EF:BE:AB:DF:F0:14:B6:13
Authority key identifier: B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
Certificate issuer: /CN=b25d856988c62a602073ec2938581dd4a586fb8f
Certificate serial: 019D39AEB0D7C423B3CAC586B0D7A7AF04B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 13:00:43 +0000
Manifest this update: Sun 29 Mar 2026 13:00:43 +0000
Manifest next update: Mon 30 Mar 2026 13:00:43 +0000
Files and hashes: 1: 7sxuNjHlIxiavOHQyqNdwSZR25M.roa (hash: fIAdEbyDLTByjgDMXOH4/6dlp6Jlh9eCqm6V/Zxss80=)
2: sl2FaYjGKmAgc-wpOFgd1KWG-48.crl (hash: 9ZjYETeAvIqmvfrbRe3AWxbEkAD6lLBfZkhvkT1qNzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.crl
rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:b0:d7:c4:23:b3:ca:c5:86:b0:d7:a7:af:04:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b25d856988c62a602073ec2938581dd4a586fb8f
Validity
Not Before: Mar 29 13:00:43 2026 GMT
Not After : Mar 30 13:00:43 2026 GMT
Subject: CN=70bd437f77d0ecd648fe3586efbeabdff014b613
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:e2:50:fd:62:1a:12:af:e1:14:a5:27:a8:c8:
5f:78:35:91:4d:60:a8:3d:01:40:11:bd:7a:cc:65:
f8:bb:36:1c:a7:1d:1a:7f:1b:7a:26:5b:69:7e:88:
da:29:6e:c1:eb:f9:eb:d3:a4:0b:c0:61:5a:12:02:
73:72:d4:67:86:78:29:ad:98:dd:1c:bc:c0:ed:a7:
65:17:39:4a:8b:4c:54:eb:6a:1a:7c:47:03:37:59:
64:78:72:92:d6:86:f5:d2:d0:80:9f:c5:5b:de:67:
28:51:a2:f2:7b:d9:6f:a9:fd:71:9f:f2:26:dd:0a:
c7:03:d3:23:5f:9f:32:fd:84:01:11:88:20:85:4d:
76:17:eb:03:59:38:d9:17:7e:74:ac:c0:0e:f7:5e:
d7:52:48:00:40:8f:cc:b9:c6:5b:26:9e:60:59:43:
ee:64:83:cb:db:1f:db:46:3a:ca:02:d9:b7:10:f7:
b6:22:41:08:92:e6:82:6e:4f:14:f2:61:f1:ea:a1:
d7:85:07:ff:25:a2:57:1f:1a:2e:0a:98:5d:6b:a5:
44:5e:59:3e:d6:fd:bf:3a:a5:f5:c7:8a:3c:1f:eb:
da:6d:fb:2e:c3:ac:ac:e1:83:b3:55:4b:31:8f:a2:
52:44:7c:77:9c:45:e8:39:87:56:df:39:4b:fe:32:
ac:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:BD:43:7F:77:D0:EC:D6:48:FE:35:86:EF:BE:AB:DF:F0:14:B6:13
X509v3 Authority Key Identifier:
keyid:B2:5D:85:69:88:C6:2A:60:20:73:EC:29:38:58:1D:D4:A5:86:FB:8F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sl2FaYjGKmAgc-wpOFgd1KWG-48.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/bc9888-bf0a-4bfd-9496-9d082117d8c1/1/sl2FaYjGKmAgc-wpOFgd1KWG-48.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:af:aa:bd:50:bb:83:f6:61:c3:2e:ff:ae:3e:9e:a5:9d:67:
67:26:53:73:f4:b5:ca:89:ea:35:10:ec:5f:57:24:91:46:c8:
83:8b:20:47:0f:1c:b3:83:a7:12:d7:1c:76:55:b3:75:b4:7a:
93:f2:7d:cc:2c:b1:9d:66:cc:d8:3e:60:f8:24:c5:e4:92:66:
70:08:43:c9:43:e8:c9:8a:64:f1:49:1b:0b:4b:3b:0a:d4:44:
73:66:16:e8:59:7c:07:77:80:96:27:8c:96:33:bc:07:e5:a8:
a3:f0:1d:c7:c5:30:c0:12:2e:1b:49:3a:f1:1c:6a:5b:57:91:
58:2c:64:95:ab:98:23:92:56:f4:c2:1c:70:87:c8:36:39:30:
e1:6c:bb:95:5c:35:92:65:a6:c0:c3:1f:92:0b:14:b0:97:44:
e7:fa:91:83:31:e3:ee:73:f3:30:0f:4e:dc:f1:5f:88:17:6d:
e2:42:ae:dc:a6:4f:a9:14:02:c3:b4:00:fe:1a:df:bb:e7:6c:
87:bc:4e:4b:fe:84:82:d3:04:ae:4d:55:29:ca:a9:9b:f5:e6:
35:37:cf:ab:61:6f:71:8a:9e:a9:87:5b:1b:24:3b:e2:50:25:
43:42:8e:7a:3c:5f:99:28:ef:0b:67:93:50:d4:77:f1:07:63:
85:ba:bf:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:17:22 2026 by rpki-client