Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
File: sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft (raw, json)
Hash identifier: 8ZLWxiqRTWLW6JuZG+d0ORKN4UgtXahgSUhn3jCbXA8=
Subject key identifier: 3C:2A:52:5B:CD:62:B6:FE:8E:44:C0:17:13:55:F3:F4:E6:29:11:12
Authority key identifier: B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
Certificate issuer: /CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Certificate serial: 019D390A1CC4A5D8B8432E9EA495FB8E5CCC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
Manifest number: 1401
Signing time: Sun 29 Mar 2026 10:00:57 +0000
Manifest this update: Sun 29 Mar 2026 10:00:57 +0000
Manifest next update: Mon 30 Mar 2026 10:00:57 +0000
Files and hashes: 1: cTa4k-r506Jm5F65mksggvloVDA.roa (hash: VUs6amyf7QVphS7d5atiRKNg/52+c1LBxHY+3So5haI=)
2: sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl (hash: GTbpqvGChWLMbIJ65gpRCsbTES3gnQUIf1ddoIZZpZo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:1c:c4:a5:d8:b8:43:2e:9e:a4:95:fb:8e:5c:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b01a59d0a61aa6174438988cc83598dbfea5a998
Validity
Not Before: Mar 29 10:00:57 2026 GMT
Not After : Mar 30 10:00:57 2026 GMT
Subject: CN=3c2a525bcd62b6fe8e44c0171355f3f4e6291112
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:56:df:31:f8:d9:21:09:81:29:c9:e1:1f:ac:
e2:30:b8:be:3a:01:53:b0:d1:2c:8f:92:56:08:30:
80:58:72:ef:f1:db:77:1a:65:9c:38:87:b4:68:87:
ae:f1:2c:88:9b:bf:05:d6:3c:f1:4d:cf:f9:53:ef:
51:ee:ed:88:6f:57:56:8c:e5:0f:9f:8f:2a:88:88:
a3:bd:31:e1:4a:a8:08:0b:6b:e8:82:1a:3b:11:88:
4c:5a:42:e5:d8:56:65:75:f6:e5:d1:67:c1:6d:6e:
4a:e7:c0:f1:fc:0d:58:71:9a:db:91:70:e8:2c:5c:
57:ab:3c:c1:03:4b:29:7d:2c:2e:30:5d:e6:4f:92:
dd:45:1c:56:21:ef:ef:1d:9c:16:37:17:bf:13:76:
da:db:5f:81:1c:72:0a:7d:4b:eb:1a:55:87:0b:2a:
b2:a8:ba:91:5f:7b:cb:f9:9c:c3:da:df:cf:b9:cb:
b3:f8:cd:f7:5d:77:55:b8:54:36:58:f4:f8:a1:95:
bc:08:f2:c9:57:c6:6f:11:5b:7e:39:a7:6b:e1:b1:
0d:76:60:95:3e:f9:69:08:98:f6:77:d7:65:cf:e5:
fa:8f:f3:89:b6:61:1d:7a:0f:d0:c1:d8:ca:05:85:
e9:5e:ba:f7:ee:67:55:64:ce:ea:ca:f7:15:39:6b:
ae:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:2A:52:5B:CD:62:B6:FE:8E:44:C0:17:13:55:F3:F4:E6:29:11:12
X509v3 Authority Key Identifier:
keyid:B0:1A:59:D0:A6:1A:A6:17:44:38:98:8C:C8:35:98:DB:FE:A5:A9:98
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sBpZ0KYaphdEOJiMyDWY2_6lqZg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/a0e8e3-a4e7-4a9e-b798-04e1fa808426/1/sBpZ0KYaphdEOJiMyDWY2_6lqZg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:6b:93:f0:e1:63:d4:21:ca:b2:3e:8b:39:c9:54:de:5e:73:
5a:aa:63:9f:51:b3:b0:8a:0b:6f:6c:d1:7f:02:c0:10:61:7b:
50:7a:f3:74:2a:9f:4e:f0:bf:50:0d:86:ee:d2:2c:aa:0c:e7:
9c:bc:97:fb:a9:5a:7e:d7:80:3a:08:6e:08:2a:74:b7:28:62:
c9:7d:66:cd:71:78:15:1c:1e:13:a1:8e:53:7a:04:c1:57:a0:
7c:57:d2:6b:1b:d5:3d:3b:23:67:88:2d:27:02:17:16:55:c3:
36:f0:82:21:c8:81:7c:bc:a7:e4:7c:dc:bb:b0:f0:07:86:d2:
4f:a2:54:21:8f:ea:2c:98:47:d9:66:fb:9a:da:0d:79:ef:13:
fe:7e:06:c3:81:86:e6:74:82:a4:b8:a3:97:58:fd:72:35:ad:
0a:dc:d3:9c:7c:9e:61:51:eb:9e:55:81:5e:22:f3:79:29:5d:
ce:36:8b:32:99:68:fa:9a:a3:27:04:cb:da:66:66:35:7e:75:
70:ca:cd:f8:82:c7:6b:c2:d1:c3:1d:e9:28:b0:39:0c:3c:e4:
7e:21:9a:ac:dc:53:ee:f8:f8:6c:5c:c6:2c:c2:9c:da:a0:07:
66:c9:07:31:17:f4:01:2e:95:d6:ee:e1:c0:58:9c:cd:42:a4:
67:4b:86:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:36:06 2026 by rpki-client