Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: gyvC4uAfr95bKD4bBsQliTsIs5L3Uzw+I3bFB3hNAXE=
Subject key identifier: 74:A0:D6:EE:7D:88:3B:49:95:B7:FB:9F:9E:0D:06:AA:38:FE:F4:72
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019D273AFE71164EA1A15D3E73372402D951
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 23:01:10 +0000
Manifest this update: Wed 25 Mar 2026 23:01:10 +0000
Manifest next update: Thu 26 Mar 2026 23:01:10 +0000
Files and hashes: 1: _7FUJXfD4Ngly6FguO7Icv3bnRs.roa (hash: uIw7fcvWe1lM1UlpZ2C4ZV/RLkNGSXf/iL61npEiJKw=)
2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: 7JFZCh7kKYp42BGatMqr84hQRwe1aIXjpT3zWPHLsTU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:fe:71:16:4e:a1:a1:5d:3e:73:37:24:02:d9:51
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Mar 25 23:01:10 2026 GMT
Not After : Mar 26 23:01:10 2026 GMT
Subject: CN=74a0d6ee7d883b4995b7fb9f9e0d06aa38fef472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:2a:23:b4:f2:be:19:7a:da:bb:42:2f:4f:4e:
e9:69:73:bf:9b:b2:65:f9:3d:4c:ed:0e:c2:31:89:
a4:18:66:6b:0d:5a:2e:ad:20:ab:b4:f4:69:99:e6:
44:f1:47:21:22:da:e9:ee:c6:ce:49:23:07:f9:71:
92:d0:72:42:bd:df:8e:3f:6a:d1:51:57:31:9f:17:
1e:39:02:50:c8:73:d0:8b:24:af:e6:c8:bb:37:61:
b3:ae:ee:2c:4b:a2:24:d8:2f:17:88:e9:40:3b:07:
c0:9b:82:ff:48:e7:22:f2:fc:44:d2:82:fa:b5:83:
81:e8:69:1a:7e:b3:1f:f2:e4:c3:3a:e2:8c:c7:e1:
02:c1:c4:b0:da:e5:97:f3:ec:4c:c0:e8:9e:2d:be:
25:be:24:3d:d6:da:00:cc:0f:a1:37:e4:3d:fa:71:
f9:7d:d4:8a:86:22:19:7b:34:f6:94:f1:83:73:07:
af:a8:f6:5c:d8:61:14:09:8c:e0:42:66:d0:f9:e3:
9b:e1:d3:cb:b0:14:59:e7:59:7a:f4:fb:1f:18:77:
8c:51:c3:e6:3a:33:38:df:23:7b:ef:be:3f:9b:eb:
f4:37:7c:12:e0:7f:11:e7:a1:17:3f:af:3c:a7:de:
ef:4a:38:da:c9:ee:b0:85:57:5e:2b:c6:3f:1f:20:
a3:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:A0:D6:EE:7D:88:3B:49:95:B7:FB:9F:9E:0D:06:AA:38:FE:F4:72
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:22:87:26:53:27:92:14:fd:7c:14:5e:5f:08:1e:55:d3:dc:
52:fa:cf:44:3e:c4:2f:0e:f2:88:c5:32:e1:d9:83:ab:a5:75:
77:7c:12:d5:8b:8f:55:64:ae:40:ea:54:ff:ae:aa:fa:53:c5:
37:af:ac:05:d0:3b:4f:c8:ba:80:76:95:16:38:d4:b3:ff:2b:
40:e7:aa:69:48:e5:ca:4f:5a:2b:51:57:95:93:57:fe:08:13:
5a:f1:fa:74:93:ed:47:79:ad:3c:63:ed:54:a4:1c:22:f1:32:
d5:33:9c:4c:93:41:3e:2a:b2:ce:f7:16:3f:9e:79:b1:c1:7f:
f7:01:19:61:61:d7:61:4f:de:72:95:51:57:3a:d1:f0:e1:79:
01:d3:71:de:73:c3:0b:48:31:74:ac:6e:01:26:49:c1:87:58:
c3:aa:46:ce:2b:4f:7e:a7:ba:e0:cf:f3:f2:0d:1a:f9:0c:6e:
1c:da:e3:f5:e7:5a:2d:b9:eb:65:44:e1:8f:6f:00:2d:61:7e:
44:db:48:0c:c6:b9:bd:cb:4d:96:74:ed:d6:d9:ff:ad:6f:85:
bd:25:6d:f5:6f:7c:63:c6:3b:e6:7e:bd:fd:f5:7f:a9:e1:d2:
40:80:61:ac:a8:7a:8a:7a:1f:7c:f3:af:6f:68:07:11:23:98:
42:db:3c:26
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOv5xFk6hoV0+czckAtlRMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm
NWUyNTYwHhcNMjYwMzI1MjMwMTEwWhcNMjYwMzI2MjMwMTEwWjAzMTEwLwYDVQQD
Eyg3NGEwZDZlZTdkODgzYjQ5OTViN2ZiOWY5ZTBkMDZhYTM4ZmVmNDcyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzCojtPK+GXrau0IvT07paXO/m7Jl
+T1M7Q7CMYmkGGZrDVourSCrtPRpmeZE8UchItrp7sbOSSMH+XGS0HJCvd+OP2rR
UVcxnxceOQJQyHPQiySv5si7N2Gzru4sS6Ik2C8XiOlAOwfAm4L/SOci8vxE0oL6
tYOB6GkafrMf8uTDOuKMx+ECwcSw2uWX8+xMwOieLb4lviQ91toAzA+hN+Q9+nH5
fdSKhiIZezT2lPGDcwevqPZc2GEUCYzgQmbQ+eOb4dPLsBRZ51l69PsfGHeMUcPm
OjM43yN7774/m+v0N3wS4H8R56EXP688p97vSjjaye6whVdeK8Y/HyCjgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHSg1u59iDtJlbf7n54NBqo4/vRyMB8GA1UdIwQY
MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt
MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1
LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhSKHJlMn
khT9fBReXwgeVdPcUvrPRD7ELw7yiMUy4dmDq6V1d3wS1YuPVWSuQOpU/66q+lPF
N6+sBdA7T8i6gHaVFjjUs/8rQOeqaUjlyk9aK1FXlZNX/ggTWvH6dJPtR3mtPGPt
VKQcIvEy1TOcTJNBPiqyzvcWP555scF/9wEZYWHXYU/ecpVRVzrR8OF5AdNx3nPD
C0gxdKxuASZJwYdYw6pGzitPfqe64M/z8g0a+QxuHNrj9edaLbnrZUThj28ALWF+
RNtIDMa5vctNlnTt1tn/rW+FvSVt9W98Y8Y75n69/fV/qeHSQIBhrKh6inoffPOv
b2gHESOYQts8Jg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:47 2026 by rpki-client