Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: 4SanhcKAszC0R/HPc/LZMjr+0oXCB4VxrZqVJUaws8U=
Subject key identifier: F4:5B:19:6B:3D:8C:D0:52:60:7B:E9:D7:ED:B2:09:8E:E4:0F:D4:65
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 019D29CE7FC73CFE898605D440084D808265
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 11:01:32 +0000
Manifest this update: Thu 26 Mar 2026 11:01:32 +0000
Manifest next update: Fri 27 Mar 2026 11:01:32 +0000
Files and hashes: 1: PP8v4ZF9LqDHcTW_KE_ttdsGemE.roa (hash: WpVmL0psb7bfXQaqzyLO36WcvKirINpjSx0F9NsCq+M=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: 17+Pjf+WHs32SP/gip7QnPKKxdUW1N5yvzxx1Y67CBI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:7f:c7:3c:fe:89:86:05:d4:40:08:4d:80:82:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Mar 26 11:01:32 2026 GMT
Not After : Mar 27 11:01:32 2026 GMT
Subject: CN=f45b196b3d8cd052607be9d7edb2098ee40fd465
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:74:07:3d:67:a1:7e:c3:b6:bf:cd:00:11:2e:
98:80:a4:86:fe:1d:17:4a:6d:44:ce:02:c5:cc:7b:
36:8c:f6:31:99:32:c0:e1:c8:88:93:c5:85:4b:86:
4b:c1:38:59:23:24:59:f6:04:68:f5:ec:07:97:31:
e7:1d:34:15:7c:e2:a5:75:77:0c:23:fe:d8:1a:1e:
6f:f0:92:95:79:08:93:8b:65:26:60:bc:a1:88:5a:
bc:b4:22:07:d8:a9:43:96:98:63:68:fe:7f:5a:08:
06:2b:86:2a:d6:6e:07:a9:6c:d2:bc:99:27:b4:ca:
b8:97:ac:5b:14:d2:98:12:85:63:99:d7:a7:eb:7a:
45:05:1f:56:5b:5a:6a:74:41:e1:c3:d8:07:77:e8:
35:c7:c1:4a:31:90:30:96:8c:28:f0:a3:60:29:5d:
ce:68:ae:a7:53:fe:5f:d3:54:2b:06:49:8c:f3:83:
72:47:3b:57:de:ac:1c:59:82:90:d7:58:c2:58:64:
61:38:42:48:05:d9:79:cf:f9:cf:d9:72:f7:81:93:
9e:90:79:c5:86:af:29:8b:dd:36:6f:c9:6a:e7:09:
42:e6:6b:b0:99:60:79:be:35:f1:36:6c:81:75:2c:
dd:9a:43:5d:d1:e2:0c:04:d1:c2:25:d1:72:36:d7:
33:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:5B:19:6B:3D:8C:D0:52:60:7B:E9:D7:ED:B2:09:8E:E4:0F:D4:65
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:dd:16:01:cf:0b:2c:24:09:30:14:dd:0b:6f:89:37:4c:8d:
e0:d8:9e:ee:4c:6b:50:40:2a:4d:0c:4f:53:49:9c:5c:45:86:
eb:08:5b:df:ae:12:71:89:65:5b:c8:2e:14:c9:be:c6:f8:f0:
61:94:cf:d6:30:a0:8b:f8:c6:62:3c:ed:e2:13:d5:65:c1:dd:
49:9e:8f:d4:e0:4e:bc:cd:64:69:c3:b3:e5:06:22:7c:8e:1c:
45:b5:d6:4a:7b:2f:d1:b3:80:21:28:79:db:1c:60:08:e6:3b:
f2:56:cd:a6:02:4d:8a:f2:07:06:5e:75:87:84:1a:4b:d7:d8:
4d:35:8e:ad:47:9b:f5:cb:be:64:96:a6:cc:5e:41:c3:0c:c5:
c0:29:06:07:9e:a2:4f:2b:32:08:31:d3:17:3b:83:e3:38:64:
ca:b6:c9:4b:94:ac:13:96:a5:36:1a:b1:82:82:2b:af:a4:af:
0d:32:76:69:d4:01:47:8a:5c:c9:24:6d:ac:65:17:2f:d0:32:
9f:81:a0:37:49:f6:5c:17:6f:d1:90:7d:2c:6f:f9:d7:11:3d:
e1:28:82:5b:80:48:26:d3:5b:d8:83:79:c4:7d:b0:c6:e4:1f:
29:fb:3b:9e:c9:c3:dd:87:5a:99:f3:68:16:53:92:e2:fe:34:
fd:d2:9f:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:31:49 2026 by rpki-client