Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: 2lxE8w48ZkpBatoZGzsLGwsrTDjMw3wHMFNiFgzZSl4=
Subject key identifier: 17:C7:36:FE:9F:32:ED:D0:7F:94:AF:B4:89:1A:67:CE:CB:58:6F:EA
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 019D27A8FFF08F874B1546770140B1836608
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 16D4
Signing time: Thu 26 Mar 2026 01:01:20 +0000
Manifest this update: Thu 26 Mar 2026 01:01:20 +0000
Manifest next update: Fri 27 Mar 2026 01:01:20 +0000
Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: cLUG9H9byOyqCQFtacacugrh/aKk1NennWwVwuQWJ2U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:ff:f0:8f:87:4b:15:46:77:01:40:b1:83:66:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Mar 26 01:01:20 2026 GMT
Not After : Mar 27 01:01:20 2026 GMT
Subject: CN=17c736fe9f32edd07f94afb4891a67cecb586fea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:28:39:83:97:32:79:d8:fd:de:fd:57:43:e5:
96:cc:6f:97:0d:97:7e:57:03:b6:28:67:fc:bb:3d:
5b:a0:7e:58:4f:09:2c:c6:d0:71:cf:40:f0:0b:ed:
d2:1e:74:55:d6:0c:ea:85:ce:af:a3:24:09:40:b8:
ed:96:c1:fb:0b:17:e1:f9:48:19:b1:89:9a:69:1b:
68:82:da:2a:fc:8a:0e:3a:e8:82:76:e0:49:8b:ba:
78:04:91:fe:52:ff:db:d6:87:91:18:78:a4:fa:40:
a5:a8:cd:8e:06:e8:fa:79:fe:21:4b:e5:ad:04:2c:
c6:bc:db:39:31:8b:9f:4d:1b:70:c2:3d:33:de:bd:
24:ea:9e:fa:b4:94:4f:6d:74:2e:63:b4:1b:24:56:
1a:91:ab:99:f9:77:69:9a:3a:7a:a2:89:40:6a:97:
79:d6:60:55:36:c1:55:fa:fc:11:f2:ed:b9:d5:48:
2e:28:d2:16:c8:65:55:19:56:36:33:7f:f5:dd:bf:
15:b2:33:0a:be:9f:1a:98:03:c0:01:ec:3c:05:7e:
b3:6f:ac:eb:73:62:fa:4d:4c:6d:81:07:80:53:e7:
fc:d1:44:c5:ae:fa:57:02:e1:c9:4a:ec:cd:90:ae:
9a:c5:83:4f:b7:0c:80:9f:61:a2:d8:47:21:91:92:
34:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:C7:36:FE:9F:32:ED:D0:7F:94:AF:B4:89:1A:67:CE:CB:58:6F:EA
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:d5:30:45:2a:ca:fb:6f:00:83:e7:8d:88:67:09:de:87:b8:
47:01:83:27:2e:32:de:3b:ca:d4:d5:9b:08:1f:4b:5d:52:d7:
38:24:06:4b:66:72:db:62:fa:5b:b0:4c:8c:5b:66:98:0e:fa:
fa:b7:a9:2b:bd:3f:98:c8:2f:55:50:25:ed:8b:bf:0f:9f:66:
a5:18:aa:2c:b1:b0:21:a6:e8:aa:6e:21:7d:d8:6b:d4:a6:ca:
78:8d:68:98:90:40:f7:d6:36:f1:b2:63:a2:ec:f6:e6:d6:4e:
65:12:48:59:92:de:fb:e5:9a:ef:11:52:ed:6d:f8:1d:ef:d5:
c1:71:fa:ae:e5:c9:34:e4:1d:5e:66:82:8c:7b:c2:a3:d1:bc:
27:24:ab:c8:d9:3d:ab:10:18:5e:82:ae:d9:b4:72:95:7f:a8:
48:8e:2d:85:04:cf:64:29:37:68:e3:3e:4a:10:7e:3b:2d:7f:
2f:52:34:2f:1e:5f:06:90:f5:b5:38:1b:b2:39:8d:17:8f:bb:
63:b5:28:1b:96:a0:4a:10:59:a0:8a:6c:c4:f9:60:7d:a7:76:
db:ae:ce:49:96:86:57:8c:2b:1a:2a:7c:bf:5f:44:df:91:b5:
d0:87:11:44:44:5a:83:dc:75:9e:2b:66:91:5f:ad:39:c4:e1:
2a:a3:32:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:30:21 2026 by rpki-client