Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: 7BiYn5cmMM+OjBo7AzzAgXDu3WN+JS3/5751cGGqdec=
Subject key identifier: 26:25:71:A7:E7:35:EA:3F:93:22:FF:75:AE:B0:B2:31:52:8B:E8:58
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019D26965F8214DD96010D49FCC47DC58478
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 039C
Signing time: Wed 25 Mar 2026 20:01:22 +0000
Manifest this update: Wed 25 Mar 2026 20:01:22 +0000
Manifest next update: Thu 26 Mar 2026 20:01:22 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: weS3MaVmlse4Tq0fTpkwQRDKmCer9pEULyJeweuw7H4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:5f:82:14:dd:96:01:0d:49:fc:c4:7d:c5:84:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Mar 25 20:01:22 2026 GMT
Not After : Mar 26 20:01:22 2026 GMT
Subject: CN=262571a7e735ea3f9322ff75aeb0b231528be858
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:01:3d:0c:03:75:dd:40:3d:db:71:e0:02:
fa:6b:2a:ce:b0:30:94:ac:63:b2:71:da:32:da:4d:
1e:a5:eb:68:c2:77:25:fa:19:5b:d3:32:2c:9b:7c:
6e:06:b3:26:22:8f:06:8b:2f:d4:f9:11:74:a9:b3:
03:e4:6b:42:8b:62:e4:e8:0d:51:7f:51:af:6e:e7:
a1:b2:d4:37:77:28:36:30:f3:95:ae:71:2b:62:c8:
1f:4e:e7:c2:f8:96:2f:99:cb:ef:be:37:ff:55:03:
49:6a:11:1a:6a:93:5e:cd:42:75:d0:b2:36:7e:8f:
29:24:29:6a:ce:b6:12:be:83:2b:75:57:09:f4:5f:
8d:7f:98:50:37:c1:56:f7:52:9e:1a:61:d0:c7:f7:
80:f8:a1:b6:46:81:08:45:2f:78:ff:40:21:f3:46:
a6:29:37:21:7e:9f:88:5a:0a:a7:36:6e:9d:d5:ba:
20:b7:ef:74:70:3e:a4:03:4d:79:45:0d:45:f3:81:
74:dc:6e:4e:7e:67:ae:34:52:61:ff:b7:7e:87:2d:
79:a8:5a:04:fd:3a:03:8a:01:87:ad:1a:31:bd:64:
74:ba:9e:dd:72:e4:c4:4d:aa:57:1f:00:70:86:a4:
0b:64:f0:2a:8a:36:b6:23:f6:f3:6c:a0:39:1d:e6:
70:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:25:71:A7:E7:35:EA:3F:93:22:FF:75:AE:B0:B2:31:52:8B:E8:58
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:5c:9c:57:d8:b5:6e:37:0e:3b:17:6c:b3:e4:ec:14:9c:9f:
f0:fd:69:47:50:f2:0a:fc:88:94:23:d8:c2:7d:8e:d9:e1:02:
6d:c3:f4:2d:a7:2e:97:b7:0a:c6:f7:ec:e0:7e:79:c3:75:4a:
0f:e1:84:42:39:b3:02:c2:48:80:b0:ab:fa:8f:76:bf:da:b5:
28:ed:85:18:64:fa:21:b8:c7:a0:cb:28:8c:60:e4:19:07:51:
31:2a:f8:7e:50:68:4e:a6:bf:89:4f:67:f7:28:03:d4:a9:59:
b7:7c:93:76:c5:bd:7c:ac:68:5d:ed:ba:7c:78:ff:de:53:f9:
c1:fe:70:70:72:23:39:b9:fa:b0:fb:f0:00:ab:ce:49:ff:b3:
21:00:82:99:48:b8:79:06:18:f4:d2:d9:73:5f:7e:3e:ff:93:
dc:66:fd:34:c0:b7:b1:17:26:3c:81:a0:42:86:7c:a7:5d:1d:
6f:ed:c1:c1:e2:08:fe:48:97:2e:77:5a:ac:bb:e4:dd:18:71:
e4:4e:db:93:f4:0c:61:61:29:ac:ee:15:85:46:be:36:2c:85:
9e:3a:46:0a:57:ae:45:87:22:2a:6e:6f:51:25:27:ea:c7:2d:
72:5c:6f:b1:b1:7d:39:d1:7e:e0:66:8d:cb:17:fd:f9:0d:c9:
64:9e:c9:f7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mll+CFN2WAQ1J/MR9xYR4MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIxZGY4ZTAwMzdmMWFlODJmN2JlMjIzNWFlNjEyYzQwMTBm
NmZlOTEwHhcNMjYwMzI1MjAwMTIyWhcNMjYwMzI2MjAwMTIyWjAzMTEwLwYDVQQD
EygyNjI1NzFhN2U3MzVlYTNmOTMyMmZmNzVhZWIwYjIzMTUyOGJlODU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuIEBPQwDdd1APdtx4AL6ayrOsDCU
rGOycdoy2k0epetowncl+hlb0zIsm3xuBrMmIo8Giy/U+RF0qbMD5GtCi2Lk6A1R
f1GvbuehstQ3dyg2MPOVrnErYsgfTufC+JYvmcvvvjf/VQNJahEaapNezUJ10LI2
fo8pJClqzrYSvoMrdVcJ9F+Nf5hQN8FW91KeGmHQx/eA+KG2RoEIRS94/0Ah80am
KTchfp+IWgqnNm6d1bogt+90cD6kA015RQ1F84F03G5OfmeuNFJh/7d+hy15qFoE
/ToDigGHrRoxvWR0up7dcuTETapXHwBwhqQLZPAqija2I/bzbKA5HeZw6wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCYlcafnNeo/kyL/da6wsjFSi+hYMB8GA1UdIwQY
MBaAFLHfjgA38a6C974iNa5hLEAQ9v6RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEt
MTljYTUwY2YzNGFiLzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My82YjRhMTgtMDdiYy00MzUzLWI3ZWEtMTljYTUwY2YzNGFi
LzEvc2QtT0FEZnhyb0wzdmlJMXJtRXNRQkQyX3BFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGVycV9i1
bjcOOxdss+TsFJyf8P1pR1DyCvyIlCPYwn2O2eECbcP0Lacul7cKxvfs4H55w3VK
D+GEQjmzAsJIgLCr+o92v9q1KO2FGGT6IbjHoMsojGDkGQdRMSr4flBoTqa/iU9n
9ygD1KlZt3yTdsW9fKxoXe26fHj/3lP5wf5wcHIjObn6sPvwAKvOSf+zIQCCmUi4
eQYY9NLZc19+Pv+T3Gb9NMC3sRcmPIGgQoZ8p10db+3BweII/kiXLndarLvk3Rhx
5E7bk/QMYWEprO4VhUa+NiyFnjpGCleuRYciKm5vUSUn6sctclxvsbF9OdF+4GaN
yxf9+Q3JZJ7J9w==
-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:38 2026 by rpki-client