Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: AiaGSyb/lMGDjNiaWQTd1qmq6lJNuWfJiusSi+zw2Mk=
Subject key identifier: AF:DC:C0:5E:38:FF:3E:4D:DF:75:1D:61:C9:68:9A:EB:09:ED:3D:10
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 019D27E073AA0C781EDEC3A78E8C3B54F5F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 17E4
Signing time: Thu 26 Mar 2026 02:01:54 +0000
Manifest this update: Thu 26 Mar 2026 02:01:54 +0000
Manifest next update: Fri 27 Mar 2026 02:01:54 +0000
Files and hashes: 1: 9hTsswgUXOfKzK86jh8sw9PnVRQ.roa (hash: VUMPgbx8iNcl27+3ad2ddOknvW8bTIH2c1IPAK3gQHk=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: YUpFBTO85b6w0uYPEZduk+/BdGPrN1KrUxS/6pAhWkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:73:aa:0c:78:1e:de:c3:a7:8e:8c:3b:54:f5:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Mar 26 02:01:54 2026 GMT
Not After : Mar 27 02:01:54 2026 GMT
Subject: CN=afdcc05e38ff3e4ddf751d61c9689aeb09ed3d10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:43:28:49:24:15:9b:c9:16:42:0a:d5:67:a4:
03:b0:c5:d0:55:68:0d:67:8c:df:89:cf:d0:3e:af:
bb:aa:07:67:bf:9a:91:bf:b8:24:c4:92:4b:64:12:
cd:fc:f8:2e:3d:06:16:0d:e0:06:80:db:c3:f2:88:
ab:27:cb:05:2f:58:dd:bc:07:2e:e3:05:74:97:3a:
a0:c1:6a:07:07:ab:12:f3:2d:17:ec:08:97:5d:77:
54:19:a0:61:45:a2:6d:cf:e7:dc:2b:93:8e:87:06:
28:4f:6c:f2:30:79:7e:b8:71:83:84:b0:18:e8:24:
40:d9:8c:51:ab:b3:a6:d1:22:8d:f3:fd:ba:1f:73:
46:27:8a:66:55:c2:7e:f6:bd:6c:a2:9a:7b:cf:2a:
5d:87:40:13:9d:41:d1:29:59:55:31:6b:25:be:2e:
62:f5:c7:58:02:2e:53:03:89:26:82:08:c7:3f:9f:
3d:94:07:ee:b7:74:0c:86:7d:96:8d:f1:a3:ef:6b:
a8:c9:1b:b7:3c:84:16:eb:8b:d2:c0:cd:9c:c2:d0:
44:7e:cc:16:80:a9:3c:f6:c0:1e:d0:06:ed:91:b3:
0c:b5:11:f3:c1:46:8e:f0:5e:14:3f:c8:ba:28:45:
4d:c1:eb:18:4a:16:1b:72:94:31:db:93:12:98:a4:
ee:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:DC:C0:5E:38:FF:3E:4D:DF:75:1D:61:C9:68:9A:EB:09:ED:3D:10
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:7b:5c:20:df:f3:77:07:3a:48:22:af:b1:a2:ec:bf:f2:4c:
12:e4:3c:d6:11:5f:7b:16:8e:c4:5d:44:e9:83:f2:dd:ed:e7:
dc:a4:b8:20:f7:7c:06:59:80:04:a5:bd:10:1e:9d:78:56:4d:
7c:99:5e:e5:53:30:d1:4f:20:6c:16:83:5f:b1:6e:9c:5d:92:
ef:12:8c:79:6a:0e:fb:c4:15:0f:91:47:40:0b:59:85:7a:27:
01:26:e7:99:32:99:76:b9:19:66:e9:7b:00:50:5a:ea:88:9f:
9f:eb:e3:8a:20:7b:ab:43:65:ea:58:9e:76:93:fb:9c:f3:3c:
a6:3a:b3:7e:f9:ea:a5:19:13:d9:09:46:da:19:19:0d:cc:6a:
67:4a:67:4b:f9:bd:4c:51:42:e4:a9:50:d3:b4:92:0d:a0:84:
94:0e:85:18:a6:6b:fc:26:cd:7f:af:aa:4d:e9:c6:5b:7d:8f:
68:27:b7:fc:e1:81:7d:99:a5:65:76:71:d6:8f:0c:26:24:55:
34:fa:aa:7e:ae:55:a9:0f:6e:98:70:64:fc:e7:77:34:d2:70:
66:ff:24:a2:82:01:3e:9e:56:d2:34:f0:64:7e:ea:45:ac:1f:
d5:70:11:85:bf:20:cc:2f:8d:96:86:f7:f8:97:86:c1:e6:68:
3e:96:97:5f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0n4HOqDHge3sOnjow7VPXwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDY2MzU4M2E4MTg5Y2JlYWFjODhkNDM4NzY3OTk3YjEx
MjU1NDkwHhcNMjYwMzI2MDIwMTU0WhcNMjYwMzI3MDIwMTU0WjAzMTEwLwYDVQQD
EyhhZmRjYzA1ZTM4ZmYzZTRkZGY3NTFkNjFjOTY4OWFlYjA5ZWQzZDEwMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUMoSSQVm8kWQgrVZ6QDsMXQVWgN
Z4zfic/QPq+7qgdnv5qRv7gkxJJLZBLN/PguPQYWDeAGgNvD8oirJ8sFL1jdvAcu
4wV0lzqgwWoHB6sS8y0X7AiXXXdUGaBhRaJtz+fcK5OOhwYoT2zyMHl+uHGDhLAY
6CRA2YxRq7Om0SKN8/26H3NGJ4pmVcJ+9r1sopp7zypdh0ATnUHRKVlVMWslvi5i
9cdYAi5TA4kmggjHP589lAfut3QMhn2WjfGj72uoyRu3PIQW64vSwM2cwtBEfswW
gKk89sAe0AbtkbMMtRHzwUaO8F4UP8i6KEVNwesYShYbcpQx25MSmKTuCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK/cwF44/z5N33UdYclomusJ7T0QMB8GA1UdIwQY
MBaAFLIGY1g6gYnL6qyI1Dh2eZexElVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQt
ZDE4NzczZTdiYzQ3LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQtZDE4NzczZTdiYzQ3
LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATntcIN/z
dwc6SCKvsaLsv/JMEuQ81hFfexaOxF1E6YPy3e3n3KS4IPd8BlmABKW9EB6deFZN
fJle5VMw0U8gbBaDX7FunF2S7xKMeWoO+8QVD5FHQAtZhXonASbnmTKZdrkZZul7
AFBa6oifn+vjiiB7q0Nl6liedpP7nPM8pjqzfvnqpRkT2QlG2hkZDcxqZ0pnS/m9
TFFC5KlQ07SSDaCElA6FGKZr/CbNf6+qTenGW32PaCe3/OGBfZmlZXZx1o8MJiRV
NPqqfq5VqQ9umHBk/Od3NNJwZv8kooIBPp5W0jTwZH7qRawf1XARhb8gzC+Nlob3
+JeGweZoPpaXXw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:03 2026 by rpki-client