Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/79bef1-cd56-4e8b-9749-95838c7c84f5/1/sgWR5euUhCdKdKyC_muRDivLE5k.mft
File: sgWR5euUhCdKdKyC_muRDivLE5k.mft (raw, json)
Hash identifier: oJ0Krxghs+rawRu5RMfCU+ShwXA2BW0CIc/OzRziJdw=
Subject key identifier: 35:25:DE:5C:0B:AC:CF:90:66:55:7F:E7:3F:3E:76:57:A1:A4:62:66
Authority key identifier: B2:05:91:E5:EB:94:84:27:4A:74:AC:82:FE:6B:91:0E:2B:CB:13:99
Certificate issuer: /CN=b20591e5eb9484274a74ac82fe6b910e2bcb1399
Certificate serial: 019E1D901BCE25D28E00E5EDDDB7E1300404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgWR5euUhCdKdKyC_muRDivLE5k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/79bef1-cd56-4e8b-9749-95838c7c84f5/1/sgWR5euUhCdKdKyC_muRDivLE5k.mft
Manifest number: 63
Signing time: Tue 12 May 2026 19:00:43 +0000
Manifest this update: Tue 12 May 2026 19:00:43 +0000
Manifest next update: Wed 13 May 2026 19:00:43 +0000
Files and hashes: 1: YNiESc72RDLIiWhCHsXSi1o9cLE.asa (hash: l71vJ2s8lHSefHy7yMSFsWXnMilHTDdYBPtW2A9TX3g=)
2: sgWR5euUhCdKdKyC_muRDivLE5k.crl (hash: u4WC6PrsTIqz0inKzeRHvV9lcr/sUkJOyNuM1TTIZQQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/79bef1-cd56-4e8b-9749-95838c7c84f5/1/sgWR5euUhCdKdKyC_muRDivLE5k.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/79bef1-cd56-4e8b-9749-95838c7c84f5/1/sgWR5euUhCdKdKyC_muRDivLE5k.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgWR5euUhCdKdKyC_muRDivLE5k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:1b:ce:25:d2:8e:00:e5:ed:dd:b7:e1:30:04:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20591e5eb9484274a74ac82fe6b910e2bcb1399
Validity
Not Before: May 12 19:00:43 2026 GMT
Not After : May 13 19:00:43 2026 GMT
Subject: CN=3525de5c0baccf9066557fe73f3e7657a1a46266
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:42:66:2e:77:06:70:6e:73:f2:30:e5:8d:9f:
ff:b8:02:f7:5e:2e:41:09:0f:f4:97:08:ee:64:09:
24:50:d9:ea:42:62:ad:1a:87:46:d0:90:28:05:a0:
5e:2b:89:a0:e8:14:80:b5:c7:57:c8:0c:30:71:75:
ef:ab:7b:65:02:da:1e:28:28:02:a4:44:97:56:7f:
84:c6:f0:65:b2:06:25:a1:86:42:c8:b3:b2:93:c4:
a6:19:17:6e:d0:1c:0a:dd:37:ae:e5:da:6a:ae:9b:
d6:25:7c:ca:15:4b:fd:d8:f1:0d:3c:92:ea:33:2b:
65:02:40:fd:af:0e:42:44:f4:5b:91:71:54:80:37:
b3:d4:1a:f6:43:39:51:b9:45:f7:ba:87:1d:12:54:
dd:91:cd:9c:42:6b:3a:1f:2f:9f:68:16:46:a3:ce:
7e:e5:2c:a8:8b:48:ce:13:f0:29:62:a8:1a:69:11:
55:ef:13:e5:e6:20:e5:4c:63:e7:26:ea:32:50:72:
73:0a:1f:85:e0:a8:8f:cd:c1:44:05:27:60:71:e2:
fe:3d:b2:86:fa:73:9f:63:8c:af:85:67:79:84:65:
55:55:a6:1b:fc:17:fd:3d:3d:7c:d0:e9:f8:ad:3b:
ce:98:0b:c0:6f:6e:8d:3c:72:57:c1:e6:27:c8:91:
9d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:25:DE:5C:0B:AC:CF:90:66:55:7F:E7:3F:3E:76:57:A1:A4:62:66
X509v3 Authority Key Identifier:
keyid:B2:05:91:E5:EB:94:84:27:4A:74:AC:82:FE:6B:91:0E:2B:CB:13:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgWR5euUhCdKdKyC_muRDivLE5k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/79bef1-cd56-4e8b-9749-95838c7c84f5/1/sgWR5euUhCdKdKyC_muRDivLE5k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/79bef1-cd56-4e8b-9749-95838c7c84f5/1/sgWR5euUhCdKdKyC_muRDivLE5k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:0c:c3:18:29:5b:48:3a:81:4c:70:1e:a4:53:95:95:81:7a:
d9:ae:68:26:93:42:88:32:f7:60:9d:05:80:ca:e8:49:ae:90:
df:ed:81:2a:6b:5d:a1:3d:a2:71:55:6d:14:52:b0:05:62:c0:
db:16:f5:49:65:2a:34:eb:a9:0d:02:7b:46:7a:7f:30:33:e3:
2d:36:ff:56:e0:7d:0e:a9:05:0a:6a:c3:6c:06:f9:50:7d:fc:
e0:da:a5:a6:bf:41:ff:c1:55:81:c2:03:2d:a9:aa:45:c2:23:
0c:64:4d:e7:0e:7b:69:53:ba:48:b7:62:0a:14:1a:70:28:b7:
0c:30:44:9c:24:cd:df:c0:d2:b6:7f:74:e2:7c:fe:58:d8:dd:
d3:db:84:20:bf:eb:84:31:c1:80:b7:36:d7:c4:b0:5d:9e:42:
2d:dd:b2:98:dd:30:df:fd:e9:dd:6b:13:c8:c4:5c:86:ea:f9:
3c:f9:f6:af:cc:6a:1d:ac:87:f3:0f:10:98:98:ec:12:68:f2:
c9:91:98:f5:15:5d:a5:63:ed:ae:36:7f:c1:75:dc:72:c3:b9:
5a:13:79:df:04:1c:0f:6d:93:bd:ec:9a:86:53:1c:ae:dd:3f:
8d:f7:4c:b3:e5:ac:52:d1:df:0a:23:78:f6:c6:90:10:ac:30:
7f:28:60:af
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4dkBvOJdKOAOXt3bfhMAQEMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDU5MWU1ZWI5NDg0Mjc0YTc0YWM4MmZlNmI5MTBlMmJj
YjEzOTkwHhcNMjYwNTEyMTkwMDQzWhcNMjYwNTEzMTkwMDQzWjAzMTEwLwYDVQQD
EygzNTI1ZGU1YzBiYWNjZjkwNjY1NTdmZTczZjNlNzY1N2ExYTQ2MjY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtEJmLncGcG5z8jDljZ//uAL3Xi5B
CQ/0lwjuZAkkUNnqQmKtGodG0JAoBaBeK4mg6BSAtcdXyAwwcXXvq3tlAtoeKCgC
pESXVn+ExvBlsgYloYZCyLOyk8SmGRdu0BwK3Teu5dpqrpvWJXzKFUv92PENPJLq
MytlAkD9rw5CRPRbkXFUgDez1Br2QzlRuUX3uocdElTdkc2cQms6Hy+faBZGo85+
5Syoi0jOE/ApYqgaaRFV7xPl5iDlTGPnJuoyUHJzCh+F4KiPzcFEBSdgceL+PbKG
+nOfY4yvhWd5hGVVVaYb/Bf9PT180On4rTvOmAvAb26NPHJXweYnyJGd4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDUl3lwLrM+QZlV/5z8+dlehpGJmMB8GA1UdIwQY
MBaAFLIFkeXrlIQnSnSsgv5rkQ4ryxOZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2dXUjVldVVoQ2RLZEt5Q19tdVJEaXZMRTVrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83NC83OWJlZjEtY2Q1Ni00ZThiLTk3NDkt
OTU4MzhjN2M4NGY1LzEvc2dXUjVldVVoQ2RLZEt5Q19tdVJEaXZMRTVrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83NC83OWJlZjEtY2Q1Ni00ZThiLTk3NDktOTU4MzhjN2M4NGY1
LzEvc2dXUjVldVVoQ2RLZEt5Q19tdVJEaXZMRTVrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaAzDGClb
SDqBTHAepFOVlYF62a5oJpNCiDL3YJ0FgMroSa6Q3+2BKmtdoT2icVVtFFKwBWLA
2xb1SWUqNOupDQJ7Rnp/MDPjLTb/VuB9DqkFCmrDbAb5UH384Nqlpr9B/8FVgcID
LamqRcIjDGRN5w57aVO6SLdiChQacCi3DDBEnCTN38DStn904nz+WNjd09uEIL/r
hDHBgLc218SwXZ5CLd2ymN0w3/3p3WsTyMRchur5PPn2r8xqHayH8w8QmJjsEmjy
yZGY9RVdpWPtrjZ/wXXccsO5WhN53wQcD22TveyahlMcrt0/jfdMs+WsUtHfCiN4
9saQEKwwfyhgrw==
-----END CERTIFICATE-----
Generated at Tue May 12 21:39:39 2026 by rpki-client