Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: 1nmDN4RJ6oPAtSKWiGRJ224YomdGCerHPFEna9l4Dt8=
Subject key identifier: A9:01:FE:26:AA:46:B1:1A:B8:EF:31:4A:25:E6:A7:A7:89:DF:93:E8
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 019D3451118D9B7861F0CE69059561B5E4F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 188D
Signing time: Sat 28 Mar 2026 12:00:21 +0000
Manifest this update: Sat 28 Mar 2026 12:00:21 +0000
Manifest next update: Sun 29 Mar 2026 12:00:21 +0000
Files and hashes: 1: KbY3nni1wEfL__PANyZgyUs7RUY.roa (hash: gJHLBx+13eQSnJw340+rzpbr2Pvo3zONDmCvI5/SYVk=)
2: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: KWiCbG2PxIykhhORM5BMwF37/mZp4K42uI2m9BBHirk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 04:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:51:11:8d:9b:78:61:f0:ce:69:05:95:61:b5:e4:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Mar 28 12:00:21 2026 GMT
Not After : Mar 29 12:00:21 2026 GMT
Subject: CN=a901fe26aa46b11ab8ef314a25e6a7a789df93e8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:f5:b2:b7:a8:70:38:d8:ee:57:bc:e7:8d:
1f:23:77:be:b7:45:a8:9b:69:36:0e:29:e8:5c:a3:
1e:00:92:be:7a:ff:5d:a5:a4:e8:bd:ef:bd:24:5a:
ed:a7:15:e7:42:85:5b:3c:77:78:1d:1e:b2:1c:68:
39:06:16:9e:82:77:4e:ca:63:91:cf:87:00:e5:95:
5e:1e:80:87:60:5c:27:c6:ec:c1:c0:60:d7:58:40:
e2:c1:b4:98:3e:65:fb:f7:9a:88:86:54:72:ec:36:
35:b3:d1:c5:e5:29:f0:89:c7:06:28:1e:a1:79:7f:
e9:99:ac:5b:0f:1f:3d:7f:c9:85:8a:6c:07:b1:aa:
b6:75:b7:2d:c2:44:70:49:c2:68:65:de:60:fc:18:
c9:1a:33:81:f4:50:f9:38:20:fd:44:30:1f:28:ef:
73:5c:e4:13:ce:8a:d7:6e:49:aa:23:f7:c7:c0:02:
e6:5f:03:9f:18:82:b6:4d:95:24:5c:08:1a:c1:2b:
ea:c6:5f:a3:b8:93:24:a3:96:bf:ec:ee:5e:d2:d5:
67:7f:f8:75:9a:85:29:33:46:0c:76:d3:db:7c:50:
cb:34:a7:8b:8d:a1:94:51:3a:f1:59:d8:6b:bc:ea:
f7:e7:86:83:5f:cf:ee:1e:54:4b:a7:1e:bd:f6:82:
a7:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:01:FE:26:AA:46:B1:1A:B8:EF:31:4A:25:E6:A7:A7:89:DF:93:E8
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:03:c9:df:c8:bb:68:69:87:28:3b:f3:7c:80:e3:63:65:e2:
12:7c:02:7f:f0:ba:3a:22:49:61:28:79:3b:55:73:16:0e:20:
7f:d0:d5:1a:4e:9c:18:ad:5e:11:40:0f:08:23:f1:02:13:61:
e1:c0:e0:af:43:4f:72:c2:39:02:39:20:84:b5:35:18:24:3b:
98:9d:9b:65:0b:73:b6:48:ff:dc:52:b0:84:03:52:32:5f:3e:
9e:d8:bb:5a:7d:2f:9b:0c:23:1a:cd:98:eb:db:c0:3e:a0:39:
b5:7f:84:01:90:4a:96:39:5c:66:2b:37:5d:6e:88:ed:6a:e8:
ab:c9:ef:e9:ee:9a:b2:b4:e9:9a:00:39:fd:9f:c4:aa:34:14:
6d:f1:c9:4b:98:1b:98:e0:78:7c:39:e6:d3:1b:83:ff:47:57:
9e:84:c4:00:a2:6b:77:ce:39:95:5d:64:61:39:16:26:fc:56:
7c:e5:49:9d:fe:22:78:ef:b3:3b:9a:24:be:53:34:57:72:e5:
fc:4c:5b:a0:b3:c6:94:ab:bc:fe:f6:18:5a:24:3a:71:59:1b:
d9:de:81:cf:8e:e5:c3:c4:ff:7f:c3:6e:33:6f:b7:90:0e:bc:
35:05:28:d9:d6:07:af:65:50:dc:d0:26:03:d7:c6:62:b8:2c:
e4:39:37:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 28 14:29:13 2026 by rpki-client