Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: 8Uus2/3LjOKamsOEAKQaLM4VCBt6dL8xfTAQ8136za0=
Subject key identifier: 55:05:57:67:07:08:38:5D:A1:7A:E5:00:5F:69:80:95:43:A5:D8:C9
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019E20921A2EACBBF9DE02598CC8316595DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 09:01:46 +0000
Manifest this update: Wed 13 May 2026 09:01:46 +0000
Manifest next update: Thu 14 May 2026 09:01:46 +0000
Files and hashes: 1: 9qwf6-Dqoc3yJJecKnCaJyAyhZ4.roa (hash: /C2CSaK00NB+/TpXiHAeWUhtWjQTZ45pzq0LkkZy9eA=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: RlE1NaeHp/Am7xs63TYc6FSPzdMZ/rQLVUdlSYXxdvk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:01:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:92:1a:2e:ac:bb:f9:de:02:59:8c:c8:31:65:95:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: May 13 09:01:46 2026 GMT
Not After : May 14 09:01:46 2026 GMT
Subject: CN=550557670708385da17ae5005f69809543a5d8c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:c9:9d:10:9d:04:47:c1:bd:2c:1e:67:3c:d0:
18:74:6c:a4:88:bd:01:44:ac:43:ea:84:b0:68:e9:
df:76:7f:bc:32:9d:56:6e:03:c2:e3:92:b9:75:de:
37:3e:91:64:4f:c5:13:e6:46:2d:64:02:1b:54:c7:
20:38:48:28:9e:52:25:b2:cc:63:8d:83:c0:a5:ff:
db:ea:5d:7c:86:fa:2a:89:ef:5a:f4:02:cf:ea:7b:
17:8a:ea:0e:0e:c9:77:b9:dc:b4:51:d0:f4:bc:52:
b6:39:0c:c9:83:9a:c3:3c:d9:04:05:48:c5:0d:e7:
03:f3:db:ce:bd:14:26:be:6d:3a:9e:25:10:5b:67:
89:26:11:e4:f4:81:88:13:ca:b2:9d:25:6e:0b:05:
86:e3:32:5b:d8:a3:37:04:bb:01:02:f7:8d:46:e7:
27:a8:80:8a:99:b0:4d:44:7c:61:9c:13:ba:84:86:
b6:b4:a7:be:f4:d4:0e:88:d1:17:d8:27:2e:c8:19:
d1:b5:ce:5b:ea:9c:aa:13:a0:3d:d5:cd:f9:04:d8:
7f:11:de:14:9c:b4:0e:79:b7:b8:24:3a:49:57:c2:
1d:93:e2:3b:a8:bb:8a:82:4a:12:cc:55:45:25:78:
1f:3c:32:ba:61:03:51:2c:10:b2:c9:cd:30:f8:7c:
d1:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:05:57:67:07:08:38:5D:A1:7A:E5:00:5F:69:80:95:43:A5:D8:C9
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
81:17:5b:dd:01:4d:a4:cb:1d:c4:3f:17:e6:9f:b1:25:98:dd:
6e:cd:88:d7:31:62:2d:0e:2f:fd:ea:6e:5c:6e:4d:88:9f:e2:
0c:d9:ea:ff:1b:45:3a:b8:94:c0:f0:10:16:d0:95:e6:90:90:
8b:59:92:4e:00:91:bd:a4:0c:0d:65:e8:9a:35:58:85:3d:1e:
78:1a:bd:33:b2:d5:7f:cb:36:51:a9:0b:29:a5:a9:a5:a3:5f:
31:b2:ee:09:a7:d2:1c:de:59:cf:36:00:09:22:e7:35:9d:81:
d5:a2:4d:0a:01:e2:db:79:00:3d:64:6b:35:a1:31:7f:7b:c3:
34:0c:ca:0d:0e:9e:fd:92:5e:70:ed:de:c7:6e:ec:ec:4a:74:
26:eb:1a:41:ae:11:ad:b2:ef:59:81:1b:a2:fe:5a:2f:12:9b:
58:84:06:ff:f2:7e:e1:2b:8b:aa:1e:dd:a1:98:c6:3c:e1:d9:
ca:79:b5:c1:75:93:c9:09:47:2e:1a:c9:f1:7b:5a:a0:e3:74:
d3:75:06:b9:b0:10:b6:50:90:ba:85:05:bb:a0:8e:a7:eb:52:
1e:b4:f9:a3:82:af:a6:ee:3e:95:e4:6b:f2:fc:9c:ac:e5:85:
6d:63:a8:21:a1:7b:3a:70:ba:e3:1d:ca:f1:6d:5f:8b:05:3d:
78:06:ee:9b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:53:59 2026 by rpki-client