Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: 8efFXiOaMxCBRcqFOmKhVBVj9N/D7EXZ30Qmfq8BeLU=
Subject key identifier: BF:53:D1:7E:A3:A1:C6:20:0E:1C:F0:8C:14:9A:CF:F8:D9:26:C3:8D
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019D273B3CA9987C2F49811BF5FAF330CB7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 23:01:26 +0000
Manifest this update: Wed 25 Mar 2026 23:01:26 +0000
Manifest next update: Thu 26 Mar 2026 23:01:26 +0000
Files and hashes: 1: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: hPtFGNPW77coxbugTdYsthckwj6nV5Fr+fDCojpKHEQ=)
2: z1U74n3Bwqh9cLzRjWZYerB5n54.roa (hash: Odhjr9FDFuG6FvTw4sLHqZZzcsc3KTFEM336lZkm7Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:3c:a9:98:7c:2f:49:81:1b:f5:fa:f3:30:cb:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Mar 25 23:01:26 2026 GMT
Not After : Mar 26 23:01:26 2026 GMT
Subject: CN=bf53d17ea3a1c6200e1cf08c149acff8d926c38d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:7b:4f:1c:d4:65:99:d9:0f:3d:57:bf:53:53:
91:80:4f:fe:23:17:54:2d:b3:65:e4:ad:49:76:dd:
0c:97:57:df:a2:90:e8:a6:52:8a:d3:63:25:db:9f:
c8:1a:cd:23:f0:7d:bb:5e:7e:48:13:7b:f2:90:89:
5f:dd:8f:0c:2a:ac:5f:06:86:78:2d:0e:31:fe:66:
2f:9d:bc:16:08:2e:c2:89:23:6e:ec:79:ab:77:ce:
fa:07:ec:ca:fb:ac:24:f8:94:50:bc:78:08:bb:c6:
a7:76:67:b6:45:1f:eb:cf:1d:bc:00:1b:17:24:05:
90:e9:d5:77:d1:a4:37:3b:52:69:7c:43:12:fb:2d:
27:72:aa:b0:4c:5d:f2:f7:a8:97:71:b8:06:a3:cd:
97:63:12:ff:7a:2a:3b:80:8c:7b:8f:d6:a5:3a:74:
87:32:9c:60:74:05:61:e3:e8:b5:ad:f5:ec:1b:a3:
61:89:5f:21:b3:da:e1:8a:21:f0:06:4b:21:b8:f8:
50:36:c5:10:32:b9:ea:a3:ec:f4:2c:1c:26:49:8d:
e9:0f:62:cb:8a:16:e3:33:90:aa:60:59:1e:d8:55:
a6:9c:6d:80:21:72:8e:e8:12:45:ff:66:3f:4b:ce:
c3:81:ca:30:4b:55:b6:6f:9f:66:dc:5d:cc:a2:84:
1f:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:53:D1:7E:A3:A1:C6:20:0E:1C:F0:8C:14:9A:CF:F8:D9:26:C3:8D
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:ab:2c:ff:8d:be:e2:fb:f9:45:13:55:e5:d6:0a:96:be:36:
66:71:64:26:be:f9:0d:8f:05:5f:0e:8e:3c:4d:e0:f1:e5:7e:
d1:46:db:1c:2b:4f:7a:53:cf:29:a8:21:b3:7d:c3:4a:f6:a4:
9d:57:78:69:e2:eb:ed:8e:2d:db:e2:61:e9:0e:22:c4:49:73:
9a:15:ac:a0:a9:d8:0a:6b:40:95:1e:26:ef:b0:56:63:6e:9c:
5c:ef:3f:7f:fe:fa:03:1a:03:35:35:03:02:04:43:3f:3b:f2:
de:49:87:3a:c3:12:16:8f:41:6d:a7:c8:98:e5:17:c9:28:6a:
67:f1:f1:49:0d:22:39:fc:90:d6:fe:05:15:e9:57:1b:16:3f:
a4:9c:27:31:b4:7a:5f:5d:e1:4f:bc:b2:22:13:6a:cb:cc:60:
dd:f4:d3:d9:3e:68:5f:c5:88:33:06:df:de:5c:9d:cd:24:95:
ca:9e:84:0a:aa:a8:c7:ad:9f:18:7e:c0:ce:e4:bd:31:0a:2c:
93:79:34:84:0b:71:47:19:d6:30:ca:4f:49:95:46:e5:87:0f:
36:cd:e9:49:1b:0b:16:1d:7b:70:57:b1:e7:f3:9c:79:d3:35:
93:66:d6:09:b5:3b:81:1b:34:e9:cd:cc:5f:96:01:63:39:86:
2d:c2:ed:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:13 2026 by rpki-client