Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: 4Rkp3d8Qrza7p99tYxvnH1UrvFnv6mA+YMulTY9M85E=
Subject key identifier: 53:33:DB:E9:05:C9:0B:2C:E9:7D:74:52:29:81:39:AD:24:1E:C9:76
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019EB6FC513F40DD44A073F2AF45DD850517
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 14:00:49 +0000
Manifest this update: Thu 11 Jun 2026 14:00:49 +0000
Manifest next update: Fri 12 Jun 2026 14:00:49 +0000
Files and hashes: 1: _7FUJXfD4Ngly6FguO7Icv3bnRs.roa (hash: uIw7fcvWe1lM1UlpZ2C4ZV/RLkNGSXf/iL61npEiJKw=)
2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: 8Mhqkseo4JxPIXNSL1+0kAkW42zklXVS+niSSCIQTMY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 14:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:fc:51:3f:40:dd:44:a0:73:f2:af:45:dd:85:05:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Jun 11 14:00:49 2026 GMT
Not After : Jun 12 14:00:49 2026 GMT
Subject: CN=5333dbe905c90b2ce97d7452298139ad241ec976
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:0d:7f:83:39:9f:bc:f3:34:1f:be:b9:89:8c:
2b:6f:cf:b5:f2:06:5e:b6:ff:68:8e:e9:f0:34:58:
4f:3d:f3:96:d7:0e:ad:92:17:64:69:b8:dd:5a:08:
4f:cd:f1:6d:ec:c1:02:37:8d:a2:a8:22:47:f6:4f:
cd:d0:51:57:c8:ac:4d:fc:eb:65:1a:f2:7f:96:33:
f3:d8:54:2f:4f:0a:bf:92:77:f8:50:59:0a:02:97:
53:94:5b:d9:eb:9e:ec:e0:42:a8:6b:0e:32:73:50:
f2:9c:86:9f:b3:27:aa:c9:4e:9e:64:43:6f:47:cc:
01:e8:4c:46:e5:72:cc:74:f4:ff:86:f5:af:0c:32:
f4:4a:4e:c8:e7:28:9c:57:33:76:53:e3:ad:94:18:
d1:ae:6b:69:57:34:bd:e9:a3:c4:f6:4d:75:b0:8d:
e5:17:ee:fa:24:f8:2c:35:48:67:85:b5:08:83:b3:
bd:b1:ab:ab:d8:01:d7:85:36:f1:f9:82:61:30:a0:
28:2e:20:40:fc:9f:6b:53:79:b4:d3:65:f2:a6:b0:
5b:f0:d9:3f:23:5c:19:fe:5a:c9:ed:89:65:02:e5:
a4:a6:38:da:f8:06:f3:2f:71:1c:94:dd:66:8e:86:
2b:11:c4:60:3b:61:cf:81:f1:80:7c:28:c1:16:1c:
10:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:33:DB:E9:05:C9:0B:2C:E9:7D:74:52:29:81:39:AD:24:1E:C9:76
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:ad:b3:75:a9:c6:04:06:dc:18:a0:38:2c:f3:1b:a2:86:6b:
c6:6f:bc:33:b7:83:8c:6b:40:60:18:c8:0a:76:89:02:b6:5a:
15:66:e0:bb:38:8a:a3:32:6b:c9:c7:a7:29:bd:18:64:a5:59:
3d:bf:b3:72:76:cd:bd:c2:f4:76:22:f3:20:2d:59:9e:22:5c:
d6:c0:20:e8:db:64:74:f6:cf:7a:50:a3:65:e0:c5:66:c1:c9:
a1:13:98:34:d5:94:0c:f3:8a:cd:c8:96:d2:2e:7c:c6:09:d0:
a2:bf:92:80:bf:82:0d:cd:55:d7:1e:66:6e:a3:dd:e9:05:9c:
b0:5e:12:dd:21:63:af:a9:28:c1:5f:14:e8:f1:31:2b:66:f4:
a5:c0:e7:60:9f:2f:56:cf:b9:99:8f:07:dc:16:62:70:2e:4e:
67:be:ee:f2:af:93:92:df:fd:b5:93:35:5c:3e:8a:a5:c1:9e:
54:db:23:ba:a4:6d:13:36:d6:04:02:1f:2b:df:bb:0f:09:bc:
b4:19:b1:04:6f:d6:9e:ef:ec:09:69:59:c3:1b:0c:25:7b:e9:
01:e6:af:e9:7f:f0:ab:49:db:96:23:4c:ed:5e:87:e5:e3:36:
e7:88:f6:2b:ea:78:33:2d:ec:eb:3f:35:c0:e2:58:c6:96:f5:
22:9a:59:41
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:57:32 2026 by rpki-client