Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
File: sG9AQEkaZW_3Um0vF2EbDWisvQw.mft (raw, json)
Hash identifier: 6sctbn8bUt36CrE1oXzETVOQ8bIn9smMS1qwLTahmcs=
Subject key identifier: D4:EE:9A:7E:8C:E4:85:4C:5A:28:84:B6:CE:DC:2D:68:62:A7:5E:CE
Authority key identifier: B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
Certificate issuer: /CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Certificate serial: 019D394108FD1947053E0008AB2AB1CA6F1A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 11:00:56 +0000
Manifest this update: Sun 29 Mar 2026 11:00:56 +0000
Manifest next update: Mon 30 Mar 2026 11:00:56 +0000
Files and hashes: 1: PP8v4ZF9LqDHcTW_KE_ttdsGemE.roa (hash: WpVmL0psb7bfXQaqzyLO36WcvKirINpjSx0F9NsCq+M=)
2: sG9AQEkaZW_3Um0vF2EbDWisvQw.crl (hash: AvcMU2d7fOKcn/TnyhbJBcKAluPjeqr+fuWXsZH5jT4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:08:fd:19:47:05:3e:00:08:ab:2a:b1:ca:6f:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b06f4040491a656ff7526d2f17611b0d68acbd0c
Validity
Not Before: Mar 29 11:00:56 2026 GMT
Not After : Mar 30 11:00:56 2026 GMT
Subject: CN=d4ee9a7e8ce4854c5a2884b6cedc2d6862a75ece
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:67:98:a4:ee:d6:66:6e:29:55:06:83:08:b3:
fd:12:77:f0:18:8d:e6:ee:6c:3f:92:5f:fa:d4:5e:
ec:66:d7:86:1c:2a:43:b2:00:f5:1d:c1:22:f5:91:
2e:01:61:e4:e4:0f:0a:46:07:50:22:e2:3a:50:37:
12:78:ca:0c:44:6c:7e:3d:e9:57:df:18:af:c8:c5:
99:e7:5a:32:6e:df:f7:a4:fb:26:8b:45:6e:1b:fe:
de:43:b4:de:dc:3d:6e:6a:5d:ef:af:00:8e:2d:3d:
50:8a:3b:f6:d7:9f:b0:7a:f1:5a:6d:85:e7:17:6d:
e6:b3:36:27:db:02:61:12:a0:cc:4e:cf:6e:8d:cb:
39:b8:09:7c:88:47:d6:c0:89:94:a9:c2:25:ed:0e:
f3:cc:ec:80:6c:dc:c8:7a:38:4e:72:dc:10:1f:88:
95:fc:27:44:e8:82:96:39:44:af:b7:a4:0a:b4:05:
59:0a:a9:73:6a:35:41:97:3b:7f:4a:34:d9:86:14:
8a:c4:b9:fe:2d:94:79:b1:18:3e:45:05:ab:df:0d:
7c:a5:6c:60:5d:9c:e8:d4:06:a5:a4:71:95:bf:9c:
04:62:9b:62:bb:9d:e8:43:e4:c4:d3:f1:b4:26:40:
ea:27:7f:af:37:cc:0e:d6:e9:0c:b7:fd:4a:28:0f:
41:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:EE:9A:7E:8C:E4:85:4C:5A:28:84:B6:CE:DC:2D:68:62:A7:5E:CE
X509v3 Authority Key Identifier:
keyid:B0:6F:40:40:49:1A:65:6F:F7:52:6D:2F:17:61:1B:0D:68:AC:BD:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sG9AQEkaZW_3Um0vF2EbDWisvQw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/ce0b21-d65c-42e6-874b-f4cb867f90d8/1/sG9AQEkaZW_3Um0vF2EbDWisvQw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:14:eb:22:80:c4:30:b7:d5:15:09:59:54:5f:98:06:b9:d8:
39:02:de:d2:5a:ee:d7:c2:5b:ad:c7:ce:9e:d9:8b:5c:2a:c8:
af:17:6b:45:e8:d6:d7:ff:01:79:9a:32:ac:83:fc:1e:3d:37:
4f:9d:af:14:bd:82:2f:39:3b:9c:23:6c:ab:5d:18:db:06:fd:
41:88:67:8a:20:fc:59:ac:7a:77:3b:db:a5:fb:55:ae:05:c9:
02:7f:3a:e4:e2:de:62:d6:70:22:ed:18:24:20:0c:86:1c:b9:
4d:2d:96:7a:0d:e3:82:c1:d4:ed:24:d8:1c:00:3e:0c:aa:66:
8d:dd:73:d8:d2:25:47:e0:e5:04:1b:2f:4e:02:41:2e:2b:45:
f0:c0:82:d4:3b:e8:0f:9d:54:41:94:a1:11:ae:f1:8c:fa:98:
55:59:76:d9:33:7d:aa:ef:60:e9:4b:08:2c:81:ae:13:0e:e8:
b6:8f:8d:19:9d:33:a3:4a:f3:ca:ab:e4:48:59:6f:7f:7a:49:
89:f5:93:a1:d8:2e:61:cb:26:d4:ae:e8:22:08:e6:f5:71:15:
75:ae:d8:cc:d3:67:42:71:8b:e1:38:91:35:e6:c4:7f:df:46:
02:90:db:1f:a7:58:d5:b9:b3:a6:ea:16:59:15:2a:15:eb:16:
ab:dc:d5:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:06:37 2026 by rpki-client