Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
File: SiHJG2O7vaiASnSfPWEOiyF_m3M.mft (raw, json)
Hash identifier: SS60kScdb63qBTqnSk25Yy28c5oY+POD3scMwBORFmA=
Subject key identifier: 49:EB:6C:4E:86:23:00:91:92:46:6D:CD:3A:06:59:22:A6:1F:C9:4E
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 019D3752256FE99BE2E6EB604F496F3B33BD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
Manifest number: 148D
Signing time: Sun 29 Mar 2026 02:00:23 +0000
Manifest this update: Sun 29 Mar 2026 02:00:23 +0000
Manifest next update: Mon 30 Mar 2026 02:00:23 +0000
Files and hashes: 1: GARLhjoCY1mEifSMgHt3b3BOaHE.roa (hash: 1d3/nrn41VkXwlPSthRsl6eFjVEWud4PfGpAlTVZnhg=)
2: SiHJG2O7vaiASnSfPWEOiyF_m3M.crl (hash: +0ZsC+KcKkMqhRTTwXwbxsKafb8wNXWqU3DLOHiC+qo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:25:6f:e9:9b:e2:e6:eb:60:4f:49:6f:3b:33:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Mar 29 02:00:23 2026 GMT
Not After : Mar 30 02:00:23 2026 GMT
Subject: CN=49eb6c4e8623009192466dcd3a065922a61fc94e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:57:bc:9b:1a:60:cb:7c:1b:a1:0d:78:fe:12:
28:f6:c9:c5:2e:3c:a6:d0:ef:bf:5d:8a:a1:6b:14:
3e:cf:41:eb:f2:71:83:d4:b9:5b:99:db:c9:3f:87:
f5:96:20:f9:ea:8c:5f:1d:c0:de:4e:ff:7b:d1:c4:
5e:9c:6b:34:e6:c7:9d:75:b1:5a:f5:9a:6a:b1:60:
6b:89:38:b1:66:1a:c4:57:fa:c6:fc:4f:9e:5e:db:
91:1a:14:10:2c:ad:a1:6e:a4:21:09:0a:f4:ef:fc:
ea:ed:10:39:28:b4:fa:9e:a4:ce:c1:17:1d:ff:ff:
b2:a8:06:83:ba:43:2d:42:a7:b4:ef:53:39:73:2d:
61:bf:1a:83:4c:23:92:f6:99:6e:8e:02:cc:5c:8a:
0a:c9:51:45:b8:50:d9:08:52:90:9a:bb:1e:3c:4c:
92:b6:f5:18:60:0a:09:f8:62:bd:b8:80:32:41:03:
42:1f:41:e9:0d:ba:e5:61:89:d3:a4:97:df:87:e4:
7f:60:33:93:7c:15:95:a6:79:47:42:b6:e9:ab:cd:
53:9f:6a:b3:5f:4a:50:ec:f1:f4:ec:49:1c:70:ae:
b4:4a:5a:7c:95:d5:11:a4:66:d2:a2:d2:93:a3:cd:
b8:ce:ce:14:5e:55:1f:3f:ce:b8:dd:03:ab:42:bf:
cc:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:EB:6C:4E:86:23:00:91:92:46:6D:CD:3A:06:59:22:A6:1F:C9:4E
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:6b:65:0c:12:37:11:ee:d4:aa:46:e6:54:3a:9e:dd:a7:ff:
80:5b:10:4f:63:3a:79:5a:af:79:54:18:1d:99:69:f0:4a:7f:
e9:de:28:2f:65:40:4c:e7:3b:9a:08:36:f1:83:8b:13:20:e4:
05:54:ae:0e:43:7e:e6:86:ee:58:95:75:f1:4f:9f:9e:1d:38:
d2:4a:ea:47:21:ec:10:e3:10:33:2b:8e:e5:9d:13:19:96:f7:
61:38:ad:0d:b2:ea:f8:40:b5:02:aa:f5:d9:b1:62:66:ca:b5:
1a:c4:c4:49:9a:1f:4c:ff:f0:db:06:4c:f9:60:7d:6b:e6:7f:
b0:47:3c:e8:b1:ba:32:dc:26:b3:13:31:76:b4:49:37:ce:de:
17:0f:6b:23:c5:ca:4a:94:96:db:b0:5b:74:1e:79:18:fb:c2:
c9:db:d5:05:e8:35:d1:c3:87:89:8e:f3:16:a7:9a:af:80:15:
b0:99:fb:fd:5f:a6:21:2c:d0:ce:5c:7e:0c:c4:62:68:21:30:
bb:17:8e:f9:ed:82:fc:3b:3a:f8:9d:91:90:5d:1c:ef:17:f8:
f8:39:4f:c2:13:e0:d2:a3:ab:35:44:e3:bc:08:f4:dc:86:1b:
8f:7b:c2:f3:4a:45:f5:62:f6:ec:7b:83:b8:dd:03:f9:94:88:
5b:67:3a:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:18 2026 by rpki-client