Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: /q3xVJkpzqfIzSBeuWD3xi07r3Ny8S+r/Etai0Qd0/c=
Subject key identifier: 97:0D:10:4F:C0:54:30:BB:70:B3:30:AF:F2:90:5D:9E:13:42:A9:FF
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 019F141C727EDEEF33349829F856C5A74F2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 17D3
Signing time: Mon 29 Jun 2026 16:00:36 +0000
Manifest this update: Mon 29 Jun 2026 16:00:36 +0000
Manifest next update: Tue 30 Jun 2026 16:00:36 +0000
Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: q0MY9Fpz6ZcPjgR8/GPeoXfvGC2NRIKo8tnyRj6dujk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:12:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:14:1c:72:7e:de:ef:33:34:98:29:f8:56:c5:a7:4f:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Jun 29 16:00:36 2026 GMT
Not After : Jun 30 16:00:36 2026 GMT
Subject: CN=970d104fc05430bb70b330aff2905d9e1342a9ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:da:22:91:a1:cf:d3:16:19:b3:9a:87:f2:18:
a1:8a:f0:be:bf:0f:b5:b2:31:40:a6:79:50:a4:2b:
18:fb:8c:dc:04:6f:ed:ec:c9:32:02:8b:5b:23:98:
96:4f:9a:75:2e:0a:7f:d1:4f:f3:48:8f:17:40:ad:
e7:ce:7b:29:48:f4:fa:5a:60:d3:31:33:11:80:81:
4d:2e:3e:2a:c3:db:7a:b0:8d:51:30:a0:7f:31:4c:
4f:41:c9:75:56:72:95:d5:ed:11:43:26:aa:23:aa:
13:d3:d7:26:f1:f3:7f:c8:81:4e:0b:a1:11:2a:db:
f1:7a:32:e0:cb:34:4f:7a:18:0a:74:e3:f4:53:8b:
da:c5:e0:7c:d2:2d:44:a9:b4:33:66:72:69:29:e7:
22:da:b6:73:19:cb:1f:4a:4d:4a:fd:1a:f6:0c:4a:
ed:ad:72:06:bc:9d:46:45:f1:d0:6b:70:41:73:fb:
05:b6:07:7c:51:1b:0e:48:ab:46:2e:6c:cc:71:fa:
ec:6e:9e:09:c6:16:ed:00:7f:d9:64:0f:5a:ac:32:
9d:b7:0b:6c:aa:b4:fe:90:6f:2c:02:dd:9e:32:1b:
e4:17:e9:5b:a3:0f:03:15:b0:0b:77:f8:6a:d8:2a:
0d:a2:71:ab:b7:4a:1a:2f:be:bf:d6:72:77:66:c2:
2a:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:0D:10:4F:C0:54:30:BB:70:B3:30:AF:F2:90:5D:9E:13:42:A9:FF
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:0e:de:bc:46:f9:8d:20:8d:ab:b2:77:54:cc:7c:37:32:92:
32:4b:fa:fe:5f:d5:60:ce:6c:12:b4:a6:33:38:c6:db:2b:22:
ab:36:3f:f6:1b:68:87:c0:23:fb:1a:79:0c:ed:f6:0f:9f:c9:
d2:65:c6:7e:13:0e:f7:4c:e2:82:38:1f:e5:41:0e:02:93:8d:
6f:b6:39:2c:d8:b5:5f:58:58:17:d4:f9:a4:f1:2b:16:23:5d:
e4:b1:94:54:02:84:bd:2c:58:18:71:8d:73:1f:9c:9a:60:e6:
9c:2f:1a:4e:d6:f3:3d:a7:3d:95:b3:fd:75:4c:14:05:b6:55:
e9:00:06:f9:5e:cb:c2:25:cd:b6:c5:7f:0d:23:29:b4:13:00:
63:c4:ed:c4:a2:f0:30:ba:e7:ea:b0:24:e3:9c:a6:47:b5:a3:
16:fc:e1:48:02:11:50:0d:bc:20:50:38:76:82:3f:57:14:27:
e0:2c:86:4e:b5:56:b8:fd:4b:f9:f4:f3:b2:c0:2a:ca:a4:1e:
a6:da:65:77:f4:f4:74:a0:b8:fb:42:5c:1f:90:f6:3f:ac:f1:
80:e9:68:a4:7f:fa:83:69:d3:93:04:a6:44:a4:40:01:68:9c:
f4:b1:38:b2:3c:a4:c3:7e:0b:94:cd:b3:5a:bf:24:35:32:df:
82:1f:22:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 20:44:27 2026 by rpki-client