Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: RDoV5l9sy+X5tYySt99jVPD9ZcklmC56lISo1y1x6xc=
Subject key identifier: C0:51:84:22:02:E5:05:3F:70:0E:43:92:C1:09:F0:C1:F2:85:1B:15
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 019E2A70724437D0AA1DE298A735D3F9EB70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 175A
Signing time: Fri 15 May 2026 07:01:12 +0000
Manifest this update: Fri 15 May 2026 07:01:12 +0000
Manifest next update: Sat 16 May 2026 07:01:12 +0000
Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: oyFpxTfp2St5nwJKrggcVvNCZJVHR27qU9c/5xeeJHM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 07:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:70:72:44:37:d0:aa:1d:e2:98:a7:35:d3:f9:eb:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: May 15 07:01:12 2026 GMT
Not After : May 16 07:01:12 2026 GMT
Subject: CN=c051842202e5053f700e4392c109f0c1f2851b15
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:bc:d4:17:99:0b:04:9f:c8:47:cf:53:3f:ce:
ed:46:fe:76:92:d0:23:f9:c6:93:c0:df:96:71:03:
78:f2:a8:81:53:f8:b9:c1:d8:2a:49:8a:96:bc:96:
be:07:cd:2f:35:7c:45:44:0e:ac:a6:77:96:52:c9:
77:6e:80:3e:1c:76:06:d3:bf:2c:6a:23:40:1e:0e:
16:63:8a:1c:fe:4a:b9:f5:76:9d:ab:7b:45:cb:c5:
55:09:0d:20:9a:c6:5a:4a:d1:9c:8b:84:ff:92:1b:
b6:78:fa:35:2c:01:c2:d1:3d:91:5b:af:63:00:be:
2c:52:06:51:91:61:d5:cb:fa:07:3d:04:9c:2b:5b:
b8:18:93:66:6e:7e:12:02:f5:50:ac:4c:10:25:31:
77:a0:cc:7c:94:bf:67:6d:95:b0:a4:f3:95:58:43:
ce:69:41:83:78:e2:7f:ec:70:00:59:9b:a3:4c:67:
54:47:aa:5b:2a:64:68:5a:d7:f4:2a:b2:d0:44:53:
f3:d2:3c:61:8e:76:08:86:ce:50:30:20:35:30:74:
53:7d:a2:84:26:02:60:71:64:6a:03:eb:eb:36:73:
9c:1a:23:57:b0:fe:9a:d1:4d:d1:9d:79:5f:6d:6f:
de:2c:22:19:cb:02:58:5a:7c:78:23:80:2a:c9:1d:
20:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:51:84:22:02:E5:05:3F:70:0E:43:92:C1:09:F0:C1:F2:85:1B:15
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:c4:ca:cd:24:75:ab:ce:24:36:d0:94:91:a2:37:56:34:f0:
b4:4d:09:ba:eb:f5:fc:fb:99:fc:49:e2:ee:1f:1e:72:23:7b:
67:5a:1c:31:4d:00:64:2f:15:ee:cb:32:33:93:3e:ff:b3:11:
54:56:79:f6:fa:21:28:5c:2a:cc:86:96:fe:78:ac:10:0f:ab:
e7:f8:4f:d5:a3:06:ea:e8:b2:69:37:3b:1f:3f:6a:65:6f:83:
df:e5:9b:5f:41:f9:f2:77:ac:9e:4f:c7:a5:69:90:66:70:53:
7e:a7:7a:02:94:02:a8:8d:65:05:ff:7a:d9:30:56:12:25:42:
d7:1b:ea:b1:77:ce:2f:20:f3:6c:a1:28:ce:fb:97:c2:a8:cd:
d5:2b:e9:96:56:5b:d3:4b:84:c2:72:39:e5:82:45:52:51:7c:
06:90:9f:93:4f:d0:a6:68:28:9e:6a:1b:33:b4:f9:1d:c5:1b:
c1:31:f0:15:df:5b:ab:2d:d7:8f:3e:7a:2d:e4:dd:15:e8:b4:
f7:19:c4:04:3f:45:02:14:95:8d:a1:b7:22:8b:a6:40:55:96:
3f:25:ea:8b:3d:a2:9a:ac:76:7b:f1:ab:5a:f2:d6:44:d0:9b:
78:47:af:d0:02:b2:0f:12:ed:c6:45:73:ef:d5:4e:e0:d0:c9:
d7:ac:33:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 14:08:43 2026 by rpki-client