Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
File: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft (raw, json)
Hash identifier: vrZTC6W0T+I1Gwq5gkgZgdRXkkAmpr4xSKajWwAzsSg=
Subject key identifier: 62:DA:E3:2C:EC:27:01:C9:57:37:35:F3:73:12:46:FD:1F:1B:62:EA
Authority key identifier: B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
Certificate issuer: /CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Certificate serial: 019DCF081BE7C2F9EFDFC9FFC9A5001AC4CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
Manifest number: 1682
Signing time: Mon 27 Apr 2026 13:01:48 +0000
Manifest this update: Mon 27 Apr 2026 13:01:48 +0000
Manifest next update: Tue 28 Apr 2026 13:01:48 +0000
Files and hashes: 1: X8tdXJvU9JJe77PtcT-JDwBOQi8.roa (hash: tVoeTVft5vKlrmkaWfTVngTflVy/IwyLYYQaNJOX868=)
2: sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl (hash: +zs8xcjdYT3cRRRH7V7SsbszYysit3Dxv+39/mRXT0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 13:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:08:1b:e7:c2:f9:ef:df:c9:ff:c9:a5:00:1a:c4:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b312db95dfc3b31395e0ecb5ff26212d798de834
Validity
Not Before: Apr 27 13:01:48 2026 GMT
Not After : Apr 28 13:01:48 2026 GMT
Subject: CN=62dae32cec2701c9573735f3731246fd1f1b62ea
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8c:04:97:20:ae:fe:ed:c7:49:77:cb:f5:b0:
85:2d:c0:e1:27:82:2f:a2:3a:d7:36:3b:60:93:a0:
66:59:92:8b:8c:7b:25:2b:78:4f:d4:77:db:f0:17:
58:9c:6e:37:5a:55:ab:66:e8:21:4d:ec:bc:26:e6:
df:43:0e:bc:2e:b4:7c:61:2d:c6:15:e7:2c:f6:d8:
17:1f:3d:67:87:a5:25:fd:41:f9:89:79:a7:ea:ac:
46:ea:de:01:2e:8e:cc:f0:a6:f4:da:e2:d2:0d:cb:
45:71:47:08:1f:03:76:b4:34:de:29:21:24:b0:75:
52:9e:32:6d:3b:98:7e:24:d5:48:4f:d3:11:9b:5c:
19:1a:3e:c2:71:24:0b:f8:6f:d1:27:5c:75:0e:5b:
34:a6:47:9f:42:1c:59:db:1d:09:ef:e4:3b:0d:c2:
1e:e6:96:95:ea:08:18:38:12:1f:4d:da:a7:d6:34:
8c:62:50:22:4d:bd:a1:58:e3:05:12:8d:e8:c7:b2:
36:af:18:6b:59:a2:7a:6b:0e:ae:82:ba:26:74:2e:
04:52:ad:d8:c8:dc:b3:61:3f:a3:af:18:2c:e5:d2:
62:fe:1d:1d:3d:a7:9b:14:cf:09:5b:ba:9e:1e:e7:
cf:97:ca:8b:45:33:77:2b:44:f3:72:f2:e5:21:49:
ce:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:DA:E3:2C:EC:27:01:C9:57:37:35:F3:73:12:46:FD:1F:1B:62:EA
X509v3 Authority Key Identifier:
keyid:B3:12:DB:95:DF:C3:B3:13:95:E0:EC:B5:FF:26:21:2D:79:8D:E8:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/cbc50e-faef-43ec-bdba-fda470c61e09/1/sxLbld_DsxOV4Oy1_yYhLXmN6DQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:39:97:13:04:99:bb:b8:0b:77:6f:07:db:c0:68:f7:aa:3b:
93:68:02:be:df:9c:58:22:e4:13:3e:ef:4e:98:70:95:c5:44:
c4:40:35:ea:4f:dc:5b:e1:07:80:12:54:82:d6:62:a0:76:73:
fd:d4:3f:35:5a:2e:53:89:0c:e0:7f:b5:e9:b8:26:33:f8:e1:
ae:e6:23:d5:61:84:f4:d7:1f:ac:f4:18:f0:5d:39:57:be:fd:
16:27:a1:f0:ca:8d:9d:3c:5c:47:b4:02:fd:20:ab:6b:d9:61:
e8:e8:3e:8f:2f:86:22:5c:c1:06:70:f7:b4:8e:b0:aa:16:b4:
9c:5d:7c:c1:bb:f7:74:2a:11:8d:cc:fc:a9:e6:ae:6c:9c:e5:
a8:98:9a:c6:6e:5a:1a:5d:f9:9b:3f:eb:c6:63:e7:03:57:33:
24:71:be:3d:79:69:b6:d4:19:ad:5b:8a:57:9a:3f:1c:60:9e:
90:2e:a1:46:5e:b6:fb:2c:6e:24:10:3b:f6:2f:88:d7:f8:2d:
4a:26:6c:75:2c:4f:6b:c2:52:da:56:4c:ea:44:35:55:4d:b4:
19:be:8c:7b:b4:9e:a7:0b:85:ba:74:ea:65:37:d8:65:b8:ec:
ce:54:71:12:33:df:60:7e:80:99:7d:92:7e:9f:90:66:3d:07:
f7:38:5d:e8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 19:05:44 2026 by rpki-client