Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
File: SgvIUgmAGVIMeOmoC22EyzyrcEI.mft (raw, json)
Hash identifier: s1/44UbhmnBPYPqCMNXnyi1CyPK/MQX3WpJUDI6FNTk=
Subject key identifier: A5:05:3A:60:05:79:D4:C9:15:99:67:AE:0B:60:D2:A4:44:F8:05:12
Authority key identifier: 4A:0B:C8:52:09:80:19:52:0C:78:E9:A8:0B:6D:84:CB:3C:AB:70:42
Certificate issuer: /CN=4a0bc852098019520c78e9a80b6d84cb3cab7042
Certificate serial: 019F11F78A32319B269221729B499C8EC91F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
Manifest number: 01BC
Signing time: Mon 29 Jun 2026 06:01:03 +0000
Manifest this update: Mon 29 Jun 2026 06:01:03 +0000
Manifest next update: Tue 30 Jun 2026 06:01:03 +0000
Files and hashes: 1: DZUI_bEIrP-yvThfRpjcY2JDgZ8.asa (hash: RghHL1DuN+HQMkw8GbUaQPmzZB8C45TxXFTAWg1Ry2g=)
2: SgvIUgmAGVIMeOmoC22EyzyrcEI.crl (hash: hoClFnF8174XYjuf4cpQ0Ad7rEmCqLbgFSFiioAB63s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f7:8a:32:31:9b:26:92:21:72:9b:49:9c:8e:c9:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a0bc852098019520c78e9a80b6d84cb3cab7042
Validity
Not Before: Jun 29 06:01:03 2026 GMT
Not After : Jun 30 06:01:03 2026 GMT
Subject: CN=a5053a600579d4c9159967ae0b60d2a444f80512
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:9d:02:fa:fe:b4:2a:7c:8a:bb:8b:45:42:b3:
08:ce:48:0a:4e:b5:1a:6c:f1:ff:cd:08:19:b5:c3:
16:9a:89:6f:d5:60:7a:c5:46:c3:f7:ca:c2:2a:3c:
ec:08:20:0e:32:77:2e:97:b6:86:79:1e:8e:0f:ad:
d3:4e:8e:7d:2c:37:a8:fb:4a:a6:17:b0:35:51:09:
f0:09:5a:9a:b9:8f:48:a3:53:7b:d7:41:35:17:f7:
8c:55:9a:de:c1:d0:3e:d6:dd:43:40:18:5f:f6:8a:
3b:76:f9:cb:a9:91:2c:53:9c:17:3b:de:e2:5f:8e:
23:ee:8d:a0:03:24:ff:8a:c1:8c:81:cf:6a:7e:da:
45:a0:3b:28:e8:b1:48:43:12:68:20:9d:37:a4:47:
bd:33:2e:c0:2e:1f:91:3f:09:05:a1:e8:3f:43:76:
bb:75:ac:19:aa:f5:7e:43:75:9c:3c:1c:9b:0a:3e:
1c:25:e3:ef:1e:70:09:0d:2a:1e:c0:6a:14:08:a7:
f8:1e:26:3d:22:38:f0:19:5b:af:90:2b:4c:4f:60:
94:51:ef:c1:9c:ce:3d:d9:aa:c9:99:d9:48:e8:61:
ae:16:ad:72:6f:11:7a:99:70:7e:49:42:83:35:d7:
02:c4:03:d8:fa:df:ac:e0:43:12:07:c1:1a:ae:f8:
a9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:05:3A:60:05:79:D4:C9:15:99:67:AE:0B:60:D2:A4:44:F8:05:12
X509v3 Authority Key Identifier:
keyid:4A:0B:C8:52:09:80:19:52:0C:78:E9:A8:0B:6D:84:CB:3C:AB:70:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
90:79:d0:a2:e6:b7:16:d4:f4:54:ce:d3:d1:1c:8b:5b:f6:f3:
72:4d:0e:ce:fb:1d:76:62:74:b0:5d:b9:93:f9:7a:cf:da:9a:
86:45:63:8f:39:89:c2:bb:2a:ba:00:a4:a7:bb:7f:5c:1d:68:
af:5e:63:a9:58:4a:96:58:25:ad:d7:c1:f1:31:dc:b4:37:9c:
20:82:40:f5:5c:7c:85:7d:12:1b:08:30:8a:8e:51:a7:8e:cd:
06:b0:85:11:dc:5a:e3:29:c6:6e:14:43:d8:4a:d5:86:33:cd:
31:e6:d9:70:d8:8e:59:e8:56:35:ed:45:a2:30:4e:81:40:c6:
a6:e6:03:ed:72:51:78:f3:d2:da:17:e6:42:6a:b5:bc:22:e7:
d9:e3:22:70:86:68:dd:44:17:1a:8a:99:7f:88:78:e3:1d:b0:
74:a8:4c:b6:78:61:5c:8d:ea:85:ca:84:21:aa:75:9a:ed:13:
7a:91:b7:90:f2:4d:ed:9a:24:e1:1e:65:94:e4:96:4e:11:90:
d6:ef:90:a5:8d:9a:20:9b:8f:3f:d8:67:a9:e0:2b:21:a0:8b:
cb:89:d2:83:30:83:8b:34:a8:0c:de:be:81:cb:a8:ff:63:60:
0e:99:1e:a1:da:52:8f:5d:19:29:60:bb:cf:ba:1c:1d:80:22:
71:88:ac:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:38:04 2026 by rpki-client