Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
File: SgvIUgmAGVIMeOmoC22EyzyrcEI.mft (raw, json)
Hash identifier: 3EVE277W6oqTAlq/9FEuBUBkXveG80Gk8hn5d1D1nMc=
Subject key identifier: 18:D7:61:57:8C:E5:27:A2:70:60:18:21:DE:50:71:35:5F:5E:AF:42
Authority key identifier: 4A:0B:C8:52:09:80:19:52:0C:78:E9:A8:0B:6D:84:CB:3C:AB:70:42
Certificate issuer: /CN=4a0bc852098019520c78e9a80b6d84cb3cab7042
Certificate serial: 019D0C692510067B420CFD9AED7C1A0EA692
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
Manifest number: B0
Signing time: Fri 20 Mar 2026 18:01:50 +0000
Manifest this update: Fri 20 Mar 2026 18:01:50 +0000
Manifest next update: Sat 21 Mar 2026 18:01:50 +0000
Files and hashes: 1: DZUI_bEIrP-yvThfRpjcY2JDgZ8.asa (hash: RghHL1DuN+HQMkw8GbUaQPmzZB8C45TxXFTAWg1Ry2g=)
2: SgvIUgmAGVIMeOmoC22EyzyrcEI.crl (hash: SABRDyX59CPKSuLDouBO/KO1LG4ueslJ+40k/C/p4xU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 21 Mar 2026 17:49:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:0c:69:25:10:06:7b:42:0c:fd:9a:ed:7c:1a:0e:a6:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a0bc852098019520c78e9a80b6d84cb3cab7042
Validity
Not Before: Mar 20 18:01:50 2026 GMT
Not After : Mar 21 18:01:50 2026 GMT
Subject: CN=18d761578ce527a270601821de5071355f5eaf42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:7e:40:e5:45:c9:67:f2:a1:42:ec:28:80:ae:
66:b9:50:ff:5c:02:97:83:87:de:ff:1b:92:b2:ce:
d3:e6:ed:a7:61:34:50:2a:3e:94:90:52:02:40:13:
22:48:36:7c:d3:fb:ee:0f:d5:be:84:f2:b4:f2:15:
35:20:e4:cc:0b:6a:dc:af:c1:9d:01:82:de:3d:45:
9c:26:74:cd:69:89:b8:ca:24:b6:3b:e4:8c:b8:90:
d0:73:50:f9:51:c2:d9:af:8f:92:1c:10:5e:1d:48:
0b:e2:ce:87:30:78:eb:47:eb:f0:05:d0:e1:75:e2:
28:b5:7d:08:16:c9:53:65:81:5a:0a:92:85:28:86:
5a:db:80:36:79:fa:be:7d:62:d6:39:28:b6:ec:09:
9e:6c:13:18:cf:43:10:49:0f:e8:0a:7d:7d:3e:17:
9d:b6:2c:81:f9:f2:e6:9a:c8:61:6a:17:8d:6f:c3:
f2:76:8a:9a:97:91:f1:22:84:59:84:b5:03:36:61:
23:29:85:e7:fb:de:79:62:24:ca:70:9e:d1:09:d9:
fd:c2:4c:f3:67:af:f7:5a:3c:b6:17:dd:13:c7:5f:
4b:c8:ea:8d:9f:e5:f4:30:8f:b6:fa:17:ad:1d:69:
1d:63:02:f5:06:8f:1e:d0:44:cd:e8:9a:07:da:d8:
cf:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:D7:61:57:8C:E5:27:A2:70:60:18:21:DE:50:71:35:5F:5E:AF:42
X509v3 Authority Key Identifier:
keyid:4A:0B:C8:52:09:80:19:52:0C:78:E9:A8:0B:6D:84:CB:3C:AB:70:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:ef:ce:64:c0:f9:d8:26:3d:71:13:ec:f9:a4:71:b4:f4:d9:
c9:de:02:a1:9e:d8:42:da:c4:ee:a8:fb:14:13:f6:a5:d4:13:
55:b9:31:d1:7d:45:00:57:29:08:14:34:0e:67:9c:64:45:98:
e2:cf:a7:e2:84:40:9b:3a:df:bc:fb:4e:c5:95:ad:4c:1e:4e:
76:bf:7a:c9:c0:11:ad:f8:f1:ce:57:cb:fb:01:c4:24:df:ed:
fb:81:7a:f3:63:c2:eb:6a:e4:32:47:b9:04:02:81:a7:f7:a6:
4c:df:84:96:50:a7:91:c0:5a:24:00:fb:74:5a:5d:0e:ab:3b:
a6:e3:1f:6e:e1:58:2d:63:b4:ae:a4:5e:c4:a0:b8:08:c3:07:
9c:3b:f5:eb:02:21:7f:31:ad:e4:10:9e:ef:3f:9a:e3:f9:ba:
e8:2b:77:77:94:a1:8e:de:56:8f:30:c3:6b:c7:5c:0b:66:7c:
0e:6a:5e:40:9c:7f:88:73:08:40:48:71:7f:69:f3:0d:44:8e:
32:0a:4d:27:05:bb:40:f2:39:91:9c:8a:d5:3b:a1:23:b9:2d:
5d:0c:3d:a2:d0:88:03:45:52:b0:6d:82:46:d4:88:74:c5:2b:
1a:42:75:4c:3c:ab:d9:b4:fc:da:6e:9d:b3:a4:0e:2f:0d:f2:
1b:96:81:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 20 21:37:10 2026 by rpki-client