Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: +3ybE0eTZWOU5YPq0ZF1/PUu4EJum0waIXPtOFZIfEs=
Subject key identifier: 63:79:46:4E:AC:3D:98:F3:16:5B:79:96:34:70:1A:E6:15:AE:65:2F
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019D39E5ACF42200EB6DC97E06CE373847B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 03A6
Signing time: Sun 29 Mar 2026 14:00:46 +0000
Manifest this update: Sun 29 Mar 2026 14:00:46 +0000
Manifest next update: Mon 30 Mar 2026 14:00:46 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: jGYW03e1XgGS/MYFnkXKMfvn/gPIoJTmBV+jY5fmvxc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 14:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:e5:ac:f4:22:00:eb:6d:c9:7e:06:ce:37:38:47:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Mar 29 14:00:46 2026 GMT
Not After : Mar 30 14:00:46 2026 GMT
Subject: CN=6379464eac3d98f3165b799634701ae615ae652f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ae:0e:11:51:eb:82:97:49:09:fc:24:00:6f:
ea:1d:06:14:c1:84:04:32:c2:36:b6:5a:6c:89:8a:
26:e9:9d:6a:19:ef:2b:0a:f0:e7:9d:b0:ba:a9:e1:
a4:f9:5f:65:cb:8d:1b:0c:ca:b6:e3:fa:3a:db:d8:
85:37:e3:bd:b1:f1:51:d7:30:c4:ad:04:79:99:d6:
20:15:42:db:22:e1:5e:b7:bb:39:bd:61:7c:72:66:
9a:d7:0c:b8:6a:64:f9:4c:5a:9e:e8:e0:4d:78:3d:
12:1b:34:3c:cf:e6:a5:b0:75:12:2d:b0:f2:43:b4:
f1:89:cf:a0:c4:db:25:90:ec:7e:3f:f9:44:61:3d:
f2:fb:90:9d:e3:5a:2f:ea:3d:4e:1d:98:a1:e9:d1:
0b:de:35:8f:6e:b8:4e:b8:54:7d:61:d9:7f:7f:da:
05:81:5d:c5:82:7c:0b:f5:cf:0c:dd:5a:f1:db:a8:
66:76:56:6c:5d:ae:f4:13:4d:73:b6:9d:70:c8:5e:
b5:39:24:25:e1:01:7c:5f:75:a7:60:f9:7c:c0:43:
69:11:13:4e:a0:51:fd:60:c0:a3:99:1b:95:84:70:
67:ee:79:34:67:d9:01:dc:81:06:79:2f:2f:e5:78:
98:f9:ce:02:7c:79:ff:78:e6:2e:ad:bc:15:17:e8:
4b:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:79:46:4E:AC:3D:98:F3:16:5B:79:96:34:70:1A:E6:15:AE:65:2F
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:3a:15:87:22:ac:79:19:f4:22:dd:9b:2a:69:02:b8:2b:b0:
16:01:f0:22:96:69:f2:11:57:91:a7:8e:3f:4a:37:28:bd:d0:
ff:98:c8:05:80:63:9f:19:0e:82:54:20:15:31:26:72:5c:70:
ed:33:ae:b4:02:f8:0e:6f:ed:e7:c7:f4:0d:56:b1:ac:d8:08:
c0:1a:2d:8d:73:f9:46:a9:be:55:a5:34:36:6b:d7:7a:e6:42:
30:be:27:40:12:5a:8e:8b:91:3d:3f:64:42:75:a4:64:c5:19:
79:42:89:29:6c:44:3e:e2:49:ef:62:0a:72:e7:5b:e3:14:0e:
99:5f:c9:3d:0e:6e:34:4b:7e:2b:6b:9d:96:35:74:44:93:4a:
55:88:14:73:df:e5:5a:c1:dd:a5:34:3f:55:56:71:6e:70:0f:
fe:06:c3:e8:f7:2b:c8:ca:e4:b9:bd:e6:b5:96:4e:ba:38:89:
9b:ea:8a:2b:bc:8f:6e:c4:f4:d0:a7:32:5a:f5:4f:c4:89:1e:
84:0d:17:5d:ae:51:07:f7:a5:59:a0:b9:35:44:27:45:ee:e8:
10:45:0b:93:be:e5:0b:e7:89:6d:5a:a6:bb:f0:86:e5:68:78:
e1:54:d1:68:fa:ac:0b:72:54:aa:63:2f:c5:77:3f:08:8e:a2:
0b:5e:50:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 20:00:19 2026 by rpki-client