Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: TYf+8lQpYhOfQKTHoXeVt8lJ51YquFEf/XTHPNcH2zc=
Subject key identifier: 12:6C:A9:8F:C9:D9:B0:E1:F0:0E:4F:11:B0:77:DE:09:39:FA:9E:F2
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019EE88E2D683AE1C624480B631E7C0F9C70
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 0485
Signing time: Sun 21 Jun 2026 05:01:32 +0000
Manifest this update: Sun 21 Jun 2026 05:01:32 +0000
Manifest next update: Mon 22 Jun 2026 05:01:32 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: soBgRooWL5VoWrMbfW15mYOSJ5IAh9aWZiq8609+M3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 02:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:e8:8e:2d:68:3a:e1:c6:24:48:0b:63:1e:7c:0f:9c:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Jun 21 05:01:32 2026 GMT
Not After : Jun 22 05:01:32 2026 GMT
Subject: CN=126ca98fc9d9b0e1f00e4f11b077de0939fa9ef2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4a:64:fd:83:fd:62:9c:05:a3:ef:38:1c:aa:
68:79:a6:87:52:d5:8e:e6:f6:70:96:83:9b:d3:85:
de:85:22:d3:f6:de:5d:dd:80:3d:c9:6e:b5:15:3f:
7b:10:cb:b7:2d:df:23:16:5d:da:fa:5e:4a:38:21:
52:40:8a:f0:2d:da:71:28:dc:ec:ba:37:2f:87:4f:
5a:b7:93:cf:b8:aa:8a:0a:1c:59:09:27:bb:8f:43:
da:33:6f:15:9a:fb:86:6e:19:a6:e6:38:7d:92:2c:
79:74:a3:0a:eb:1f:06:5a:18:72:8f:f7:8c:15:33:
f1:20:93:7f:08:f8:48:62:78:b2:ec:2f:0a:70:30:
4f:ae:2f:97:55:9a:d9:b9:db:1b:88:e9:65:7a:fb:
6f:2c:02:89:2a:95:48:c0:79:6a:47:36:36:87:cc:
11:c6:b1:bc:c3:53:0c:85:af:0b:4b:89:85:91:49:
06:2b:22:0f:ba:fd:d4:a5:fd:db:b7:58:e7:ae:f7:
fd:64:ac:46:12:b6:13:cf:72:fc:0f:f5:fb:2b:67:
18:de:65:c5:67:ac:55:e2:99:ca:58:bc:fb:13:db:
7d:4a:ab:15:17:a1:e6:49:d9:54:71:9e:65:4a:67:
d4:57:e6:f3:c5:1f:0a:da:32:30:e0:ee:82:4c:5c:
da:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
12:6C:A9:8F:C9:D9:B0:E1:F0:0E:4F:11:B0:77:DE:09:39:FA:9E:F2
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:b2:65:e1:93:83:32:52:32:c5:57:09:78:fa:ae:cd:53:e3:
50:9b:0e:9a:0c:c4:52:4a:bf:5c:22:c3:8c:5f:12:a3:cf:01:
7f:52:b7:39:fd:ac:a2:0e:67:3b:cc:0c:6b:27:30:b7:e6:6d:
1e:bf:2f:f0:4c:0a:51:82:68:d3:99:59:47:4a:41:37:8a:d0:
ab:db:74:2c:e6:54:d0:6a:80:30:e9:d5:cf:68:85:88:e5:7d:
2b:75:bf:42:54:f7:0c:11:c5:4a:fe:19:b4:c0:ec:45:f8:d5:
f1:a4:fd:c6:f8:85:a1:a1:f8:db:e7:fa:cb:58:ea:36:04:d1:
d3:4c:fd:25:7c:65:2d:2a:79:f2:2e:6f:51:d3:d3:37:71:67:
da:78:34:9b:8a:35:09:04:a5:91:b1:98:93:5b:6d:be:ff:37:
7f:b9:33:af:61:79:43:27:26:41:75:85:ba:e7:0c:29:55:08:
35:0a:b6:c0:81:ec:53:0d:26:d5:65:b0:0e:2d:68:c7:33:d6:
40:16:e8:de:c7:2e:a1:76:a3:d5:6a:60:da:e0:28:96:8d:af:
6d:61:f0:98:d1:c7:7f:a2:1b:cc:0d:bf:2d:31:e8:a0:18:63:
f4:9b:0b:aa:ad:19:1f:24:cf:2b:0a:e2:49:9d:13:4e:9a:49:
76:64:47:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 21 12:19:54 2026 by rpki-client