Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: zXFBRI/F/fDG7xzEqB7ikBWmQHBFYODo1RP9D/htMsE=
Subject key identifier: 6E:16:87:B7:B8:16:C1:4E:A9:18:97:91:C5:1C:6D:B4:9A:ED:F3:2C
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 019D394179C85DC3BEE4A8392922A7FCC447
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 17ED
Signing time: Sun 29 Mar 2026 11:01:25 +0000
Manifest this update: Sun 29 Mar 2026 11:01:25 +0000
Manifest next update: Mon 30 Mar 2026 11:01:25 +0000
Files and hashes: 1: 9hTsswgUXOfKzK86jh8sw9PnVRQ.roa (hash: VUMPgbx8iNcl27+3ad2ddOknvW8bTIH2c1IPAK3gQHk=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: wXriM/p0Ld1hFdNs8ngP34mYwsB618zREladJglxXlo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:79:c8:5d:c3:be:e4:a8:39:29:22:a7:fc:c4:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Mar 29 11:01:25 2026 GMT
Not After : Mar 30 11:01:25 2026 GMT
Subject: CN=6e1687b7b816c14ea9189791c51c6db49aedf32c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f4:29:18:0e:19:5d:ef:f9:29:0c:87:ef:b4:bb:
fb:da:14:fc:da:0f:53:e9:26:9b:42:98:f7:f4:c2:
a3:93:ae:b5:1e:0f:0c:dd:be:4b:85:3f:6c:9d:55:
a8:ff:60:06:1d:0e:37:78:af:a5:29:33:f6:4c:93:
09:f1:2a:da:13:88:90:60:0c:d3:a2:7e:e5:18:52:
7a:b2:14:07:d7:4d:ef:57:e2:a2:83:a9:2f:be:66:
53:e5:db:21:59:40:72:a2:1b:f2:c5:a7:8b:34:bf:
5d:99:3e:91:fe:2d:f1:65:f4:87:64:d4:54:6a:3f:
0c:28:65:40:a2:87:3e:c1:33:ba:d5:85:55:3a:62:
f4:1b:2a:35:61:9f:47:bb:d2:57:10:48:03:3b:31:
f3:fd:15:57:c6:42:46:10:17:84:6e:e8:70:ab:85:
5d:1a:02:1d:55:5e:d9:13:82:3e:11:8f:b2:ba:99:
67:ea:32:cb:71:85:5e:48:94:15:59:33:8b:fb:86:
47:f0:19:00:e5:2b:11:ea:c3:21:fe:d9:2f:60:e6:
ad:c2:10:d4:1b:4b:e9:2e:3f:3a:47:2d:11:09:88:
18:a5:b3:f3:81:db:17:7a:fd:db:9a:e1:0b:9f:9c:
fe:6f:18:04:0e:85:2d:d9:e3:72:18:c5:89:09:8d:
98:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:16:87:B7:B8:16:C1:4E:A9:18:97:91:C5:1C:6D:B4:9A:ED:F3:2C
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:41:10:ab:5c:ac:88:24:ac:ec:1d:73:bf:bc:1f:57:53:a5:
c6:d6:88:47:a2:1e:a4:ca:5b:9d:26:df:8b:ae:d1:c6:37:fd:
93:18:4f:5d:e9:09:53:53:28:09:86:09:3d:9a:23:8c:0c:e7:
4b:3e:6a:c9:ef:c6:4b:88:cf:da:64:6c:24:72:c8:9d:3c:71:
8f:65:f1:d0:dc:74:56:92:c9:db:ba:fa:1f:3b:90:33:35:d8:
f7:d4:93:ab:a3:d0:1a:80:c5:01:d1:e4:4b:ed:45:b2:19:88:
93:81:ce:ea:cc:61:98:1c:11:26:34:bc:1f:42:8f:06:28:ca:
42:71:b9:e0:c3:5c:43:3f:32:a4:2c:2e:f9:31:0c:a7:ab:33:
3e:e5:44:d4:be:60:5c:31:ce:30:55:2e:bb:92:bc:c3:4e:4f:
50:52:e5:d4:8e:55:1d:d6:aa:bf:d7:51:93:00:c4:2a:9c:36:
80:09:12:3c:c5:25:8e:51:eb:be:69:3a:27:93:1c:21:b4:b8:
55:2b:4f:12:43:16:1e:f7:31:4c:c4:96:26:4a:ab:d1:26:42:
6a:19:e2:d6:0b:cd:05:77:88:61:4a:e6:77:aa:a4:f9:17:b3:
98:92:40:03:c9:09:ea:71:de:ec:16:11:de:f4:41:cd:a8:da:
a0:8b:00:fb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:56 2026 by rpki-client