Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/735756-8857-424d-9524-20f531122b57/1/SdA41NOnW7-ev-owZGh7Xjs0b-M.mft
File: SdA41NOnW7-ev-owZGh7Xjs0b-M.mft (raw, json)
Hash identifier: dO5mnS6tR62OudYSPM05q5RFvw2kXpPluCG8GHj1Jao=
Subject key identifier: 7A:08:3D:C3:01:03:55:2C:69:27:64:25:F3:C4:52:03:51:47:7E:7B
Authority key identifier: 49:D0:38:D4:D3:A7:5B:BF:9E:BF:EA:30:64:68:7B:5E:3B:34:6F:E3
Certificate issuer: /CN=49d038d4d3a75bbf9ebfea3064687b5e3b346fe3
Certificate serial: 019D38655ABE5919D97C7224D7466CB32DD8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdA41NOnW7-ev-owZGh7Xjs0b-M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/735756-8857-424d-9524-20f531122b57/1/SdA41NOnW7-ev-owZGh7Xjs0b-M.mft
Manifest number: 0EB0
Signing time: Sun 29 Mar 2026 07:00:59 +0000
Manifest this update: Sun 29 Mar 2026 07:00:59 +0000
Manifest next update: Mon 30 Mar 2026 07:00:59 +0000
Files and hashes: 1: SdA41NOnW7-ev-owZGh7Xjs0b-M.crl (hash: iXyLIkceIbjADiHKTRvms7Fz8Vj0qaItMZ+qdwESNxI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/735756-8857-424d-9524-20f531122b57/1/SdA41NOnW7-ev-owZGh7Xjs0b-M.crl
rsync://rpki.ripe.net/repository/DEFAULT/88/735756-8857-424d-9524-20f531122b57/1/SdA41NOnW7-ev-owZGh7Xjs0b-M.mft
rsync://rpki.ripe.net/repository/DEFAULT/SdA41NOnW7-ev-owZGh7Xjs0b-M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:65:5a:be:59:19:d9:7c:72:24:d7:46:6c:b3:2d:d8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d038d4d3a75bbf9ebfea3064687b5e3b346fe3
Validity
Not Before: Mar 29 07:00:59 2026 GMT
Not After : Mar 30 07:00:59 2026 GMT
Subject: CN=7a083dc30103552c69276425f3c4520351477e7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:14:75:1d:31:1d:13:10:8a:47:69:9a:9f:46:
37:55:81:6e:45:65:a1:6a:b9:f1:12:95:34:c1:22:
60:c4:44:11:f4:76:4c:6a:c1:25:f3:80:ed:1b:fc:
04:2c:2d:25:e1:9f:c1:45:a1:f1:bd:73:65:d6:6b:
b5:a2:f4:d0:bc:a4:fe:af:ef:95:b9:69:ca:e9:f3:
1c:bc:92:05:94:ac:17:f4:fc:d6:6c:65:fd:4a:cb:
f7:e8:ef:05:fe:cd:f6:1d:a4:70:3d:b6:0e:95:db:
2e:f6:5c:ac:d3:59:28:97:90:11:79:d8:46:db:e5:
96:93:68:30:19:1d:59:d0:9f:ed:90:0a:25:cd:01:
8b:bf:34:35:bb:f9:ec:9c:01:02:46:07:ef:88:b9:
e0:ed:a9:d8:94:78:1d:92:a6:51:ad:21:6e:b3:be:
72:7b:d6:e7:4d:f8:c3:0a:51:15:58:ea:bf:78:e7:
be:0c:40:f7:ba:04:2c:23:3e:e6:35:ba:3d:cc:fc:
d0:2d:83:57:af:8c:5c:e9:ad:3b:23:5f:ae:f1:c1:
5b:d2:4c:d4:19:07:5f:25:32:e9:21:aa:3a:01:dc:
e7:08:40:e1:22:5e:a8:b2:6f:c9:ef:b4:dc:f5:97:
58:ab:5f:82:57:6b:d4:91:b6:46:dd:71:11:6d:50:
48:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:08:3D:C3:01:03:55:2C:69:27:64:25:F3:C4:52:03:51:47:7E:7B
X509v3 Authority Key Identifier:
keyid:49:D0:38:D4:D3:A7:5B:BF:9E:BF:EA:30:64:68:7B:5E:3B:34:6F:E3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdA41NOnW7-ev-owZGh7Xjs0b-M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/735756-8857-424d-9524-20f531122b57/1/SdA41NOnW7-ev-owZGh7Xjs0b-M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/88/735756-8857-424d-9524-20f531122b57/1/SdA41NOnW7-ev-owZGh7Xjs0b-M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
45:89:75:e6:ec:ed:63:cb:1b:b3:96:53:a6:04:c8:2c:f8:57:
22:0b:84:af:fc:6c:71:8a:df:bc:15:00:fd:59:ae:b7:b3:98:
8d:8e:1a:d4:80:e9:2d:84:90:bc:54:b0:9d:19:76:80:33:dc:
7c:46:cb:d9:5c:99:ed:2f:9a:5e:47:42:dc:fa:31:ad:f5:4b:
97:82:37:52:45:7d:29:21:e2:c4:c6:0e:b5:ec:15:4d:4d:56:
d8:47:54:22:66:6b:b6:16:9d:92:38:cc:a3:d1:09:68:45:e8:
cd:6b:51:85:d2:e9:b9:5d:8c:f2:54:a1:53:f2:be:55:95:4f:
ee:1b:1d:d6:c8:ee:70:ba:ea:0b:48:69:f4:ec:27:38:ec:cc:
ad:3e:46:36:99:6f:00:db:60:dc:31:f5:0e:45:53:7a:e8:fd:
09:28:10:1b:f3:a1:d0:a1:e7:5c:6d:35:ae:eb:88:13:9c:51:
ee:9d:c1:e2:34:83:1c:d7:20:58:9d:06:5b:f4:9a:39:84:0a:
25:92:b5:66:e5:c1:79:30:1d:3a:8c:2c:77:db:7a:26:b9:78:
d0:b2:4d:47:12:f2:6d:a8:e6:e5:36:9c:fe:16:98:45:a5:9f:
90:48:61:91:da:71:e9:4c:0b:99:e7:85:61:de:8c:3b:cb:c4:
eb:95:d3:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:47:06 2026 by rpki-client