Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
File: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft (raw, json)
Hash identifier: cMG7Ah759cVuR7Jhlnz+YfWnfBtD3PLX5IiDA4fRIsc=
Subject key identifier: 55:68:F4:B5:30:A6:5E:09:78:68:F0:2F:04:17:18:3F:64:AA:B9:4A
Authority key identifier: 4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
Certificate issuer: /CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Certificate serial: 019D390A0EF817901CD60ABAEDB14B3CA4EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
Manifest number: 16DD
Signing time: Sun 29 Mar 2026 10:00:53 +0000
Manifest this update: Sun 29 Mar 2026 10:00:53 +0000
Manifest next update: Mon 30 Mar 2026 10:00:53 +0000
Files and hashes: 1: Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl (hash: 76Ulbj9+xf03/MEGBk5/UNNIrUWka5yPQDEZOqec5fQ=)
2: Yj8wjFZpgFB7N8QVvr8_EZtHm74.roa (hash: VttLajARZj1VpP60iZ08cMDJLdMSXXWBBP02KPI/yEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:0e:f8:17:90:1c:d6:0a:ba:ed:b1:4b:3c:a4:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a3c360c364bb66dc63517193568f5ba8517ace8
Validity
Not Before: Mar 29 10:00:53 2026 GMT
Not After : Mar 30 10:00:53 2026 GMT
Subject: CN=5568f4b530a65e097868f02f0417183f64aab94a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:71:1d:ae:fc:7a:43:d1:59:6b:13:2d:23:56:
57:6a:14:01:f8:fc:85:1d:84:18:a8:c7:da:d3:45:
24:38:ae:5b:f1:f6:4d:81:31:9e:09:df:b3:a7:cc:
f6:7c:3d:dd:d0:21:0c:45:0c:aa:84:dd:27:bb:42:
3b:e8:10:98:da:7b:a3:78:03:90:14:2a:06:5d:6e:
e9:74:ed:26:30:46:66:b3:c3:b6:70:7d:8a:26:6e:
6f:81:26:2b:b6:ae:4f:e6:6a:ec:da:09:12:bc:27:
dc:76:7e:90:07:06:43:a5:a9:6b:b3:c7:81:be:b0:
fd:ee:dd:c1:30:ff:37:17:15:53:76:f1:f1:0b:0b:
ca:98:c3:6c:00:55:75:bf:60:9e:b0:43:5e:9b:c5:
99:3f:cd:5a:91:ba:c5:7d:1e:3d:a2:b9:ec:c8:bd:
bd:86:62:32:61:a3:52:4c:99:11:d9:8d:46:ac:31:
e4:45:31:8b:87:21:d5:7b:82:b1:26:de:b0:c2:17:
3b:69:d0:f3:e8:3d:f4:55:fe:35:ca:be:bc:94:fc:
79:9e:c3:d8:72:45:b4:fa:74:4e:6f:3c:b0:5c:d9:
10:7e:37:42:6c:6b:cc:99:8b:85:63:d6:48:00:08:
22:b6:91:ce:54:39:9f:1f:31:0a:05:e8:65:45:af:
3d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:68:F4:B5:30:A6:5E:09:78:68:F0:2F:04:17:18:3F:64:AA:B9:4A
X509v3 Authority Key Identifier:
keyid:4A:3C:36:0C:36:4B:B6:6D:C6:35:17:19:35:68:F5:BA:85:17:AC:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/8ad4e5-d9c9-43e7-be0f-1d9c86416e9b/1/Sjw2DDZLtm3GNRcZNWj1uoUXrOg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:04:29:56:3f:37:a9:a5:87:0e:1d:d8:b8:6f:a3:a9:9e:60:
00:84:6b:77:18:7b:8a:66:be:7e:6d:cd:85:c8:ec:f1:f1:0a:
12:f1:b3:37:e2:f7:6b:55:a4:7a:4a:7f:b4:02:ac:6d:10:b5:
bf:57:d0:91:38:e4:88:c3:50:f2:f3:1e:01:89:c6:86:48:81:
b8:48:f1:81:02:0b:98:5d:c9:a2:23:53:ac:9f:2d:2c:98:0a:
ed:cc:56:a1:ff:93:a3:3a:71:49:16:56:8c:22:a2:5d:0e:6a:
58:20:b6:19:64:6c:f2:03:1a:38:39:3d:13:a8:3d:7c:80:83:
f6:1b:32:06:5a:58:e2:5c:c7:73:9f:2d:09:c6:cd:59:6a:0b:
f5:b7:5c:9f:44:64:9d:ff:a2:95:9e:18:ac:5f:50:9f:bd:06:
e7:29:66:04:78:b4:d0:ca:3b:f0:73:89:8a:22:4d:d0:f1:22:
e3:97:62:37:c1:5b:b8:d4:0f:bb:5d:dc:92:d4:e9:f0:1e:d8:
e8:29:34:26:ca:43:b1:28:73:8a:61:94:c3:f9:06:e2:f1:39:
fa:61:ed:a2:67:38:35:3b:20:81:f1:59:c4:65:b4:8b:e9:48:
c6:62:2d:3c:95:74:83:68:c9:e9:a7:6e:8b:65:04:19:97:0d:
1c:c5:12:41
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05Cg74F5Ac1gq67bFLPKTqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhM2MzNjBjMzY0YmI2NmRjNjM1MTcxOTM1NjhmNWJhODUx
N2FjZTgwHhcNMjYwMzI5MTAwMDUzWhcNMjYwMzMwMTAwMDUzWjAzMTEwLwYDVQQD
Eyg1NTY4ZjRiNTMwYTY1ZTA5Nzg2OGYwMmYwNDE3MTgzZjY0YWFiOTRhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/XEdrvx6Q9FZaxMtI1ZXahQB+PyF
HYQYqMfa00UkOK5b8fZNgTGeCd+zp8z2fD3d0CEMRQyqhN0nu0I76BCY2nujeAOQ
FCoGXW7pdO0mMEZms8O2cH2KJm5vgSYrtq5P5mrs2gkSvCfcdn6QBwZDpalrs8eB
vrD97t3BMP83FxVTdvHxCwvKmMNsAFV1v2CesENem8WZP81akbrFfR49ornsyL29
hmIyYaNSTJkR2Y1GrDHkRTGLhyHVe4KxJt6wwhc7adDz6D30Vf41yr68lPx5nsPY
ckW0+nRObzywXNkQfjdCbGvMmYuFY9ZIAAgitpHOVDmfHzEKBehlRa89ywIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFVo9LUwpl4JeGjwLwQXGD9kqrlKMB8GA1UdIwQY
MBaAFEo8Ngw2S7ZtxjUXGTVo9bqFF6zoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi84YWQ0ZTUtZDljOS00M2U3LWJlMGYt
MWQ5Yzg2NDE2ZTliLzEvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMi84YWQ0ZTUtZDljOS00M2U3LWJlMGYtMWQ5Yzg2NDE2ZTli
LzEvU2p3MkREWkx0bTNHTlJjWk5XajF1b1VYck9nLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhQQpVj83
qaWHDh3YuG+jqZ5gAIRrdxh7ima+fm3Nhcjs8fEKEvGzN+L3a1Wkekp/tAKsbRC1
v1fQkTjkiMNQ8vMeAYnGhkiBuEjxgQILmF3JoiNTrJ8tLJgK7cxWof+TozpxSRZW
jCKiXQ5qWCC2GWRs8gMaODk9E6g9fICD9hsyBlpY4lzHc58tCcbNWWoL9bdcn0Rk
nf+ilZ4YrF9Qn70G5ylmBHi00Mo78HOJiiJN0PEi45diN8FbuNQPu13cktTp8B7Y
6Ck0JspDsShzimGUw/kG4vE5+mHtomc4NTsggfFZxGW0i+lIxmItPJV0g2jJ6adu
i2UEGZcNHMUSQQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 19:51:22 2026 by rpki-client