Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
File: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft (raw, json)
Hash identifier: D5TOCzmACrxVqTF2c+WXRdlQapN9QdZTKyrFM/0F+q8=
Subject key identifier: 50:48:00:12:1F:92:B6:3C:52:48:6A:38:22:4F:01:75:5A:6D:8B:5F
Authority key identifier: 4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
Certificate issuer: /CN=4a1d20be77e12232323c1422fb5198fea0086034
Certificate serial: 019D382E021FB975D529849064FE739FBBB1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 06:00:32 +0000
Manifest this update: Sun 29 Mar 2026 06:00:32 +0000
Manifest next update: Mon 30 Mar 2026 06:00:32 +0000
Files and hashes: 1: KbY3nni1wEfL__PANyZgyUs7RUY.roa (hash: gJHLBx+13eQSnJw340+rzpbr2Pvo3zONDmCvI5/SYVk=)
2: Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl (hash: siz4mQkC4a/VFQRhqh3RR1w8jgKFPL57ej+aXsblg90=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:02:1f:b9:75:d5:29:84:90:64:fe:73:9f:bb:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a1d20be77e12232323c1422fb5198fea0086034
Validity
Not Before: Mar 29 06:00:32 2026 GMT
Not After : Mar 30 06:00:32 2026 GMT
Subject: CN=504800121f92b63c52486a38224f01755a6d8b5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:bd:c0:c7:92:38:2f:49:d3:c3:ab:b6:d7:63:
1b:ea:a3:b3:d0:03:f7:49:82:e2:6c:9d:c9:15:eb:
80:f7:9e:d8:67:c4:0a:4a:19:76:61:68:df:77:15:
23:36:b1:b5:c0:0c:51:ca:5a:fb:46:36:57:86:75:
b4:9e:e1:b1:f8:6f:0f:54:fc:c3:7d:9e:8f:c0:57:
cd:02:55:59:ee:20:94:e7:fa:95:68:cb:22:db:da:
86:13:ab:64:96:fa:a7:ed:28:aa:8b:e1:3d:4c:e8:
36:bd:7d:ab:5e:da:e0:98:d3:fb:df:a4:77:b4:d7:
8e:0b:06:15:70:cf:3a:82:d7:b9:42:e4:46:0f:8b:
8c:90:3d:2b:15:c3:e9:9a:21:ee:37:2c:c4:70:eb:
b6:a6:f8:39:b7:e4:7c:75:0b:2f:61:59:94:fe:83:
9b:f3:05:41:21:0d:a3:f7:7f:bb:a5:2a:c5:f7:83:
13:4c:4f:4f:c3:27:7e:49:02:4d:55:ed:c5:0c:14:
93:d7:a4:42:88:ce:81:02:f4:94:3e:2a:dd:73:56:
9c:24:01:3e:90:9a:04:18:ea:d6:5d:37:eb:27:10:
b9:cc:8d:18:25:0a:3c:10:79:64:ec:8a:7d:52:3c:
f4:91:4a:79:d7:b4:05:de:c4:11:b5:c6:e9:69:04:
c1:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:48:00:12:1F:92:B6:3C:52:48:6A:38:22:4F:01:75:5A:6D:8B:5F
X509v3 Authority Key Identifier:
keyid:4A:1D:20:BE:77:E1:22:32:32:3C:14:22:FB:51:98:FE:A0:08:60:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/63c9db-8ab9-4c1e-af27-ed28851ecb76/1/Sh0gvnfhIjIyPBQi-1GY_qAIYDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:d1:f3:eb:3a:3f:19:90:4a:d6:f1:53:af:4c:42:33:78:4f:
0f:56:17:37:b7:51:38:fc:c5:11:bc:63:f0:25:4a:75:a1:9b:
e9:44:63:6b:78:b5:94:2f:d9:b6:85:f2:8c:2f:23:f2:2d:d7:
c1:45:cb:20:a7:55:76:75:a3:56:d4:5e:de:aa:26:fb:9e:bb:
9d:6f:4d:5f:cc:ea:02:18:55:b5:c1:1f:92:6c:69:1c:89:76:
74:72:6b:26:f3:a4:3c:6d:05:cb:65:d2:5a:30:e8:47:e2:59:
6a:de:81:82:72:70:1f:b3:1c:7e:4f:81:e2:f6:14:75:ec:0c:
e1:a6:9c:43:b3:45:cd:0e:9b:14:5c:9c:d7:c1:66:86:17:29:
dd:93:61:60:0b:46:74:2b:0d:1c:6f:59:6f:30:88:e3:ff:1e:
25:ea:15:a5:3d:3b:4f:61:c6:4c:d4:9e:41:96:27:f6:70:8e:
76:9d:10:97:1a:26:f7:a3:58:b4:ba:27:bc:2f:ad:91:76:a4:
c1:48:7d:b1:fe:10:d1:e7:64:b2:7c:9d:61:f7:40:cb:94:29:
72:b1:d9:e4:a3:76:02:ee:89:23:e6:ae:0a:74:55:49:b8:74:
d3:9d:78:51:d3:c6:1a:36:69:97:5c:00:34:4a:4c:7b:a2:e0:
46:82:54:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:34:38 2026 by rpki-client