Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
File: sxagaE0dOLrPQzjCsB2ztBNw60U.mft (raw, json)
Hash identifier: cClAoaE2AWnjo6YdU8dxGAs99MhuSPY4KwMMSWeD0L0=
Subject key identifier: 55:0A:3E:23:14:AF:8E:6B:8E:E4:4E:75:E6:B7:0B:5C:6B:1D:49:9F
Authority key identifier: B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
Certificate issuer: /CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Certificate serial: 019D382DF06174C5AD4983DF8D035BE6FC1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
Manifest number: 070D
Signing time: Sun 29 Mar 2026 06:00:27 +0000
Manifest this update: Sun 29 Mar 2026 06:00:27 +0000
Manifest next update: Mon 30 Mar 2026 06:00:27 +0000
Files and hashes: 1: PWqPuXgW_9Y9TvyR2FkZ0jJYBq8.roa (hash: 19NEYDyyhBU0DYdUPGu2u1lBZKeokSrHjnAnkDsiz24=)
2: sxagaE0dOLrPQzjCsB2ztBNw60U.crl (hash: m67v5Qm6wYOt/d2wPQiUu+a6FcGdZ+YYbDer2AWuzqI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2d:f0:61:74:c5:ad:49:83:df:8d:03:5b:e6:fc:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b316a0684d1d38bacf4338c2b01db3b41370eb45
Validity
Not Before: Mar 29 06:00:27 2026 GMT
Not After : Mar 30 06:00:27 2026 GMT
Subject: CN=550a3e2314af8e6b8ee44e75e6b70b5c6b1d499f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:89:6b:6f:50:8a:eb:56:31:ae:5c:8a:30:c2:
ce:a1:16:bc:27:88:81:f8:76:62:f0:4b:fc:37:f9:
f7:8c:d5:9d:1d:0e:92:f0:33:75:2b:e8:7b:35:d7:
33:86:8e:55:21:20:32:97:e3:58:ed:23:fa:35:31:
1e:23:55:a8:07:b9:9d:84:f6:08:0a:24:24:f7:6f:
1c:c9:d0:9a:fa:56:38:9d:5e:92:64:31:16:05:79:
e8:1e:c1:d9:f0:64:55:db:12:78:97:67:07:cb:b5:
81:24:63:d4:02:89:00:b6:4a:a7:ec:04:5d:da:17:
b7:c2:34:44:68:b4:02:32:80:dd:14:8d:63:08:27:
c4:92:51:2d:2a:81:fc:2b:0c:8d:83:d9:34:eb:b7:
82:c5:85:1e:4b:80:cd:38:52:5c:04:12:9e:6b:b9:
92:1f:3d:21:08:0c:62:b1:a6:a7:7e:b5:04:22:35:
3a:d0:26:e0:6a:5e:1f:c3:df:85:bc:c2:e3:b5:22:
22:87:fb:d4:e5:9a:c0:e1:15:c3:ef:cf:c3:d1:49:
b9:89:e8:40:ee:30:f5:07:52:fb:0b:6b:6a:24:60:
35:59:4e:a8:47:d0:d3:49:39:72:6f:96:77:6e:c1:
77:13:72:d6:6b:8c:26:92:52:56:99:5c:ed:c8:a1:
1b:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:0A:3E:23:14:AF:8E:6B:8E:E4:4E:75:E6:B7:0B:5C:6B:1D:49:9F
X509v3 Authority Key Identifier:
keyid:B3:16:A0:68:4D:1D:38:BA:CF:43:38:C2:B0:1D:B3:B4:13:70:EB:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxagaE0dOLrPQzjCsB2ztBNw60U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/6c4d62-8daf-4502-b3f7-14b97cfbad47/1/sxagaE0dOLrPQzjCsB2ztBNw60U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:33:c3:37:b8:0b:ff:ba:cf:10:9c:7f:8a:2a:f3:35:02:1a:
ea:75:17:2f:62:57:7b:79:77:00:9e:80:2a:62:7c:0e:8b:05:
90:a5:93:45:34:af:11:05:67:af:f8:4a:e3:65:c4:68:f2:70:
08:2b:94:e0:70:50:dd:92:1b:af:de:24:88:89:5f:2d:f0:8d:
cb:ab:60:65:75:1f:6f:c6:0d:84:a3:be:6c:5a:6c:7b:fb:5a:
a5:8b:a9:73:d8:7b:1a:f3:0b:44:81:b4:24:26:11:87:cb:16:
77:b1:38:b3:09:ea:22:fc:03:6a:20:18:4d:e3:84:fc:61:23:
84:80:bd:6c:6a:b0:eb:c6:14:52:53:1e:db:31:a9:d0:fe:5e:
3b:53:f8:22:86:99:6e:66:ec:23:b3:a9:96:71:3a:1d:b7:18:
02:f8:1d:bc:fe:61:b4:88:d7:ea:5a:c8:0c:fb:cd:95:a8:e1:
23:fd:86:b3:cb:d9:17:dc:87:45:cd:08:85:7e:27:0a:0d:af:
c3:1d:81:a4:c8:e8:df:86:a3:91:3c:b9:c3:19:90:be:51:9a:
42:1a:52:48:91:1c:92:18:5b:60:d9:08:b2:19:7f:eb:16:4e:
d8:28:1e:08:25:b5:c6:45:d6:b6:1c:92:52:8f:13:80:8d:84:
19:fc:16:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:47 2026 by rpki-client