Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
File: SdhmPTuWngJTom1UJb7hxdRDs2E.mft (raw, json)
Hash identifier: FXabJMaJgpbATq7ud0DdPPImoT9YZ4lC4RgwRqJcSu0=
Subject key identifier: 5D:48:6F:D7:9C:99:75:6B:76:48:BE:E7:DE:EC:3D:89:CB:62:6F:DE
Authority key identifier: 49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61
Certificate issuer: /CN=49d8663d3b969e0253a26d5425bee1c5d443b361
Certificate serial: 019D38D2C1E1B33FA56AA781D3419D5664A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
Manifest number: 09EE
Signing time: Sun 29 Mar 2026 09:00:29 +0000
Manifest this update: Sun 29 Mar 2026 09:00:29 +0000
Manifest next update: Mon 30 Mar 2026 09:00:29 +0000
Files and hashes: 1: SdhmPTuWngJTom1UJb7hxdRDs2E.crl (hash: 3j9gAIZiXm5MiJSmWTwlC7lCBzhz51MoTrjDlcUcvC8=)
2: ss_i7POqldkDP31KMdlVrzarBdE.roa (hash: WvsAUlRR+NRLn32GVVcoWQROpDNnn7tmpssNx6BwiVE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:c1:e1:b3:3f:a5:6a:a7:81:d3:41:9d:56:64:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49d8663d3b969e0253a26d5425bee1c5d443b361
Validity
Not Before: Mar 29 09:00:29 2026 GMT
Not After : Mar 30 09:00:29 2026 GMT
Subject: CN=5d486fd79c99756b7648bee7deec3d89cb626fde
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:9a:66:66:5c:b7:48:41:11:8d:50:56:3c:a9:
13:3e:82:4f:95:e6:b8:85:24:07:bd:82:89:bb:c8:
e4:5f:eb:a8:b5:34:e9:c4:c9:ad:18:da:98:81:f6:
f2:b1:21:08:e2:28:63:08:1d:85:16:5a:f3:db:69:
16:ab:55:4a:9a:c6:3d:1f:cf:65:cd:82:79:bc:f9:
54:00:04:d3:68:2b:eb:8b:19:69:85:7e:92:77:90:
e6:32:88:07:1d:58:4d:43:99:3f:ba:46:a9:22:98:
6e:b5:8c:c6:c1:92:51:a7:f7:da:76:a9:ec:25:eb:
f3:ae:3b:60:25:3f:83:95:a2:60:f2:b3:e3:84:e4:
e1:3c:07:03:8a:61:b0:d0:e9:65:a0:05:56:44:f1:
14:4c:ae:79:e7:93:5e:83:d1:c5:f0:b7:ad:70:4c:
b4:f5:76:ab:ee:3f:b7:ad:2f:b9:f5:09:3e:c1:c5:
3a:11:d8:20:56:91:76:30:35:cd:fa:c9:00:07:72:
d9:d5:4d:bc:51:35:93:37:39:79:05:c4:28:a2:db:
a5:fc:a9:35:b6:9e:0d:9b:67:c6:64:a4:36:29:71:
43:65:7b:45:6c:b3:5e:ad:61:46:42:2f:d7:8a:10:
2e:83:6b:83:c1:58:32:c5:b1:d5:6d:e6:56:dd:4d:
bb:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:48:6F:D7:9C:99:75:6B:76:48:BE:E7:DE:EC:3D:89:CB:62:6F:DE
X509v3 Authority Key Identifier:
keyid:49:D8:66:3D:3B:96:9E:02:53:A2:6D:54:25:BE:E1:C5:D4:43:B3:61
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SdhmPTuWngJTom1UJb7hxdRDs2E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a5d00d-6266-46ea-bc8c-4182bedb98a1/1/SdhmPTuWngJTom1UJb7hxdRDs2E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:0e:19:9d:50:39:bc:80:a2:cc:c1:cc:25:c5:a8:81:36:2e:
a7:36:1d:a4:e0:39:55:13:46:02:8a:80:54:e4:e3:3b:07:53:
c4:f5:1e:79:38:7c:1d:55:53:e3:70:a2:2d:33:fb:c5:18:89:
49:f8:c5:13:1e:9c:5e:8d:f1:55:89:dc:c4:0b:a3:97:17:b5:
f2:65:ad:bc:fe:35:a4:67:95:f3:53:b6:0b:8c:1f:5c:01:ca:
4e:be:fe:03:bb:2d:72:bf:2d:eb:b3:5b:8f:f9:42:ff:3c:a8:
46:7c:e4:ac:80:aa:99:c7:91:35:7b:2e:88:3f:ac:30:d8:9a:
fb:73:1b:4e:6e:ad:af:b0:fa:b5:96:42:86:4a:4a:a2:55:48:
0d:e0:e2:74:55:e8:1a:d4:54:03:54:bf:30:7c:04:f6:1e:5e:
33:9c:a9:1d:56:d2:89:1f:25:8c:6d:4c:63:c4:ea:78:b7:3d:
37:35:7a:4e:7d:a0:0c:1a:9a:0f:15:a0:6e:63:24:8b:d6:3b:
95:97:53:c5:60:42:96:3f:f2:52:14:05:e3:ed:14:f5:60:4f:
ec:bf:c7:c9:63:77:51:b7:97:66:c3:80:34:9e:52:02:db:41:
49:c0:20:45:2e:75:a6:3b:94:4c:56:b6:8c:d7:0d:a7:83:8c:
b8:6c:b5:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:59:02 2026 by rpki-client