Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: t7tK91wnFCF1O0wMe1EqiswB53HIgzi1qzNom7312+o=
Subject key identifier: FE:6C:8E:50:B0:43:77:72:D2:82:88:45:4C:AF:AE:72:DF:24:BF:AC
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019E2C27ECA9CB3174C62DFDBDFAA13269FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 190F
Signing time: Fri 15 May 2026 15:01:14 +0000
Manifest this update: Fri 15 May 2026 15:01:14 +0000
Manifest next update: Sat 16 May 2026 15:01:14 +0000
Files and hashes: 1: 9qwf6-Dqoc3yJJecKnCaJyAyhZ4.roa (hash: /C2CSaK00NB+/TpXiHAeWUhtWjQTZ45pzq0LkkZy9eA=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: vfWS9vXGRrNiOFd6aLqnEGXbYLx2DLcjAHwf6vxD/Kg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 11:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2c:27:ec:a9:cb:31:74:c6:2d:fd:bd:fa:a1:32:69:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: May 15 15:01:14 2026 GMT
Not After : May 16 15:01:14 2026 GMT
Subject: CN=fe6c8e50b0437772d28288454cafae72df24bfac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:d7:2c:e6:9a:24:b6:8f:8f:19:e9:1e:53:82:
c0:cc:b9:c2:e4:cd:b4:9b:ff:fe:ed:66:5c:8e:2f:
79:51:69:c5:85:a7:ef:3c:7b:6f:51:3c:39:f6:00:
7d:ca:de:87:47:d4:92:23:5a:28:34:a5:a2:a9:18:
1c:de:40:2d:50:10:b1:82:eb:92:01:84:ae:10:f9:
70:17:95:6f:7d:8d:47:0a:76:d1:a1:03:26:ca:e3:
f4:2d:b8:23:d9:98:f6:0e:a8:5e:a9:af:76:c1:02:
9c:5f:2e:4e:24:c1:eb:9f:df:ef:0f:0b:62:b8:ee:
5b:40:c1:66:2f:7a:e3:fa:c2:9d:0a:56:bb:20:aa:
39:c5:8d:79:b3:d4:b1:54:e3:87:59:19:ae:76:34:
98:2a:e8:27:f0:62:41:da:4d:3e:45:06:da:b7:93:
47:04:44:81:08:ce:c2:c4:98:bf:b2:ad:de:bb:9b:
1a:af:1c:39:20:6c:29:fd:38:74:f9:52:cd:0c:b2:
89:66:90:c6:72:e4:63:65:35:a7:ff:6e:a0:cb:26:
75:59:9f:e7:c9:30:b3:ff:36:72:4a:80:47:f5:b7:
a0:a3:5d:4a:af:5b:d1:6f:58:f4:46:e0:a2:a7:34:
9d:93:d8:81:76:c8:0e:11:11:0a:36:00:73:f9:2e:
49:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:6C:8E:50:B0:43:77:72:D2:82:88:45:4C:AF:AE:72:DF:24:BF:AC
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
89:9e:57:28:2d:b5:36:3e:b7:df:a0:18:f7:65:53:b4:02:c5:
86:e7:13:0e:0d:a5:ec:01:b8:54:11:bb:51:70:4b:4c:79:ee:
4d:f6:e8:5e:12:1a:37:2f:5d:77:11:40:db:c1:1b:7d:b3:ff:
61:a2:c9:fb:c9:00:bb:d8:66:6b:e6:9a:86:85:90:f1:0c:87:
c0:67:e2:34:09:fb:04:05:c7:18:17:c6:d4:37:70:01:b2:5e:
b4:10:4b:fe:1f:0e:6c:2b:3a:09:88:eb:71:95:37:e0:f6:7c:
74:d4:9e:06:2a:94:c4:4f:8e:5c:96:27:5b:0b:66:9e:cd:66:
1d:a6:cb:33:a2:5b:02:e7:dc:3c:a0:74:83:b6:4c:b6:2a:7b:
ac:bb:25:c4:84:57:3d:d2:86:36:3c:5e:fd:bf:0a:04:76:2a:
50:00:68:8a:58:74:fa:58:77:92:c6:49:e0:99:5e:c8:96:0e:
7b:63:1a:3f:a0:69:5b:00:f5:f4:53:7c:e5:f3:0e:0b:4e:f6:
33:77:2c:8e:5d:5a:81:1b:d1:97:87:5b:a0:5e:51:95:e0:12:
c9:b7:3d:dc:9b:ed:20:bb:b5:7c:f5:b3:ff:5a:aa:76:d9:9c:
cc:46:c4:b9:1c:0f:c9:2e:37:a3:7f:f5:52:19:c2:fc:53:07:
ed:c3:18:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 20:46:57 2026 by rpki-client