Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: 6R9AO8rRIOeVaVjRHwJN8I44LIAIofhVoHeqvmSi3Sw=
Subject key identifier: 4A:F9:96:E4:D2:D4:03:91:83:BC:AB:78:A8:9D:3E:B3:00:C6:21:17
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019D389BE93C4E7E4D7858B5F64E1D414ADF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 08:00:34 +0000
Manifest this update: Sun 29 Mar 2026 08:00:34 +0000
Manifest next update: Mon 30 Mar 2026 08:00:34 +0000
Files and hashes: 1: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: 5I4+9oG/OdaOeNpaKTuFJbDEH8D/Adu0CSMWrs3rXe0=)
2: z1U74n3Bwqh9cLzRjWZYerB5n54.roa (hash: Odhjr9FDFuG6FvTw4sLHqZZzcsc3KTFEM336lZkm7Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:e9:3c:4e:7e:4d:78:58:b5:f6:4e:1d:41:4a:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Mar 29 08:00:34 2026 GMT
Not After : Mar 30 08:00:34 2026 GMT
Subject: CN=4af996e4d2d4039183bcab78a89d3eb300c62117
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:05:24:fc:a4:3e:a4:42:8b:82:f9:e3:67:87:
af:14:49:af:39:3d:f6:53:42:8c:6a:a0:4d:fc:c1:
a1:ef:7e:b0:bc:16:96:31:80:af:88:3d:14:00:83:
de:75:00:8a:3c:6a:a8:42:17:44:08:10:f2:27:a9:
f3:7f:f1:c2:35:cc:ea:bd:b9:66:b5:3f:13:a8:bd:
77:98:ef:81:c6:7f:c9:18:5a:4f:a1:ef:13:8e:3c:
79:1d:32:de:5a:6f:fd:91:74:1d:bd:34:e0:5f:d6:
e8:30:57:ed:e3:c6:81:8b:40:a4:84:c5:41:66:ef:
18:47:b8:80:71:4c:2c:f7:84:ed:ba:bb:30:50:ec:
f6:6f:dc:6d:2e:e9:31:19:5c:d8:75:3a:bc:83:50:
c4:99:89:5b:25:c5:e0:89:15:f5:77:1f:4c:19:21:
07:1a:db:4c:92:21:9d:b5:e7:9d:34:75:90:fd:f6:
30:c7:4a:cb:37:9c:dc:ed:b0:22:85:0f:31:98:57:
02:f9:ce:44:20:81:e2:3b:02:7f:03:4b:83:b0:03:
d5:73:e3:5d:ee:47:61:f0:6e:88:a8:e5:49:2c:d7:
57:d9:7e:a7:2a:78:e5:5c:ac:89:4b:19:23:7e:d7:
89:88:b6:6b:63:75:f2:ac:02:71:3c:84:71:8a:7f:
29:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:F9:96:E4:D2:D4:03:91:83:BC:AB:78:A8:9D:3E:B3:00:C6:21:17
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:2f:cb:a0:da:5f:10:8a:97:90:42:9a:cd:b7:22:6d:18:0b:
4b:63:73:e9:3e:81:a3:bd:67:8e:2e:2e:08:03:05:44:22:7f:
e4:3e:ae:3d:e1:b9:2d:b4:62:1f:66:9d:a9:c8:ca:8f:4d:ec:
f8:98:a1:db:3a:bb:5e:c1:be:60:a1:40:2d:0e:94:e1:4b:ec:
02:60:e7:15:ba:9b:7e:54:4c:06:9c:c8:76:69:81:4a:fd:22:
3d:90:13:64:ee:35:6e:d6:46:bf:b4:42:6d:f6:ff:19:fe:a9:
86:a7:16:76:39:02:26:e8:c2:42:d0:e1:b9:05:01:5f:65:91:
5b:c2:a5:ce:20:58:a3:d0:64:28:1e:3e:64:11:1a:4d:c3:60:
f4:05:ad:a7:d7:e9:70:dd:49:ac:d9:c7:a9:40:c1:ad:1b:0e:
4d:68:16:9f:d1:f7:ab:8b:27:18:87:2c:e8:7f:4d:df:f5:a2:
72:f1:e7:f2:a3:26:74:3b:72:64:f1:10:09:ed:5a:2d:d7:e9:
ae:a7:a1:61:f4:6c:9c:c5:45:a4:57:e4:d4:08:02:c4:aa:2b:
d9:e4:f6:1f:b0:fd:96:48:a4:bb:61:a4:74:3d:2f:ce:07:ab:
d4:e2:d4:92:40:c0:74:21:ff:f2:92:15:f3:da:86:84:36:92:
fc:54:06:94
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m+k8Tn5NeFi19k4dQUrfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMjBkOTFiNGU5ZDcwZjAzNGZhMTZhMTZhODg3ZDQyNTU3
OTJhZGUwHhcNMjYwMzI5MDgwMDM0WhcNMjYwMzMwMDgwMDM0WjAzMTEwLwYDVQQD
Eyg0YWY5OTZlNGQyZDQwMzkxODNiY2FiNzhhODlkM2ViMzAwYzYyMTE3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQUk/KQ+pEKLgvnjZ4evFEmvOT32
U0KMaqBN/MGh736wvBaWMYCviD0UAIPedQCKPGqoQhdECBDyJ6nzf/HCNczqvblm
tT8TqL13mO+Bxn/JGFpPoe8Tjjx5HTLeWm/9kXQdvTTgX9boMFft48aBi0CkhMVB
Zu8YR7iAcUws94TturswUOz2b9xtLukxGVzYdTq8g1DEmYlbJcXgiRX1dx9MGSEH
GttMkiGdteedNHWQ/fYwx0rLN5zc7bAihQ8xmFcC+c5EIIHiOwJ/A0uDsAPVc+Nd
7kdh8G6IqOVJLNdX2X6nKnjlXKyJSxkjfteJiLZrY3XyrAJxPIRxin8ptQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEr5luTS1AORg7yreKidPrMAxiEXMB8GA1UdIwQY
MBaAFLIg2RtOnXDwNPoWoWqIfUJVeSreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQt
OTg3MTczYjllOTg3LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQtOTg3MTczYjllOTg3
LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHi/LoNpf
EIqXkEKazbcibRgLS2Nz6T6Bo71nji4uCAMFRCJ/5D6uPeG5LbRiH2adqcjKj03s
+Jih2zq7XsG+YKFALQ6U4UvsAmDnFbqbflRMBpzIdmmBSv0iPZATZO41btZGv7RC
bfb/Gf6phqcWdjkCJujCQtDhuQUBX2WRW8KlziBYo9BkKB4+ZBEaTcNg9AWtp9fp
cN1JrNnHqUDBrRsOTWgWn9H3q4snGIcs6H9N3/WicvHn8qMmdDtyZPEQCe1aLdfp
rqehYfRsnMVFpFfk1AgCxKor2eT2H7D9lkiku2GkdD0vzger1OLUkkDAdCH/8pIV
89qGhDaS/FQGlA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:49 2026 by rpki-client