Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: gV4VSQl+21b4v9/1Gv9T6vnUA4UMt56jIKNPEp9gcR4=
Subject key identifier: 82:48:50:1B:72:AB:D8:8E:69:BB:1D:4E:46:FE:B7:5E:07:4F:1B:DF
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019CAD90B22E690E6F0EF2D8EB7ECA4BB856
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 08:01:06 +0000
Manifest this update: Mon 02 Mar 2026 08:01:06 +0000
Manifest next update: Tue 03 Mar 2026 08:01:06 +0000
Files and hashes: 1: _7FUJXfD4Ngly6FguO7Icv3bnRs.roa (hash: uIw7fcvWe1lM1UlpZ2C4ZV/RLkNGSXf/iL61npEiJKw=)
2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: jncbAjj6cEsJZzGR2ho2HsaA67TjtflKtKJ0kG4kkLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:b2:2e:69:0e:6f:0e:f2:d8:eb:7e:ca:4b:b8:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Mar 2 08:01:06 2026 GMT
Not After : Mar 3 08:01:06 2026 GMT
Subject: CN=8248501b72abd88e69bb1d4e46feb75e074f1bdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e7:42:0a:ef:89:ef:9e:b2:43:d2:c1:39:d4:9e:
c5:67:1b:d8:bf:ac:37:38:75:c4:a6:44:b0:ab:2a:
a1:47:a2:00:22:f8:ff:1f:ba:cc:af:5f:1e:75:a2:
04:e8:3d:cd:84:39:de:c1:e4:e8:6f:c5:cb:91:6f:
ab:cd:e6:96:41:7e:88:01:ad:ab:53:f8:b9:45:2f:
45:30:0b:82:f9:47:64:86:35:5b:c8:71:51:ff:df:
a7:54:02:33:f8:b6:e4:00:57:d1:8e:51:6c:cf:58:
4d:d4:c5:0e:8e:ce:f9:22:ac:cc:89:b5:c4:97:ad:
f9:93:b4:21:9d:7a:28:44:8b:b9:f0:a7:11:aa:6e:
b0:08:02:c6:88:ab:c4:df:8c:e9:a3:72:c9:33:9d:
f4:a4:23:84:e4:5a:be:c5:bb:ce:e4:f2:9b:a5:ac:
4d:75:a7:8c:02:37:56:35:16:22:c7:e8:4b:ae:1a:
90:57:c1:71:6d:79:7c:86:91:8e:7e:7b:6f:41:1d:
b6:10:72:ba:22:ff:63:fc:46:5c:25:ab:ce:78:03:
b6:24:21:c1:d5:b8:80:8e:aa:76:07:08:a2:3f:0f:
02:d8:70:01:33:0e:60:0f:d6:55:f2:b1:1b:ca:72:
84:6f:4f:cb:37:fe:4d:66:ab:bf:5d:4c:0c:dc:d1:
15:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:48:50:1B:72:AB:D8:8E:69:BB:1D:4E:46:FE:B7:5E:07:4F:1B:DF
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:fa:bd:eb:d6:e7:f0:0a:61:01:07:ef:80:fb:10:39:3f:36:
c0:cf:45:11:79:34:a4:27:22:93:39:89:bd:bd:ed:09:ec:ab:
64:65:ac:29:6f:69:b0:3d:98:29:c9:d6:b1:d5:f0:00:85:0c:
ac:95:71:69:4a:ba:d2:55:18:51:e4:94:35:0f:e3:92:a6:8a:
28:1c:78:c1:d5:99:27:23:66:cf:9e:d9:0f:e7:86:44:f3:fc:
9c:d5:ac:2e:e7:c5:3b:d2:2e:21:04:65:1b:f9:a4:f7:76:09:
e5:a2:a8:27:a9:e4:f4:85:48:93:27:4b:9f:22:42:b9:2c:e1:
44:e3:6d:ea:e1:c8:ce:3d:d7:f3:e5:b4:5b:be:a7:5e:bf:ae:
82:8b:e1:84:8b:b5:be:3e:39:a2:54:2f:51:f2:fa:22:4d:98:
de:a3:03:e3:b8:9a:bb:53:20:13:df:91:cc:0c:92:06:c4:cc:
10:91:70:03:d2:a9:b0:cc:fb:19:6d:50:7c:60:5e:5e:69:80:
9f:06:d5:3d:80:35:b8:b0:7e:4c:92:0b:24:f4:e8:76:8e:2d:
84:17:f1:b7:e7:14:a1:51:b6:9b:5b:f1:ab:5e:33:c0:d7:cd:
59:cd:ea:11:cf:90:dc:fe:c3:79:8f:b6:51:02:c6:0b:af:ae:
ef:eb:d3:64
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZytkLIuaQ5vDvLY637KS7hWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm
NWUyNTYwHhcNMjYwMzAyMDgwMTA2WhcNMjYwMzAzMDgwMTA2WjAzMTEwLwYDVQQD
Eyg4MjQ4NTAxYjcyYWJkODhlNjliYjFkNGU0NmZlYjc1ZTA3NGYxYmRmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA50IK74nvnrJD0sE51J7FZxvYv6w3
OHXEpkSwqyqhR6IAIvj/H7rMr18edaIE6D3NhDneweTob8XLkW+rzeaWQX6IAa2r
U/i5RS9FMAuC+UdkhjVbyHFR/9+nVAIz+LbkAFfRjlFsz1hN1MUOjs75IqzMibXE
l635k7QhnXooRIu58KcRqm6wCALGiKvE34zpo3LJM530pCOE5Fq+xbvO5PKbpaxN
daeMAjdWNRYix+hLrhqQV8FxbXl8hpGOfntvQR22EHK6Iv9j/EZcJavOeAO2JCHB
1biAjqp2BwiiPw8C2HABMw5gD9ZV8rEbynKEb0/LN/5NZqu/XUwM3NEVGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIJIUBtyq9iOabsdTkb+t14HTxvfMB8GA1UdIwQY
MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt
MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1
LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbvq969bn
8AphAQfvgPsQOT82wM9FEXk0pCcikzmJvb3tCeyrZGWsKW9psD2YKcnWsdXwAIUM
rJVxaUq60lUYUeSUNQ/jkqaKKBx4wdWZJyNmz57ZD+eGRPP8nNWsLufFO9IuIQRl
G/mk93YJ5aKoJ6nk9IVIkydLnyJCuSzhRONt6uHIzj3X8+W0W76nXr+ugovhhIu1
vj45olQvUfL6Ik2Y3qMD47iau1MgE9+RzAySBsTMEJFwA9KpsMz7GW1QfGBeXmmA
nwbVPYA1uLB+TJILJPTodo4thBfxt+cUoVG2m1vxq14zwNfNWc3qEc+Q3P7DeY+2
UQLGC6+u7+vTZA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:34:04 2026 by rpki-client