Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json)
Hash identifier: VqalYdRTRSxxlvrSgpjmW51Fc9khL18pCee0dBM5XaY=
Subject key identifier: 0E:78:90:74:46:F8:E0:3B:AB:BC:7F:00:61:55:A6:E0:EF:50:D6:1D
Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Certificate serial: 019D9B19BF9125DC16E199E90350B265440C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 11:00:48 +0000
Manifest this update: Fri 17 Apr 2026 11:00:48 +0000
Manifest next update: Sat 18 Apr 2026 11:00:48 +0000
Files and hashes: 1: _7FUJXfD4Ngly6FguO7Icv3bnRs.roa (hash: uIw7fcvWe1lM1UlpZ2C4ZV/RLkNGSXf/iL61npEiJKw=)
2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: XocDKvNfJ3CDYhlWh5XMMXOY2sV2mKx4djB/U1UqDqQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 11:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:19:bf:91:25:dc:16:e1:99:e9:03:50:b2:65:44:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256
Validity
Not Before: Apr 17 11:00:48 2026 GMT
Not After : Apr 18 11:00:48 2026 GMT
Subject: CN=0e78907446f8e03babbc7f006155a6e0ef50d61d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:6e:fd:bb:e8:31:c9:64:ce:fc:a8:dc:18:6a:
83:cd:0d:f3:9d:ff:05:b3:9a:31:e8:b3:34:64:86:
8f:44:de:2d:3e:f4:bb:bf:a8:26:dc:e4:9f:a5:cb:
c3:f5:23:63:2e:da:37:b9:9f:f1:be:99:74:bd:f5:
0b:b1:63:60:e2:7b:44:38:d4:ed:a0:bd:7e:7e:f5:
2d:49:fa:88:79:68:3a:db:80:8e:25:9d:d2:ba:00:
12:c8:d6:a6:4e:01:2a:c4:c8:06:c0:a0:df:32:a7:
49:55:90:17:1d:c8:eb:13:55:34:87:d9:73:9f:81:
b0:a6:14:cc:bd:5a:ca:9b:52:68:bc:e9:e9:be:b6:
bb:15:cc:82:7f:44:fb:f1:be:73:40:ef:98:07:16:
5e:53:45:b8:f5:6a:81:dd:ae:b8:b5:31:17:54:1e:
9e:98:1c:1c:de:18:1d:c9:23:65:32:b9:d5:01:58:
37:df:fc:7e:5a:57:cf:3a:7c:ad:73:39:07:5e:de:
39:70:7d:3c:00:7a:67:d0:67:a2:32:58:25:b1:9a:
15:88:bf:10:52:ed:85:f2:73:7b:42:73:8e:c8:ac:
2d:98:db:e7:7c:0a:c3:89:56:c6:2d:03:23:2a:02:
b2:f2:5a:37:b5:31:33:be:0e:68:19:42:6a:4a:7e:
46:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:78:90:74:46:F8:E0:3B:AB:BC:7F:00:61:55:A6:E0:EF:50:D6:1D
X509v3 Authority Key Identifier:
keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:b9:4c:d5:6b:3a:a5:e5:46:e8:ce:56:b3:db:8e:94:be:2b:
15:3e:4e:c1:f7:45:80:c8:45:ae:9f:53:98:60:7f:9c:dc:f0:
f3:5c:2c:78:46:82:d7:34:f8:2c:ab:69:92:6a:f1:00:f3:46:
44:89:89:6e:ae:d1:f7:7e:81:bd:bd:b2:d5:3d:8b:b4:68:d5:
e6:14:10:eb:87:1b:8c:d2:3d:42:2d:6a:8d:bf:46:81:4f:4d:
4c:ba:20:a2:c2:46:20:5d:af:0c:c2:58:b3:9d:49:30:6c:c4:
9c:f0:55:e5:aa:8b:71:cd:c8:59:48:dd:01:44:ff:50:d3:6f:
82:a2:91:e4:8f:45:31:58:3f:04:a6:77:0d:a9:c5:a6:91:16:
6f:fe:21:df:21:ee:d6:8f:d4:b7:54:40:1f:a2:7d:23:a0:38:
3b:00:e8:2a:87:1e:ac:73:90:dd:9e:6d:c3:92:03:3e:aa:f1:
68:ed:6f:77:68:cf:74:e9:f7:e5:74:45:d8:da:86:92:12:ed:
a9:08:a6:33:7a:d5:5b:61:e7:0c:66:44:81:e7:2d:25:27:d5:
a7:c6:61:8c:bd:84:55:30:54:9c:7d:e1:34:34:d1:f7:0b:4a:
fd:28:5d:26:0e:0e:bb:d7:c2:95:15:1f:ed:e8:37:a8:40:d6:
36:23:dc:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:11:46 2026 by rpki-client