Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
File: sx0cKJHYgEaaINi38Y5M2GVDAEY.mft (raw, json)
Hash identifier: YZySXmhH99+NkrcZhETrlp8YtAwbF41jwyhnDLGikLw=
Subject key identifier: 20:32:ED:4F:92:53:8A:A2:90:44:3D:AC:BF:CF:8F:37:03:6F:90:D4
Authority key identifier: B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
Certificate issuer: /CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Certificate serial: 019D99D0EA0CA33C3C884F4AD378504BCBA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
Manifest number: 05A4
Signing time: Fri 17 Apr 2026 05:01:38 +0000
Manifest this update: Fri 17 Apr 2026 05:01:38 +0000
Manifest next update: Sat 18 Apr 2026 05:01:38 +0000
Files and hashes: 1: nZ-MC578XDNoxF9WT_GxSRoreCI.roa (hash: P9N+z+cz6t9cJMJHuc2G7Ay4P8kV4Zg2jsXlf/jTUFo=)
2: sx0cKJHYgEaaINi38Y5M2GVDAEY.crl (hash: bbWpsS7Gg88kq3fOpsLkSRVJI5AhAVEOwRsNETqKNps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:ea:0c:a3:3c:3c:88:4f:4a:d3:78:50:4b:cb:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31d1c2891d880469a20d8b7f18e4cd865430046
Validity
Not Before: Apr 17 05:01:38 2026 GMT
Not After : Apr 18 05:01:38 2026 GMT
Subject: CN=2032ed4f92538aa290443dacbfcf8f37036f90d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:03:45:1d:16:9e:a0:7d:07:29:6f:3a:d9:29:
38:32:c0:8d:33:e5:c7:f7:bb:b0:a7:6c:f4:ad:43:
b3:06:ae:2c:9e:8d:6f:4b:2d:d4:33:3f:dc:5f:09:
9c:f9:8f:85:63:db:e4:aa:cf:77:be:86:e1:19:66:
ff:18:fa:9e:42:a8:51:90:ba:6d:bc:ad:d2:2b:a2:
69:2c:cd:d8:7b:5e:1b:80:0c:fa:e2:1c:76:cc:f0:
04:1a:23:62:28:53:94:ce:2d:7c:21:08:1e:32:05:
d3:15:12:d4:d2:b1:9d:16:a8:e8:b6:7a:de:0a:9b:
c0:41:53:89:91:fa:ea:e2:bd:a1:e8:cd:ea:f0:b8:
7e:1d:09:89:4b:5f:3c:14:73:58:47:55:20:98:ba:
b5:66:ef:89:ad:53:a6:16:53:de:49:f8:4a:74:1b:
1d:a7:44:92:06:fb:12:07:9e:d2:98:27:2d:da:1e:
70:d5:58:72:a1:d7:e9:89:46:35:14:c6:02:4c:a2:
ae:00:6c:f7:d1:1c:09:dd:8c:9e:cf:70:72:c6:8b:
54:22:f5:6e:ee:1d:16:c0:e3:c3:d9:04:02:6f:9c:
57:ed:0f:a6:eb:b1:3d:4a:1b:27:b6:71:09:12:f1:
bf:85:83:b2:ef:b2:22:d0:37:14:60:7e:e9:95:53:
cd:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:32:ED:4F:92:53:8A:A2:90:44:3D:AC:BF:CF:8F:37:03:6F:90:D4
X509v3 Authority Key Identifier:
keyid:B3:1D:1C:28:91:D8:80:46:9A:20:D8:B7:F1:8E:4C:D8:65:43:00:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sx0cKJHYgEaaINi38Y5M2GVDAEY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/775017-a45b-4637-a3a0-af1a0e00f823/1/sx0cKJHYgEaaINi38Y5M2GVDAEY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:cd:2f:01:ae:da:54:6a:c7:02:f2:da:ae:08:f7:ed:45:ce:
e4:82:3d:c8:03:35:e8:5e:4c:2b:f0:35:0e:6c:0b:39:d8:69:
ba:dd:aa:2d:d7:4a:b8:b4:b5:94:c0:14:3f:28:db:9e:db:51:
17:cd:08:45:df:92:a8:5f:2d:04:72:27:0b:62:0d:3b:4c:8a:
4c:b5:82:d1:da:c7:cd:01:70:4f:df:fb:ee:84:fc:3d:83:99:
09:ec:27:65:3a:81:f3:2c:23:c8:91:14:15:ed:00:67:7d:98:
2b:3a:49:e3:a7:a9:93:15:59:4f:03:3d:53:52:8e:95:c6:8d:
41:e1:c4:c9:b5:3e:15:1d:3b:45:49:6e:fd:4b:e2:93:00:dc:
88:f3:93:e0:4a:b8:19:3e:8c:b3:ae:47:80:40:34:2a:60:43:
25:c1:83:f3:47:5d:51:90:2b:99:6f:e4:5e:cb:68:4e:85:21:
a0:87:a6:dc:93:50:3d:06:00:01:a9:b4:e7:e1:ea:ca:c3:6f:
ad:52:dc:74:20:a1:c7:17:ca:85:52:20:15:0b:7b:10:dc:d9:
d9:98:be:7a:9f:9c:32:a3:b3:cb:b5:1e:e7:b1:ef:99:16:60:
32:ed:61:55:09:33:b4:b6:5b:64:d1:f7:cb:f3:4a:32:84:2d:
17:3e:e5:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:28:58 2026 by rpki-client