Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
File: SiHJG2O7vaiASnSfPWEOiyF_m3M.mft (raw, json)
Hash identifier: KAI7zPCgiTIISvu+WjVjM3anO+CG2KN2rHb6HazDJD8=
Subject key identifier: 0D:29:FE:1F:15:DB:BF:EB:FD:30:1F:55:9A:F4:DC:C7:24:EB:5A:D2
Authority key identifier: 4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
Certificate issuer: /CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Certificate serial: 019D97E2306B4FC4D2B2EB810904517DE6E4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
Manifest number: 14BF
Signing time: Thu 16 Apr 2026 20:01:16 +0000
Manifest this update: Thu 16 Apr 2026 20:01:16 +0000
Manifest next update: Fri 17 Apr 2026 20:01:16 +0000
Files and hashes: 1: GARLhjoCY1mEifSMgHt3b3BOaHE.roa (hash: 1d3/nrn41VkXwlPSthRsl6eFjVEWud4PfGpAlTVZnhg=)
2: SiHJG2O7vaiASnSfPWEOiyF_m3M.crl (hash: /TksGpDQLEgnB8JSCpNCloHrKIJtfjfV0sQ3j81Qhho=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e2:30:6b:4f:c4:d2:b2:eb:81:09:04:51:7d:e6:e4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4a21c91b63bbbda8804a749f3d610e8b217f9b73
Validity
Not Before: Apr 16 20:01:16 2026 GMT
Not After : Apr 17 20:01:16 2026 GMT
Subject: CN=0d29fe1f15dbbfebfd301f559af4dcc724eb5ad2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:8f:e2:c3:3f:8d:b2:85:10:22:b1:c3:84:c6:
90:e7:4f:67:bc:12:91:a0:00:a9:51:b7:7c:f6:10:
6c:b3:a1:d7:9f:dd:87:4d:8c:96:06:5d:a5:29:24:
f1:ec:bd:68:dc:2a:d2:76:3c:b6:86:ae:47:f6:60:
5c:17:67:38:78:e8:36:e7:ec:cd:b6:03:00:b1:76:
b9:2b:22:8e:38:f9:4e:e5:c3:51:a5:34:21:d6:a9:
86:65:76:d4:13:e9:24:3c:0e:ef:98:cd:1b:17:e4:
f8:dd:0c:e2:39:70:c9:a5:9e:e7:48:c5:f6:66:fc:
53:fb:31:2b:32:83:b4:26:b6:7e:6c:ef:d9:64:b1:
b4:f4:18:8b:d1:b4:08:a6:9b:1f:f9:31:a8:10:99:
b4:b0:84:2f:6c:82:d5:1b:1c:40:be:28:11:6e:51:
62:22:d0:b3:06:d7:97:02:7d:bf:fc:bb:79:34:e9:
42:c7:12:98:9a:fd:56:90:2b:18:bd:2b:ae:ec:5a:
e3:b8:7c:a9:17:eb:51:a8:09:d0:da:5c:d1:44:1e:
aa:0f:c8:76:31:08:94:17:b1:cb:77:ff:d4:99:9d:
2d:da:8a:9d:02:02:a7:11:ab:a6:fd:8a:13:36:ea:
a7:b9:28:97:ad:63:69:57:94:be:10:32:47:33:42:
a7:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0D:29:FE:1F:15:DB:BF:EB:FD:30:1F:55:9A:F4:DC:C7:24:EB:5A:D2
X509v3 Authority Key Identifier:
keyid:4A:21:C9:1B:63:BB:BD:A8:80:4A:74:9F:3D:61:0E:8B:21:7F:9B:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SiHJG2O7vaiASnSfPWEOiyF_m3M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/6e8ca0-cd40-46fd-8ee4-47fbe4c4a4fd/1/SiHJG2O7vaiASnSfPWEOiyF_m3M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
83:b6:9e:7f:f4:cb:8c:33:bc:c3:b1:ae:53:24:3c:0a:8b:96:
d3:e8:ca:3f:8f:39:8d:b1:4f:48:a7:72:86:57:6b:61:44:73:
e1:b8:21:1e:de:76:7f:d5:70:35:16:51:0f:a8:71:bd:d0:9f:
6d:e9:19:9d:da:a6:dd:22:ca:d7:96:32:ac:75:28:9b:6f:b7:
44:51:4b:54:cb:b6:55:15:11:c5:a9:41:55:44:49:ec:d2:bc:
e9:5c:8d:ca:61:aa:98:0e:42:b8:43:68:cd:1f:1b:ff:f1:15:
68:82:7f:08:a1:e8:88:68:e4:ca:40:dc:c5:7d:0f:0d:7a:26:
89:0c:95:41:09:a4:db:ba:dd:e1:54:54:07:75:5b:66:a2:fb:
26:1d:9e:b0:0e:f9:e8:0d:25:38:ef:d5:a0:e4:b6:fa:75:fe:
86:b2:61:06:3e:c0:a1:bd:74:d9:3e:64:b7:03:8b:17:d3:33:
15:4c:0a:af:d8:a0:fa:18:d0:b4:8f:84:d2:9c:2d:2e:bb:62:
55:b0:df:d7:00:f2:ee:5e:c1:f9:f7:4a:d2:4c:a6:b7:49:82:
3c:f5:36:2d:82:b4:72:1e:3c:04:5d:ed:17:15:a5:2c:4f:35:
bc:b9:64:b2:d8:2a:91:e0:36:b1:08:c2:dc:5c:6f:cc:91:6f:
f4:ca:31:40
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2X4jBrT8TSsuuBCQRRfebkMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDRhMjFjOTFiNjNiYmJkYTg4MDRhNzQ5ZjNkNjEwZThiMjE3
ZjliNzMwHhcNMjYwNDE2MjAwMTE2WhcNMjYwNDE3MjAwMTE2WjAzMTEwLwYDVQQD
EygwZDI5ZmUxZjE1ZGJiZmViZmQzMDFmNTU5YWY0ZGNjNzI0ZWI1YWQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAno/iwz+NsoUQIrHDhMaQ509nvBKR
oACpUbd89hBss6HXn92HTYyWBl2lKSTx7L1o3CrSdjy2hq5H9mBcF2c4eOg25+zN
tgMAsXa5KyKOOPlO5cNRpTQh1qmGZXbUE+kkPA7vmM0bF+T43QziOXDJpZ7nSMX2
ZvxT+zErMoO0JrZ+bO/ZZLG09BiL0bQIppsf+TGoEJm0sIQvbILVGxxAvigRblFi
ItCzBteXAn2//Lt5NOlCxxKYmv1WkCsYvSuu7FrjuHypF+tRqAnQ2lzRRB6qD8h2
MQiUF7HLd//UmZ0t2oqdAgKnEaum/YoTNuqnuSiXrWNpV5S+EDJHM0KnnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFA0p/h8V27/r/TAfVZr03Mck61rSMB8GA1UdIwQY
MBaAFEohyRtju72ogEp0nz1hDoshf5tzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2lISkcyTzd2YWlBU25TZlBXRU9peUZfbTNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS82ZThjYTAtY2Q0MC00NmZkLThlZTQt
NDdmYmU0YzRhNGZkLzEvU2lISkcyTzd2YWlBU25TZlBXRU9peUZfbTNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yYS82ZThjYTAtY2Q0MC00NmZkLThlZTQtNDdmYmU0YzRhNGZk
LzEvU2lISkcyTzd2YWlBU25TZlBXRU9peUZfbTNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg7aef/TL
jDO8w7GuUyQ8CouW0+jKP485jbFPSKdyhldrYURz4bghHt52f9VwNRZRD6hxvdCf
bekZndqm3SLK15YyrHUom2+3RFFLVMu2VRURxalBVURJ7NK86VyNymGqmA5CuENo
zR8b//EVaIJ/CKHoiGjkykDcxX0PDXomiQyVQQmk27rd4VRUB3VbZqL7Jh2esA75
6A0lOO/VoOS2+nX+hrJhBj7Aob102T5ktwOLF9MzFUwKr9ig+hjQtI+E0pwtLrti
VbDf1wDy7l7B+fdK0kymt0mCPPU2LYK0ch48BF3tFxWlLE81vLlkstgqkeA2sQjC
3FxvzJFv9MoxQA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 05:22:23 2026 by rpki-client