Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: nCcR2f2YeWW7H7Nxk7bkxXJs311lUKUMXZxfbI7J6+k=
Subject key identifier: 20:CF:34:A4:0F:DC:CB:21:85:98:24:F4:32:34:EE:15:C0:D7:8B:A9
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 019EC30040447062458581E5779ED7D1BBFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 17A9
Signing time: Sat 13 Jun 2026 22:00:33 +0000
Manifest this update: Sat 13 Jun 2026 22:00:33 +0000
Manifest next update: Sun 14 Jun 2026 22:00:33 +0000
Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: llVrkxppYkuwQ+JkVJxS2n3uuiZnUWyPZDFc9H7PEv4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:00:40:44:70:62:45:85:81:e5:77:9e:d7:d1:bb:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Jun 13 22:00:33 2026 GMT
Not After : Jun 14 22:00:33 2026 GMT
Subject: CN=20cf34a40fdccb21859824f43234ee15c0d78ba9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:4d:4e:51:9a:3e:78:d5:79:0f:88:6d:58:2d:
1a:ea:a5:db:ef:fa:2a:4c:84:58:8d:fc:dc:08:1b:
c1:3c:ea:cd:ab:db:f2:59:e6:4f:b6:8f:68:0f:eb:
0c:a3:87:68:b8:72:8b:ef:6f:ca:3b:6c:73:2b:c8:
1b:b6:63:4d:08:39:ac:11:dd:ae:e8:24:d0:53:88:
a9:73:34:99:ab:d4:02:08:20:c1:d4:97:23:d7:2a:
20:ed:0a:cf:3f:5d:09:db:27:a1:d5:6d:4d:95:7a:
1a:f9:54:7d:1d:40:32:71:e7:17:0e:83:95:1e:b7:
79:4b:f2:70:31:03:b4:69:24:66:3b:44:1f:e0:f1:
73:69:1c:bd:ad:cf:da:5d:e2:02:e3:81:2a:98:17:
77:b1:96:b4:96:a8:3b:3b:84:a9:88:5d:41:21:cf:
ee:f9:ce:7d:fe:91:9d:1d:6e:f8:58:d6:ca:ff:4c:
c9:81:1a:12:b0:ff:c3:c5:87:e6:27:5c:78:c0:fc:
3c:29:a0:51:cd:15:2a:0f:43:6e:81:72:c3:44:32:
4d:ef:e3:56:2f:af:c7:a9:26:16:55:15:ac:1a:31:
01:fe:14:62:41:44:82:88:e6:9c:19:20:f5:e7:46:
c9:29:3c:38:90:ea:46:e7:1d:48:9b:3e:6d:6f:18:
1c:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:CF:34:A4:0F:DC:CB:21:85:98:24:F4:32:34:EE:15:C0:D7:8B:A9
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:cd:4a:bf:54:db:3e:53:8c:bb:9a:2b:70:91:a1:0d:4c:f7:
50:cd:9e:12:2e:84:52:75:b7:f3:b7:8b:a9:d8:cb:49:c3:39:
45:57:75:ad:c9:56:30:5e:5a:de:0e:49:d8:ad:b5:1a:91:2e:
9e:f3:01:85:58:53:eb:b8:df:1e:a2:39:ec:6a:dd:bd:20:ad:
fb:45:0d:25:1d:34:c3:21:4a:0e:da:4c:c4:5e:82:59:4d:21:
d2:2c:1a:ee:50:85:c5:f5:97:cd:e7:92:d5:62:48:a7:2c:25:
93:7d:50:69:1d:57:94:e9:e4:73:51:8e:6c:14:8f:32:09:b9:
d2:18:18:72:bc:de:44:92:b9:12:19:71:fc:8c:ca:0d:2a:90:
07:94:00:de:c8:45:34:40:6f:5a:ce:68:8a:b9:3b:65:9e:36:
09:40:41:e3:8d:a3:85:e3:72:e5:4a:8d:bb:4b:51:2f:b1:ba:
04:a4:8e:68:ab:5d:18:8f:4a:03:1b:f3:8f:58:79:fe:f2:0d:
25:fc:1c:4b:7f:b3:bb:78:1a:3d:cc:1a:ad:a8:dd:6a:45:53:
be:db:c3:95:56:0c:07:ea:e1:8d:e8:c2:cf:c4:b1:6f:ca:68:
58:33:0b:15:8a:43:de:db:22:cd:db:c1:28:ef:33:73:fd:a6:
9e:1a:37:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:17:41 2026 by rpki-client