Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
File: sdLmgf8j3d89UXhY4cZKHa0phyk.mft (raw, json)
Hash identifier: 1yhZJcQkTPNC2wswoqIWJ0AlBYORyW9eTKeMVITN/ew=
Subject key identifier: 5C:30:9E:EB:EB:11:AA:EF:07:C6:2C:B6:B2:74:01:7C:51:3D:E3:F4
Authority key identifier: B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
Certificate issuer: /CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Certificate serial: 019D99994A6AD120B22DC424A2C6C0682213
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
Manifest number: 170F
Signing time: Fri 17 Apr 2026 04:00:53 +0000
Manifest this update: Fri 17 Apr 2026 04:00:53 +0000
Manifest next update: Sat 18 Apr 2026 04:00:53 +0000
Files and hashes: 1: bLRsbjwrHl85CS_7pV5-UUKmgDU.roa (hash: wRWPjMaqEtjkWAV9xCnB4Aq9mP2pz2n/Qg6SuBrxsSE=)
2: sdLmgf8j3d89UXhY4cZKHa0phyk.crl (hash: IRPNSTUpsT7LavLr5YzWpMI52BzZ12tMVHSp/bB7fko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:4a:6a:d1:20:b2:2d:c4:24:a2:c6:c0:68:22:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d2e681ff23dddf3d517858e1c64a1dad298729
Validity
Not Before: Apr 17 04:00:53 2026 GMT
Not After : Apr 18 04:00:53 2026 GMT
Subject: CN=5c309eebeb11aaef07c62cb6b274017c513de3f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:98:c2:d4:e3:9f:e5:33:8a:95:23:aa:59:2f:
12:73:75:a4:ce:d6:52:b7:b8:05:bd:ba:1e:11:c8:
c2:96:7d:ba:50:ed:ea:d4:1b:c2:3c:20:69:3b:62:
37:6d:69:5c:06:8f:07:b9:64:5e:32:6a:9d:69:94:
e1:6d:60:c2:ef:c0:96:03:1c:0c:80:c5:fe:41:5e:
ac:73:53:53:ac:e3:13:75:7d:68:8c:10:de:1f:1a:
b4:31:04:4c:20:f1:b2:0a:e2:0d:18:2b:32:13:fc:
f5:2b:ce:98:fb:57:02:e3:09:10:ad:fa:4f:11:64:
34:7a:8d:2f:59:23:25:e4:09:77:f0:1a:8b:0b:cd:
a6:0b:9c:e8:24:35:b2:f1:8d:df:1b:f4:3c:cf:f1:
e6:39:e8:52:29:b3:e5:01:4c:be:c5:a1:d5:6a:5c:
82:03:d3:a8:90:cc:72:90:dc:11:90:79:67:f6:5d:
d8:38:b5:61:b4:a7:44:e6:d7:20:52:bd:c0:2f:25:
5f:eb:f6:bc:80:4f:ba:34:b9:b1:86:1a:5f:a8:62:
49:bb:cc:da:62:17:29:be:9e:8e:fd:27:b0:15:2e:
61:53:7a:ef:bb:92:3b:09:49:b8:30:dc:73:ab:27:
e8:41:f5:86:02:e0:9a:6c:32:36:e8:af:68:03:93:
47:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:30:9E:EB:EB:11:AA:EF:07:C6:2C:B6:B2:74:01:7C:51:3D:E3:F4
X509v3 Authority Key Identifier:
keyid:B1:D2:E6:81:FF:23:DD:DF:3D:51:78:58:E1:C6:4A:1D:AD:29:87:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sdLmgf8j3d89UXhY4cZKHa0phyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/d568ed-1780-4d60-a6f7-5a8360dea3a3/1/sdLmgf8j3d89UXhY4cZKHa0phyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:24:2a:9b:31:31:20:8e:69:27:52:5d:ca:b8:b2:7b:4c:67:
9a:b0:1c:90:47:03:52:fc:c8:10:45:33:0d:05:18:d3:4b:27:
22:cb:bc:6f:2e:cf:6b:63:b6:35:07:a5:1c:a7:85:09:e7:a2:
2a:28:1d:0c:9f:b8:da:79:40:94:af:df:2d:36:8d:e3:8e:c3:
0d:99:b2:ac:61:1d:fa:0c:d7:84:12:a2:95:e6:57:c3:62:01:
af:c7:a6:5b:8c:36:94:68:37:8a:b2:b4:32:c3:bc:2a:e2:f0:
7e:8d:e1:60:17:89:e1:d3:59:39:1a:11:15:64:ce:a9:6d:a1:
c9:43:3a:14:36:4e:9b:fa:c7:92:43:08:40:08:ab:33:6a:ae:
6a:6b:80:64:d0:4b:d6:e3:2a:88:aa:8e:ac:28:bf:5f:08:d3:
d7:a4:12:17:9f:20:f3:4e:ab:8c:f3:1f:d3:c3:9c:5b:90:b4:
93:d4:61:47:02:55:1a:0e:1f:21:1f:4d:b1:53:20:d1:a4:43:
30:df:b8:59:e8:5a:da:9a:12:3a:e7:91:78:0b:06:ff:3b:9d:
71:1c:6c:eb:fd:78:e7:6c:83:e0:0f:71:5d:56:1e:62:89:53:
8e:7c:f8:b5:ac:be:8a:b2:84:ba:de:47:c5:19:ba:f9:7c:23:
78:45:f2:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:59:34 2026 by rpki-client