Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
File: sxU2q-49e1S4MDubxpqKq76XAOQ.mft (raw, json)
Hash identifier: hpOf1YL4cH2843g7Gjj1CL0QvYK2zjUCb0sTW4FYjfY=
Subject key identifier: 59:A1:4C:38:0F:44:E2:B7:F9:36:CA:71:C5:03:21:5F:9E:AA:F9:82
Authority key identifier: B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
Certificate issuer: /CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Certificate serial: 019D9A070EE694A6508C9E7652E0A80643E3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
Manifest number: 0AD7
Signing time: Fri 17 Apr 2026 06:00:46 +0000
Manifest this update: Fri 17 Apr 2026 06:00:46 +0000
Manifest next update: Sat 18 Apr 2026 06:00:46 +0000
Files and hashes: 1: AZQrl-Fp_XZDQj5jRrIIFtOdVJY.roa (hash: kcWKwgXv8rCa1D22N2vYzSu4ZKjgkLNHlxiOMaTJr0g=)
2: sxU2q-49e1S4MDubxpqKq76XAOQ.crl (hash: 3mlqIScrO5xPCOYj4NaGlNv+kdDdxBiBHKvFqsVJaug=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:0e:e6:94:a6:50:8c:9e:76:52:e0:a8:06:43:e3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b31536abee3d7b54b8303b9bc69a8aabbe9700e4
Validity
Not Before: Apr 17 06:00:46 2026 GMT
Not After : Apr 18 06:00:46 2026 GMT
Subject: CN=59a14c380f44e2b7f936ca71c503215f9eaaf982
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:f7:2c:f1:4e:a3:71:d7:0a:9f:4d:14:c6:02:
62:48:27:56:50:bf:d4:ae:57:77:d1:a3:fd:05:f6:
de:c9:af:1b:b7:ae:be:b6:24:35:f1:f4:12:40:2d:
ac:84:1c:58:ea:59:92:a3:08:a7:b3:da:7b:20:b6:
68:0d:43:7b:fb:19:9f:7f:c5:49:e1:2f:92:1f:88:
b7:1f:4c:cc:4e:d2:54:c3:09:35:48:d1:01:af:79:
cb:dc:41:fc:9a:14:ed:cf:90:10:c3:4e:1c:c5:25:
78:36:92:cd:9e:a4:45:c2:fd:e7:2a:55:da:aa:f4:
cb:b2:73:ab:bd:13:2e:7a:7b:2c:26:9d:80:ce:0f:
2c:09:a6:f1:31:99:d8:63:ce:e7:b3:3f:1a:1b:96:
68:78:8f:37:39:fd:59:22:75:b2:88:b8:9c:93:c4:
ee:e3:0b:d4:7f:02:f6:1f:94:ac:2e:42:b1:b5:d1:
f5:fd:3a:83:76:02:5a:75:ff:68:52:d7:b1:4e:3b:
4c:d4:b6:7c:68:ab:b5:f3:14:94:8a:ea:14:b9:b4:
07:29:4b:87:e7:2a:82:fe:60:ab:a1:da:86:41:db:
2b:64:6a:19:67:41:12:20:09:02:de:92:93:0e:94:
60:29:2c:8c:27:80:af:4b:86:b0:ad:f8:11:22:fc:
68:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
59:A1:4C:38:0F:44:E2:B7:F9:36:CA:71:C5:03:21:5F:9E:AA:F9:82
X509v3 Authority Key Identifier:
keyid:B3:15:36:AB:EE:3D:7B:54:B8:30:3B:9B:C6:9A:8A:AB:BE:97:00:E4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sxU2q-49e1S4MDubxpqKq76XAOQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/dcf32f-326d-4e40-85a3-ccc877b5a375/1/sxU2q-49e1S4MDubxpqKq76XAOQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:f4:3c:25:4f:97:c9:e9:12:6d:19:03:f4:ea:d8:86:02:63:
3d:d1:86:11:6e:6b:9a:a3:c4:fe:b6:f3:9e:8d:c2:c9:e6:95:
9c:8e:f1:70:c1:ba:ab:d3:36:bb:95:cd:ed:45:08:13:d2:91:
5e:4e:39:39:d6:15:25:23:4a:4b:ae:99:d3:fc:df:cf:5d:50:
1a:f7:5d:bc:40:7c:7d:25:27:dc:ee:8e:68:4c:a1:c8:b3:c6:
5b:65:eb:12:67:19:1d:16:5a:eb:d5:a5:32:96:8f:55:e1:7f:
f8:45:91:ce:4b:04:ab:df:04:32:59:66:b1:d7:67:6f:9f:c5:
22:1c:12:50:e4:cf:3e:f0:8d:d2:64:08:47:e8:a5:b1:bc:9d:
71:99:ef:44:ea:94:fb:cb:82:9e:2e:3e:98:d7:f8:86:1f:72:
1d:c1:0a:22:bf:04:72:e8:a2:ea:5e:cb:85:08:32:6b:e8:72:
e9:63:84:bd:65:25:97:1a:64:5f:d4:d7:f9:59:ff:17:cf:5b:
41:c8:eb:02:8c:c5:13:2a:b9:e5:c0:e5:c3:ed:f1:92:d5:a3:
06:06:d0:0b:e3:eb:d3:bd:6f:9a:9d:90:3b:e9:11:1d:95:d0:
4f:48:8d:db:7a:47:fe:a1:f3:ef:16:01:85:40:7d:6a:99:37:
2e:33:87:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:46:49 2026 by rpki-client