Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: 4uWS7Wio7bb/j0zXXtGvMFlCGZ+PyVJQegpSEfq3wec=
Subject key identifier: 0A:A4:95:30:49:DD:09:2E:EC:67:75:22:26:54:87:8E:76:D7:9E:C7
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019CACEBE2D6624F9393AC68CAEE3A1F5FFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 035D
Signing time: Mon 02 Mar 2026 05:01:05 +0000
Manifest this update: Mon 02 Mar 2026 05:01:05 +0000
Manifest next update: Tue 03 Mar 2026 05:01:05 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: tjbK4fhbeTIBw6HQTyx+2OFIXSz5F9t8oRT0qGN16rE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:e2:d6:62:4f:93:93:ac:68:ca:ee:3a:1f:5f:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Mar 2 05:01:05 2026 GMT
Not After : Mar 3 05:01:05 2026 GMT
Subject: CN=0aa4953049dd092eec6775222654878e76d79ec7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:0b:3c:25:ba:93:67:b7:7c:f9:15:85:bd:dc:
2c:fd:4c:11:9b:1f:c3:8d:ff:5c:6f:fb:c9:36:87:
af:8c:10:16:69:d2:11:c2:f1:15:35:7a:b5:4e:37:
32:67:f9:f2:55:4c:58:2d:7b:9d:f0:85:af:35:cd:
2a:66:4d:30:39:0b:41:82:16:83:f6:2f:3b:9d:48:
e5:c0:78:24:ad:22:f7:73:f4:b3:7e:95:ea:88:5d:
43:aa:a4:4e:83:60:ea:17:d1:91:1d:c8:c0:b3:09:
7f:8e:ae:8d:cf:d8:9e:33:5c:03:fd:14:0f:86:53:
3a:20:ed:c8:44:8e:f9:54:65:a5:d0:47:52:bd:e7:
a5:f8:64:67:16:07:71:6e:03:6c:ef:00:cf:de:7b:
2c:ec:2f:f5:65:32:b1:56:c1:68:b4:f4:01:58:50:
12:18:49:16:52:5c:16:bb:8e:b8:aa:8c:6c:a3:19:
6a:38:c7:7d:2a:c2:2e:bf:ba:af:61:cd:95:7c:64:
69:19:42:1d:8b:ec:1a:52:5f:8e:c1:dc:4c:46:94:
65:e8:87:a7:a5:e5:1b:06:be:25:6d:d5:f9:5e:d0:
75:c6:7f:3e:f7:33:68:8a:92:95:12:07:7d:1e:fc:
8b:ad:e0:e4:2b:8e:e5:87:e5:90:9b:b0:4e:f3:4b:
08:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0A:A4:95:30:49:DD:09:2E:EC:67:75:22:26:54:87:8E:76:D7:9E:C7
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:96:d7:79:02:a7:9b:c3:c9:77:1a:fb:8e:a4:af:d8:72:50:
00:1f:c5:04:40:ce:f4:7c:d6:fd:61:c9:04:a7:1b:e7:30:45:
74:1c:df:b4:21:6c:97:ea:37:92:42:cd:19:51:84:80:b6:e5:
57:dc:62:db:f3:07:ce:f2:29:ce:06:fa:1e:09:ba:69:ed:66:
6c:9a:55:bb:fd:c1:c0:e1:1d:91:bb:73:52:2e:95:eb:63:74:
cd:48:4a:3a:89:15:2e:25:14:47:90:8a:48:57:7a:f2:61:0b:
71:45:39:b8:ef:a8:b6:ca:54:e3:19:91:23:b6:f8:8c:b9:34:
45:85:0a:ff:50:33:e1:8e:42:68:45:c8:10:bc:c8:4d:44:d2:
37:c8:90:ef:91:1d:02:82:97:e4:1e:73:0f:dc:51:b4:35:95:
aa:c7:be:f8:c1:41:a8:ce:70:60:8e:ee:d1:78:66:c1:43:53:
20:56:9f:49:eb:38:0a:03:89:38:8d:7f:2a:be:73:a6:e3:8c:
2a:2d:f3:d8:6d:51:e4:9c:2a:3d:ae:ef:bc:88:b9:41:c7:3d:
2f:67:ff:1c:c0:38:8d:f5:3b:2a:c8:9a:ca:b0:2e:fc:ec:40:
1c:24:5c:4d:30:50:71:06:f4:14:ed:85:83:70:60:ee:c8:0a:
3b:63:a8:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 13:32:56 2026 by rpki-client