Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: +0bCnDW0bIyVFf1917a2cTc1JThX/othCcZI9HDl8M4=
Subject key identifier: 97:55:98:BF:3C:69:49:72:DC:4D:DF:AA:90:64:73:FD:22:A8:2F:EB
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019EBFFF0E559AC40EE7C582B22963396D0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 0470
Signing time: Sat 13 Jun 2026 08:00:23 +0000
Manifest this update: Sat 13 Jun 2026 08:00:23 +0000
Manifest next update: Sun 14 Jun 2026 08:00:23 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: rZSoWuSkt8kSYObHVPGNLYGmt+9bdyfRdnCZX59Xei8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:ff:0e:55:9a:c4:0e:e7:c5:82:b2:29:63:39:6d:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Jun 13 08:00:23 2026 GMT
Not After : Jun 14 08:00:23 2026 GMT
Subject: CN=975598bf3c694972dc4ddfaa906473fd22a82feb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:13:ac:73:93:8c:4d:6d:6e:52:6f:bf:58:52:
67:8b:77:90:5e:f7:2f:d8:f1:cd:80:0a:1e:6d:dc:
95:ef:03:d4:e3:42:52:36:9d:af:8f:d4:93:b3:fc:
26:21:3d:3b:9d:38:ec:c8:55:b9:e6:87:ad:97:50:
48:16:d9:79:23:2d:c3:55:14:55:2d:41:c2:c3:19:
06:d4:72:b2:1d:bf:b8:f6:91:94:05:7f:07:cf:d4:
7f:73:83:6e:4a:70:a6:81:ce:9a:ec:4f:d1:f3:54:
96:14:99:e6:61:67:4a:31:4b:f3:31:9f:e0:e0:be:
57:a7:2f:04:09:00:48:bb:68:28:97:4e:53:76:65:
50:92:8b:fa:ad:43:19:31:25:d6:9b:5c:7f:3e:3b:
87:20:6b:d8:c2:79:b7:0e:a7:5e:54:ab:14:cf:86:
23:7f:b7:cf:38:7f:a1:8f:a4:6e:78:0d:4f:27:31:
6d:d2:34:29:c6:ff:44:a1:62:4e:9e:c9:f0:dc:c1:
b7:b4:5b:06:5e:db:0c:76:c4:17:1f:87:56:49:82:
cb:1b:4a:6a:15:07:c1:35:76:02:41:9a:c7:d8:66:
1d:db:c4:67:d6:8b:5c:fe:ba:b6:71:9f:b0:fc:73:
9b:2a:10:36:84:e6:31:d9:e7:8e:d4:67:f3:c7:48:
4d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:55:98:BF:3C:69:49:72:DC:4D:DF:AA:90:64:73:FD:22:A8:2F:EB
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:45:53:69:d4:2a:19:41:f3:ac:78:73:df:e5:9d:5e:d6:39:
e6:85:91:8b:7d:3f:96:2c:c0:3e:5a:05:5b:1a:94:a0:73:a4:
b3:9e:36:13:0f:1c:3f:87:4b:97:c7:c1:a3:9b:cf:11:83:e0:
9c:c8:4e:7d:bf:4d:cc:57:1a:a1:af:77:6e:c0:b4:81:6a:64:
02:7d:1c:62:ad:f6:52:3c:0a:76:8a:5d:04:2c:f8:2a:06:e4:
1f:e0:22:5d:07:5d:1f:3b:24:12:50:3b:a4:10:e2:3c:02:35:
42:0e:85:a6:62:2f:73:41:04:32:c1:79:85:81:98:3d:47:7c:
e5:aa:7f:7e:09:06:70:d9:50:0c:29:10:cd:96:f3:1c:be:08:
c6:4e:bf:9f:5d:c7:40:77:a4:7e:3c:0c:5a:0f:8f:eb:f9:af:
74:c4:49:51:3c:5a:24:ca:7c:f9:f1:be:c7:cf:6e:fa:3a:5b:
f7:6f:63:27:8c:94:48:53:2f:59:bc:b0:32:aa:72:50:47:3e:
01:59:a5:4a:47:92:23:b4:e1:77:59:9a:b1:82:3e:3c:e4:ff:
69:94:5b:47:8b:d0:4e:46:30:78:e9:2c:87:63:dd:d4:32:db:
77:d0:59:a7:07:13:07:c1:54:cb:21:61:5b:5f:37:a2:3c:1b:
d5:52:10:72
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:30:39 2026 by rpki-client