Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: k20RYbYUsL/U6Nd2dO1AIYGK62J5as7ONlREUD7QS4Q=
Subject key identifier: 33:19:91:01:F7:4B:40:10:AA:A9:87:D1:CC:06:88:D2:20:22:B9:BF
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019CAED9BFCA0326987E9C23ED195ABC1054
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 035E
Signing time: Mon 02 Mar 2026 14:00:31 +0000
Manifest this update: Mon 02 Mar 2026 14:00:31 +0000
Manifest next update: Tue 03 Mar 2026 14:00:31 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: yRYgneQ3W4MNMSet6ZvGr9+xEGAvsS/Ule/PeDJPfqg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 13:50:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:d9:bf:ca:03:26:98:7e:9c:23:ed:19:5a:bc:10:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Mar 2 14:00:31 2026 GMT
Not After : Mar 3 14:00:31 2026 GMT
Subject: CN=33199101f74b4010aaa987d1cc0688d22022b9bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:45:ab:d0:42:b7:2d:4e:4c:48:55:15:6b:31:
5a:c5:c4:9e:e0:04:30:2b:a1:d6:d8:de:d0:bd:b0:
08:5e:3e:5b:18:bf:d0:40:2f:3f:98:0f:f0:cb:bd:
90:9a:e3:66:c8:97:98:9a:fc:8e:ac:31:94:ed:c7:
08:2f:49:4a:ed:89:08:04:97:18:ad:08:b1:b9:a5:
47:db:1f:e8:93:35:50:39:9e:d4:78:50:41:b3:e4:
07:81:68:c6:ce:6a:af:87:ae:23:c3:43:ea:f0:59:
ad:90:8a:20:84:a6:45:aa:76:cd:82:12:7a:a8:32:
0a:32:a3:67:a7:f1:94:75:44:ce:59:e4:83:98:fa:
47:64:11:de:b4:ce:2d:22:12:aa:1f:91:47:17:4d:
2c:f6:f0:2b:18:b3:ce:e3:9d:55:60:be:6d:a6:f1:
a5:d2:e8:cb:fe:77:06:e3:18:8c:55:44:03:f9:ec:
55:5d:b4:00:6c:ae:6b:38:0a:5a:42:c6:f1:1a:a6:
6f:77:36:be:52:fc:03:e1:7f:65:6f:a4:03:46:63:
5a:22:05:95:b2:a6:bb:e6:bf:8c:d4:4b:26:ca:46:
e0:9f:69:92:2f:d5:08:cd:5c:fb:28:b1:53:84:1d:
1f:d0:2c:cb:c8:9e:2e:f2:50:09:cb:32:29:88:1c:
f9:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:19:91:01:F7:4B:40:10:AA:A9:87:D1:CC:06:88:D2:20:22:B9:BF
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:8c:6c:8a:bd:11:a3:f4:a4:e8:19:a0:03:1d:3d:9c:3b:1f:
d9:b8:25:97:3b:08:28:76:cd:07:69:13:ee:be:f0:d3:3e:f4:
ab:a4:e7:dd:0e:00:d5:f8:16:76:be:44:2f:4b:66:13:3e:88:
75:4f:40:f5:35:18:43:b0:02:3f:5d:81:fd:4f:4d:9e:a0:6e:
d6:d2:07:8c:73:6f:2e:8d:75:bc:72:e4:c5:89:87:5e:36:2e:
31:51:cc:90:14:0c:79:c9:8a:91:99:4c:52:9c:fe:f6:12:3e:
dc:e3:39:a1:5f:f6:fe:4a:89:6a:4d:25:1e:84:2b:34:1b:64:
cb:4e:ac:0e:01:a1:fb:61:7e:4a:22:d0:e2:ca:9b:de:f7:c6:
48:13:eb:14:35:00:33:f7:9b:e9:7e:4c:78:c0:cd:0b:dd:cf:
b2:a2:5c:33:b1:e4:c3:a4:e4:bd:af:2c:3d:10:98:31:56:6b:
df:93:81:1e:92:8d:85:b4:1e:7b:48:95:c6:d9:24:54:87:0d:
52:39:05:67:d8:9f:48:54:a7:a6:7d:21:2f:e7:d8:72:40:39:
bc:4b:4e:ed:d6:36:39:06:af:a6:d6:d1:b8:b2:bb:8f:ff:0b:
10:ff:0d:2f:ce:0c:04:77:cf:1d:6d:e8:e9:51:0e:10:82:a6:
2f:84:99:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:07:59 2026 by rpki-client