Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
File: sd-OADfxroL3viI1rmEsQBD2_pE.mft (raw, json)
Hash identifier: 7ME/IoyThWNm5LClBkjysCjYpl7KFDpuivSuiibdAA8=
Subject key identifier: C3:68:F9:D1:D5:B8:32:28:E4:C2:CC:97:77:ED:E4:84:9D:2F:02:40
Authority key identifier: B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
Certificate issuer: /CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Certificate serial: 019D9C637B60D56916326CC2E2E132306B2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
Manifest number: 03D9
Signing time: Fri 17 Apr 2026 17:00:58 +0000
Manifest this update: Fri 17 Apr 2026 17:00:58 +0000
Manifest next update: Sat 18 Apr 2026 17:00:58 +0000
Files and hashes: 1: 9TrF8CvIENAUqcixyxTQa2bps6c.roa (hash: 45f33UvxirhWF+GLCEMK1OB/89v95KaqtgcQX1BWw+8=)
2: sd-OADfxroL3viI1rmEsQBD2_pE.crl (hash: QF8X6s8t24wqC0toYx2odpy/Gh4dyiEIELVcNkONjZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:7b:60:d5:69:16:32:6c:c2:e2:e1:32:30:6b:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1df8e0037f1ae82f7be2235ae612c4010f6fe91
Validity
Not Before: Apr 17 17:00:58 2026 GMT
Not After : Apr 18 17:00:58 2026 GMT
Subject: CN=c368f9d1d5b83228e4c2cc9777ede4849d2f0240
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:9c:05:4b:f4:1e:f1:2b:7d:ec:04:66:6f:04:
0e:f7:69:51:e1:9a:63:56:20:29:d3:1c:b7:b5:c1:
ad:0a:c8:30:82:fe:0b:73:5c:b3:eb:82:e6:2d:e0:
2b:47:9e:03:76:59:60:11:cc:19:9a:00:e9:73:30:
5b:65:34:76:81:bc:bc:20:0c:c7:27:bd:31:cc:70:
d9:de:0c:6e:91:e2:fe:e8:3c:12:ed:64:47:8c:05:
8a:da:67:57:2e:6e:e4:3b:a0:12:97:7c:25:1e:26:
49:9c:71:cf:71:40:1e:7e:65:93:b1:e0:b7:2b:a3:
40:bd:18:80:30:21:10:97:7e:85:b1:ce:a7:56:01:
33:e9:c3:55:ae:05:98:c3:fd:21:da:d7:b9:d8:e3:
30:83:76:e1:ff:0c:39:c3:fa:24:cf:9d:4d:de:29:
33:70:81:6e:58:59:28:0b:c1:ec:6c:f8:18:28:d4:
3b:db:41:68:44:f5:6b:57:07:0f:0a:8f:ec:5e:cc:
9d:97:d5:3e:a3:67:26:d1:95:29:6d:a1:38:58:a9:
fd:4c:e0:f4:9e:1f:5d:5e:d4:51:98:d6:16:a8:3d:
c5:33:ff:66:4f:eb:4e:e9:20:a0:4e:61:97:0e:63:
df:df:a3:a6:51:e0:17:9e:f9:3a:65:13:fe:fe:ea:
61:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C3:68:F9:D1:D5:B8:32:28:E4:C2:CC:97:77:ED:E4:84:9D:2F:02:40
X509v3 Authority Key Identifier:
keyid:B1:DF:8E:00:37:F1:AE:82:F7:BE:22:35:AE:61:2C:40:10:F6:FE:91
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sd-OADfxroL3viI1rmEsQBD2_pE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/6b4a18-07bc-4353-b7ea-19ca50cf34ab/1/sd-OADfxroL3viI1rmEsQBD2_pE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:21:03:d6:d8:4e:1a:24:6d:07:ec:f3:67:13:5e:a4:8f:a9:
07:3f:a8:7d:e6:ec:0f:e8:4c:30:9c:47:29:a5:87:aa:7c:e1:
bf:31:10:b3:27:93:61:b7:4e:24:63:d0:e4:c8:59:bb:ba:5e:
d6:39:12:73:c2:67:10:28:89:a3:36:62:e8:68:32:98:0d:97:
e3:4c:2a:c2:34:46:ed:c5:da:f9:d2:8d:c0:5f:c3:c0:04:d9:
bb:fc:0b:61:61:46:84:14:80:51:8a:cd:f8:86:40:75:3f:7b:
6e:7b:dd:37:4d:9e:c7:b1:5f:cc:4c:93:42:fd:0f:a5:64:4d:
ff:64:14:e0:9f:96:5e:ae:9d:be:c3:e6:0a:20:03:37:97:c2:
66:4c:ec:81:89:87:73:6b:d4:6b:20:3f:6e:10:a8:b3:8b:53:
6e:cc:d0:49:88:b2:e3:d6:3b:6b:3d:3d:a9:b9:bc:fd:e8:e5:
ce:4f:b6:a4:de:81:8c:85:39:e4:db:c2:e6:03:6d:e7:0a:05:
64:59:59:bd:70:85:d9:ba:b6:07:53:bd:2a:d6:2d:f4:a3:cd:
fa:d5:da:5c:7b:dc:f7:56:c3:6c:87:5c:3c:35:74:3f:c5:25:
80:c9:f6:dd:a6:29:17:49:5f:9a:e8:b2:9e:3b:bd:e0:3a:ac:
0e:cd:ca:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:16:59 2026 by rpki-client