Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json)
Hash identifier: keRl34l7cHSsOGtc3SCbkt2KG3jJRf5fdZjlZAVfgmA=
Subject key identifier: DE:85:88:7A:11:4E:33:58:0B:AB:1D:35:CB:69:9C:5D:CB:AF:F8:0B
Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549
Certificate serial: 019D99CFBBF6824EB28CC4AFFE7F5582AE5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
Manifest number: 181F
Signing time: Fri 17 Apr 2026 05:00:21 +0000
Manifest this update: Fri 17 Apr 2026 05:00:21 +0000
Manifest next update: Sat 18 Apr 2026 05:00:21 +0000
Files and hashes: 1: 9hTsswgUXOfKzK86jh8sw9PnVRQ.roa (hash: VUMPgbx8iNcl27+3ad2ddOknvW8bTIH2c1IPAK3gQHk=)
2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: MmRhNco3qzP1Rb8CYwLUpj+h1aRZvaSb30MdGJfIUog=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:bb:f6:82:4e:b2:8c:c4:af:fe:7f:55:82:ae:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b20663583a8189cbeaac88d438767997b1125549
Validity
Not Before: Apr 17 05:00:21 2026 GMT
Not After : Apr 18 05:00:21 2026 GMT
Subject: CN=de85887a114e33580bab1d35cb699c5dcbaff80b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:b9:c5:3a:e2:a0:e3:10:f4:22:3c:c1:0f:c4:
55:12:1f:de:8b:87:3d:52:7d:0b:22:2f:27:0a:36:
9c:7d:2b:23:06:ff:1c:c5:d1:83:c0:10:24:a4:96:
6d:19:38:37:47:f7:eb:8d:80:1d:19:61:42:89:a6:
d1:9f:14:6a:3b:d3:46:ea:08:41:59:0b:01:e9:cf:
9e:cc:2b:6e:3a:ae:61:4d:39:da:84:87:8b:a9:32:
bd:e6:f3:3e:b7:a4:f9:31:1c:d6:45:e4:24:03:57:
11:08:e3:e3:41:ea:ba:9c:f8:53:36:61:54:0c:f0:
2e:3b:d7:f1:65:6c:27:dd:cc:43:34:3f:62:f7:d1:
de:bb:18:08:71:ad:b6:54:3f:df:71:19:f2:dd:ec:
12:0e:6f:f7:e1:a6:41:da:9f:30:4c:a5:94:48:4f:
d2:de:99:49:55:d2:35:b6:ef:1f:a4:8e:b4:aa:0e:
af:fa:2a:7e:68:b1:67:d5:ac:b4:fb:65:ca:86:88:
31:8c:6a:5b:50:5e:0e:25:ed:db:ff:c7:32:2c:c7:
c0:b6:67:6a:35:58:f5:a0:4b:2c:7d:30:65:92:1b:
40:c9:37:05:37:99:13:ca:11:95:1e:b3:76:33:e9:
f6:90:36:91:04:a5:2e:50:5f:cf:c2:3e:e1:9e:cf:
73:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:85:88:7A:11:4E:33:58:0B:AB:1D:35:CB:69:9C:5D:CB:AF:F8:0B
X509v3 Authority Key Identifier:
keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:22:68:b8:55:3e:6e:92:df:33:26:e4:30:f6:c7:f4:85:92:
b6:c3:e7:4b:b8:43:b6:54:1d:17:69:b9:03:af:c8:de:0e:6e:
4c:d9:27:ae:9c:c2:d3:53:dc:5c:e5:92:9a:ac:ff:54:00:0f:
dc:c5:06:fe:c1:cc:2e:fb:7f:df:78:ec:34:51:4e:6f:d6:c8:
6a:e0:fb:b1:18:6e:28:a0:0e:97:d5:1c:18:d0:47:9a:07:9f:
8c:45:cb:b7:17:96:f2:74:1b:76:c7:63:11:9b:5d:93:fa:64:
ff:d8:d8:74:09:5a:3c:f4:cf:68:e1:e5:d9:24:8b:ac:2e:ce:
c2:22:4b:f1:c8:4a:0d:35:90:11:fe:08:d4:0c:f1:8e:cd:b1:
58:83:5d:f6:5d:de:eb:90:b9:1d:87:52:1d:36:4a:13:23:be:
76:93:ae:69:13:a2:a1:3e:b4:e3:81:e6:8e:cd:d6:66:26:2c:
8b:7a:44:52:17:88:10:3a:10:36:2a:98:87:f6:f9:a0:18:af:
b0:cd:e0:ee:6b:98:9b:fb:54:b1:a3:c0:a4:9f:2c:7b:6c:43:
c2:4d:85:be:95:3c:2c:70:27:76:68:3e:05:21:bb:39:40:53:
07:da:e1:90:1a:45:82:a9:50:1e:18:2f:79:8a:c9:78:5b:f8:
34:eb:82:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:09:56 2026 by rpki-client