
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier: rl3gApsg/inBTz77Q7BfrtHAxUQIY3drc6sbmxGq810=
Subject key identifier: FE:89:15:01:A3:2D:F9:BD:DB:DF:55:B7:02:51:59:2E:AA:6E:3D:B7
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial: 019CAC7DEEB1B834B6A543304DBB7720D38D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number: 1830
Signing time: Mon 02 Mar 2026 03:01:00 +0000
Manifest this update: Mon 02 Mar 2026 03:01:00 +0000
Manifest next update: Tue 03 Mar 2026 03:01:00 +0000
Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: MAoQuvH9Lm34prVBiCd/G6UbL22FFr9Akcz/g/5vf9o=)
2: r_1SBfNhdBcm7JVeR9X_A84AJes.roa (hash: 5FQO7eCKudZ+J7HgNfZUcYEMcJXj0nI8UpKfM1ybpwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:ee:b1:b8:34:b6:a5:43:30:4d:bb:77:20:d3:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Validity
Not Before: Mar 2 03:01:00 2026 GMT
Not After : Mar 3 03:01:00 2026 GMT
Subject: CN=fe891501a32df9bddbdf55b70251592eaa6e3db7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:86:55:d9:81:f2:6c:70:11:43:8b:f6:e3:48:
a8:79:90:1c:6b:f1:75:fd:8e:d7:8f:05:12:3d:59:
42:06:6e:4c:cb:af:04:44:46:29:4b:ab:82:c5:35:
4a:c9:d3:1b:8d:ea:8c:8b:60:96:d8:f6:94:7b:3a:
b3:ae:e3:f2:3e:72:c7:6c:32:f2:07:6f:bd:75:c5:
48:21:c7:0a:53:90:7a:0a:1c:28:ad:df:a3:cf:d4:
99:f9:92:be:53:50:fc:32:7b:49:4a:1b:85:4f:aa:
46:d5:07:de:25:2d:a5:5f:18:33:ae:53:27:14:51:
38:ae:16:b9:97:b9:90:1b:06:0c:c1:50:94:73:bc:
96:96:ca:b7:bb:e3:e4:ff:28:ea:8f:b9:f0:ba:81:
3c:bd:92:fa:a9:7c:f0:b7:84:89:21:2f:0b:75:6e:
1a:6c:38:7d:47:98:62:7f:60:67:92:ef:2d:70:14:
7d:9a:ed:1c:19:e2:ef:d4:36:a7:7b:f8:59:7a:80:
c2:29:2b:ee:c5:c6:4e:29:2b:69:32:6d:68:bd:16:
1b:9c:7d:3d:e0:db:80:aa:12:dc:da:83:69:ce:9b:
aa:ab:76:43:bf:2c:ce:70:06:10:31:ad:46:a1:cb:
39:76:0e:6f:42:02:46:30:ba:28:97:d9:0d:77:00:
e0:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:89:15:01:A3:2D:F9:BD:DB:DF:55:B7:02:51:59:2E:AA:6E:3D:B7
X509v3 Authority Key Identifier:
keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:9d:f7:24:d1:82:83:60:12:0c:95:18:ee:ad:14:30:b3:39:
81:7e:45:cd:15:b4:b8:67:11:21:86:7b:81:ef:f1:df:46:fd:
24:04:be:5c:92:11:53:ca:35:6a:f3:60:df:d6:d6:6e:bc:de:
c3:e2:1e:89:63:fc:a7:d2:0a:f3:6c:91:69:7b:f6:7f:16:30:
cc:7f:91:7b:1c:de:37:66:b1:72:a2:a8:87:f4:5f:fb:9b:be:
b6:59:13:18:9f:0a:55:8a:7d:3e:4f:2f:ca:75:d3:e0:49:8a:
31:64:55:70:7b:14:b4:50:7e:5a:ae:0a:7b:03:ad:e2:8d:07:
b7:7b:f5:38:dc:54:df:19:64:85:3d:24:3e:6f:3b:2e:ee:d2:
81:36:87:eb:43:f4:d8:38:a5:8a:71:be:91:43:79:42:09:cd:
7e:83:39:f1:98:ea:08:a8:e5:05:a1:d4:a5:b5:a5:64:7b:13:
4d:f5:da:35:02:31:7e:cb:98:55:13:e6:c9:88:80:9c:30:8f:
fb:56:d3:f4:4f:94:b9:f9:c5:07:d4:75:9f:61:17:55:6b:62:
ba:ad:06:49:14:34:e0:1d:7d:1c:8d:19:df:23:4f:97:b9:2f:
3d:de:45:f2:55:75:ae:7e:b8:d8:c0:21:89:e5:2d:b0:11:0e:
27:e3:80:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:19:52 2026 by rpki-client