Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier: QWXKs0+5pzgf3sPkjBF8oecpFsnH9fhV8iQftIKAMGU=
Subject key identifier: 00:4D:99:9C:AA:E0:23:FF:CB:3C:D4:65:12:57:7B:73:3C:36:2F:E6
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial: 019D98184AD0D2CC3FC9440F37AC17168E66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number: 18AA
Signing time: Thu 16 Apr 2026 21:00:21 +0000
Manifest this update: Thu 16 Apr 2026 21:00:21 +0000
Manifest next update: Fri 17 Apr 2026 21:00:21 +0000
Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: 5PM9ODIoicA1gaVRwkur9RwuiGgz3hQ/0AdCEIYnlAU=)
2: r_1SBfNhdBcm7JVeR9X_A84AJes.roa (hash: 5FQO7eCKudZ+J7HgNfZUcYEMcJXj0nI8UpKfM1ybpwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:4a:d0:d2:cc:3f:c9:44:0f:37:ac:17:16:8e:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Validity
Not Before: Apr 16 21:00:21 2026 GMT
Not After : Apr 17 21:00:21 2026 GMT
Subject: CN=004d999caae023ffcb3cd46512577b733c362fe6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:fc:9d:ac:3e:44:82:ba:66:32:ed:fe:a5:65:
42:53:8d:6f:29:a3:4f:1b:4c:53:71:b6:72:8b:d4:
c3:49:eb:15:70:b1:ea:e8:09:89:fa:42:4b:b8:42:
1b:65:6c:f2:8c:0d:a8:45:48:d1:96:06:61:fe:c5:
64:a4:bc:48:d7:ef:21:65:67:87:5d:3e:4b:bd:85:
90:ba:1b:8e:71:f9:1f:6b:a5:a1:8d:9d:c1:30:f4:
0f:3b:94:98:5a:a7:c6:a4:40:8e:f6:ae:3a:71:96:
7a:43:22:ec:42:6a:bf:86:fd:8a:2d:c5:eb:00:55:
92:38:d3:2c:8f:ef:2b:b6:34:77:d2:71:90:21:50:
8a:69:ed:49:cd:3b:d2:d6:fd:22:50:c1:39:eb:e9:
70:75:fc:4f:03:79:73:ac:d1:c9:82:4c:5f:4d:c0:
d1:0b:47:1a:98:40:3d:85:8c:40:5c:f2:88:14:4a:
f4:34:07:ab:a9:03:28:c2:29:72:e4:64:10:43:5f:
6c:6e:c9:02:3a:99:47:e2:89:5a:5b:23:66:31:c8:
bd:6f:d3:a9:48:fc:e8:63:5e:06:ad:1e:3e:36:c8:
a9:63:0a:a7:97:9a:71:90:d7:22:42:37:2a:11:38:
75:85:31:3c:85:68:93:c1:cb:51:dc:ff:17:79:a2:
4c:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:4D:99:9C:AA:E0:23:FF:CB:3C:D4:65:12:57:7B:73:3C:36:2F:E6
X509v3 Authority Key Identifier:
keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:72:46:7f:02:99:ea:da:0b:cc:3b:c5:6f:a7:e5:f3:02:e4:
d2:05:9f:b5:23:8e:49:1a:97:e5:b8:ca:3d:5e:39:37:96:17:
86:e5:e9:b4:38:e1:92:bd:72:c1:ab:90:8b:b5:86:4d:ee:e5:
58:c9:43:54:b9:17:8b:3f:7e:53:61:08:33:40:2d:8e:fc:2a:
11:32:14:03:7d:68:03:67:b5:51:3f:11:cd:97:9f:6f:b0:0f:
44:70:26:c6:ca:7f:94:72:b9:41:5d:c3:cc:b3:83:c1:90:74:
1f:8e:c0:3e:4a:9e:a7:c2:76:d8:fc:f8:08:d1:ef:a3:2e:9c:
f4:b2:bc:c5:2b:51:d4:d2:f7:15:9e:ab:38:87:0e:f8:bb:b8:
70:76:0d:55:cd:87:f4:9f:93:6f:65:69:95:1e:e3:4a:c0:d9:
ac:83:16:04:ba:27:71:a4:36:7b:3a:0b:eb:83:ca:a3:a7:46:
31:ca:c0:b8:36:0b:ca:ae:18:bd:4d:a5:fb:04:d3:8c:df:6e:
d7:e8:1b:33:a9:d3:a7:a5:bc:c4:4d:e8:aa:5a:5d:03:82:82:
ce:4d:35:b2:c3:b6:d4:39:7b:16:07:04:d3:47:5c:51:19:dd:
9a:c1:ef:a8:00:86:08:3f:86:ae:18:b1:11:71:96:6c:bd:26:
4c:9c:9d:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:12:09 2026 by rpki-client