Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json)
Hash identifier: LLqUrpqKGThJo03KpvWOq+Lpap2HlAD3P4kE/5n/iEI=
Subject key identifier: B9:C6:1F:7B:69:10:25:90:0F:83:FE:D5:AB:BD:A9:35:A5:EC:6D:82
Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Certificate serial: 019CAA8F8FE9197E06C9A72AA83EB83C67BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
Manifest number: 182F
Signing time: Sun 01 Mar 2026 18:01:01 +0000
Manifest this update: Sun 01 Mar 2026 18:01:01 +0000
Manifest next update: Mon 02 Mar 2026 18:01:01 +0000
Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: ncGsq9qu68mLk1/l4r478kvCyy7sQRNrxbkR8c71scA=)
2: r_1SBfNhdBcm7JVeR9X_A84AJes.roa (hash: 5FQO7eCKudZ+J7HgNfZUcYEMcJXj0nI8UpKfM1ybpwI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:8f:e9:19:7e:06:c9:a7:2a:a8:3e:b8:3c:67:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388
Validity
Not Before: Mar 1 18:01:01 2026 GMT
Not After : Mar 2 18:01:01 2026 GMT
Subject: CN=b9c61f7b691025900f83fed5abbda935a5ec6d82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:64:57:69:d5:88:75:ef:64:6a:b0:f4:c3:78:
64:ca:50:dc:bb:f6:18:99:fc:0e:d5:15:61:ec:6e:
52:8b:ac:a8:71:b1:09:76:56:cd:8c:b8:7d:b8:12:
42:a7:54:09:95:93:b2:3f:4e:03:27:26:c2:24:f6:
58:db:6d:a7:44:86:1d:a6:9b:07:5a:79:31:57:27:
93:e0:5a:fa:76:54:68:2c:54:70:75:8a:fe:b3:d7:
71:e3:2f:bc:1c:c1:95:cb:50:82:72:ed:a8:5c:d1:
c9:5b:c9:32:da:80:3d:a1:25:72:d6:2b:2f:1e:a9:
77:2b:69:ff:03:58:32:25:8b:a3:c7:d7:bc:21:31:
b4:db:03:ed:d9:b3:a2:bd:fb:cb:a1:9f:97:b8:39:
1a:3b:ad:1b:23:34:cd:f1:0a:5a:1c:29:d8:e6:e3:
e6:5c:d1:ab:2a:a9:6a:4b:47:2b:a6:b3:6a:6d:3d:
fd:a4:34:46:77:e7:fd:e3:df:9e:a6:d2:bc:0a:33:
7f:b6:be:93:77:38:52:f8:e5:a9:04:ab:2b:3c:82:
d4:ff:17:74:c6:1f:2c:25:b3:95:d0:c0:cd:d3:77:
3e:40:43:39:42:9a:75:c6:66:48:28:ad:7e:9d:81:
42:a6:1c:c0:5c:c7:d6:37:9a:fa:7c:7e:d1:d9:d6:
4c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:C6:1F:7B:69:10:25:90:0F:83:FE:D5:AB:BD:A9:35:A5:EC:6D:82
X509v3 Authority Key Identifier:
keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:15:0a:38:ab:d4:94:52:f5:66:50:01:dc:05:43:b4:fd:a8:
8e:dd:de:dc:52:a1:c8:1e:93:28:7f:1f:45:68:9d:87:84:ed:
1d:a1:82:cb:71:f4:88:40:d8:9d:55:10:f5:15:30:93:64:13:
11:f9:66:a8:bb:2e:eb:ea:03:7c:8c:18:97:d7:b5:92:b8:88:
63:17:e4:77:31:a9:0d:e2:1e:9f:80:11:a0:a0:52:19:54:8c:
82:94:ed:b4:b6:10:88:1d:80:ab:3b:f4:fc:d6:80:36:ec:75:
d4:a3:68:7a:a6:f4:f8:d8:16:63:2d:57:80:7f:fd:50:06:b8:
28:c5:c7:6a:2d:fb:c5:34:b9:e4:2f:ea:cf:9d:25:dd:b4:1c:
92:d2:bc:56:a3:18:1a:73:51:53:0c:ad:ef:3c:4f:15:c9:3d:
80:c6:39:75:c9:79:c9:b5:96:6f:71:68:17:cf:60:f0:6b:16:
21:90:b6:7f:f1:5a:d5:75:58:20:90:83:2b:10:56:e0:81:f2:
45:1a:c7:56:a1:4e:7e:f3:f0:85:ab:43:69:71:9f:c5:a3:b2:
8c:18:11:22:a1:fe:49:ea:25:be:41:89:a2:12:51:4f:09:53:
4e:14:70:65:6b:b1:cc:0c:0a:20:c7:ee:b9:ff:00:17:bb:bb:
de:cf:fa:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyqj4/pGX4GyacqqD64PGe6MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDQ5ZjgwNjk3ZmUyZTJkOTdiNTkxYWQ1YjkxNTgwNTU1YTQ0
ZDAzODgwHhcNMjYwMzAxMTgwMTAxWhcNMjYwMzAyMTgwMTAxWjAzMTEwLwYDVQQD
EyhiOWM2MWY3YjY5MTAyNTkwMGY4M2ZlZDVhYmJkYTkzNWE1ZWM2ZDgyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3WRXadWIde9karD0w3hkylDcu/YY
mfwO1RVh7G5Si6yocbEJdlbNjLh9uBJCp1QJlZOyP04DJybCJPZY222nRIYdppsH
WnkxVyeT4Fr6dlRoLFRwdYr+s9dx4y+8HMGVy1CCcu2oXNHJW8ky2oA9oSVy1isv
Hql3K2n/A1gyJYujx9e8ITG02wPt2bOivfvLoZ+XuDkaO60bIzTN8QpaHCnY5uPm
XNGrKqlqS0crprNqbT39pDRGd+f949+eptK8CjN/tr6TdzhS+OWpBKsrPILU/xd0
xh8sJbOV0MDN03c+QEM5Qpp1xmZIKK1+nYFCphzAXMfWN5r6fH7R2dZMEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLnGH3tpECWQD4P+1au9qTWl7G2CMB8GA1UdIwQY
MBaAFEn4Bpf+Li2XtZGtW5FYBVWkTQOIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUt
MWE2NGE4MDc3YjE0LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUtMWE2NGE4MDc3YjE0
LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAORUKOKvU
lFL1ZlAB3AVDtP2ojt3e3FKhyB6TKH8fRWidh4TtHaGCy3H0iEDYnVUQ9RUwk2QT
EflmqLsu6+oDfIwYl9e1kriIYxfkdzGpDeIen4ARoKBSGVSMgpTttLYQiB2Aqzv0
/NaANux11KNoeqb0+NgWYy1XgH/9UAa4KMXHai37xTS55C/qz50l3bQcktK8VqMY
GnNRUwyt7zxPFck9gMY5dcl5ybWWb3FoF89g8GsWIZC2f/Fa1XVYIJCDKxBW4IHy
RRrHVqFOfvPwhatDaXGfxaOyjBgRIqH+SeolvkGJohJRTwlTThRwZWuxzAwKIMfu
uf8AF7u73s/6ig==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:07:00 2026 by rpki-client