Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: L/I7k8XL7949ti44r9W90aeeCfV7ONW2y0kpXdyKFXo=
Subject key identifier: 2B:ED:5C:C4:11:89:05:52:19:C6:F3:24:8C:64:AE:03:75:5F:64:95
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019CAD90CC38A11CB93533131C8D37538745
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 08:01:13 +0000
Manifest this update: Mon 02 Mar 2026 08:01:13 +0000
Manifest next update: Tue 03 Mar 2026 08:01:13 +0000
Files and hashes: 1: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: DIz3Ywe+0i4EYEsG4eTzZhh9oPUJ33vc5E5pkXPKoZA=)
2: z1U74n3Bwqh9cLzRjWZYerB5n54.roa (hash: Odhjr9FDFuG6FvTw4sLHqZZzcsc3KTFEM336lZkm7Dc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 08:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:cc:38:a1:1c:b9:35:33:13:1c:8d:37:53:87:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Mar 2 08:01:13 2026 GMT
Not After : Mar 3 08:01:13 2026 GMT
Subject: CN=2bed5cc41189055219c6f3248c64ae03755f6495
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d5:7a:c3:ec:70:87:0b:14:27:25:e8:2d:17:
13:5a:88:d9:43:28:6e:0c:14:18:dc:5d:03:aa:b6:
c5:34:79:92:b0:b2:89:2e:15:70:00:82:8f:c7:f9:
ba:7e:f4:b8:4b:d9:3b:fe:c5:59:77:bd:9b:44:be:
49:1c:f2:56:f8:44:b6:49:3e:fe:e7:4b:52:0f:27:
75:8d:ed:de:88:0b:d3:bb:c8:85:6a:7d:38:ff:fe:
d8:2a:66:93:9b:7a:e6:dc:bb:70:bf:ed:01:97:24:
68:e9:11:98:0f:8f:f8:7c:c8:38:43:8b:c6:d6:d5:
71:2d:3e:df:75:2d:4c:0e:dd:8c:c1:9d:9d:94:db:
bf:6c:1c:fd:16:5f:d7:6a:3d:2d:4a:b2:54:9a:91:
3a:14:e0:d0:91:33:2b:1a:5d:68:aa:11:bb:48:c1:
5a:8b:47:01:f1:f4:d5:22:12:d3:ce:61:ae:6a:6e:
92:9f:08:48:1a:24:34:1e:b3:8f:fc:d8:3e:50:44:
d2:b1:c2:1e:df:19:16:e0:63:4c:44:52:b9:59:6d:
2c:32:33:05:88:c7:d9:a9:10:1a:e0:34:67:2b:7b:
9e:21:fe:84:70:63:e7:d1:e9:ae:6d:0e:73:dc:60:
8b:c3:e0:4e:66:70:89:b1:75:76:38:b5:db:7e:78:
02:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:ED:5C:C4:11:89:05:52:19:C6:F3:24:8C:64:AE:03:75:5F:64:95
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:ac:80:11:a7:f4:fa:1b:27:be:ca:ac:b9:50:01:bb:cf:64:
ce:58:80:f8:6d:fe:c5:2e:76:79:af:c7:b2:39:3e:4c:61:42:
13:29:fd:0c:6c:7b:ed:5d:76:5a:42:ed:77:48:09:ff:58:b0:
4c:86:e8:1d:58:2a:0b:52:19:8e:63:d1:88:70:ca:4a:0b:f8:
da:c4:fb:21:a6:3a:3f:2f:38:bd:b0:e4:c1:91:0f:3a:40:67:
2b:e1:32:0b:ef:b4:3f:ef:f6:ab:a3:b6:6a:31:7b:77:7c:ae:
3e:be:ba:c5:d1:9f:8a:db:b7:ac:9f:5f:16:4e:14:f7:ce:5c:
5b:b3:6c:67:11:c0:0a:51:9a:03:d1:53:8d:2e:87:de:b8:17:
67:5a:11:61:07:ff:db:a9:d3:44:dc:86:6b:7d:ad:de:39:60:
55:be:68:2f:8c:d8:7d:b3:11:0c:8d:b1:d6:9d:2b:01:7d:42:
0c:11:4b:0f:6e:e6:5d:07:39:01:f9:70:8c:d9:d5:07:5c:c6:
8e:8d:77:93:5e:d1:1f:a4:b4:e4:9e:9f:72:eb:01:2c:de:a0:
bd:dd:e6:a9:81:b4:c3:ae:e8:8f:b0:8d:59:89:25:38:d6:02:
ae:25:d5:71:e5:9c:d9:04:46:55:79:8f:f3:58:56:2e:69:1a:
a5:36:33:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 17:59:28 2026 by rpki-client