Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json)
Hash identifier: Cwk6CFenOIiarszn4Fmy7wbNKgWbu8u/Bcjrdhj+NtA=
Subject key identifier: BA:33:0C:A1:34:C6:A5:89:AA:B9:5B:37:C4:35:DE:4B:BA:99:24:AA
Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Certificate serial: 019D9D3EDEC47FF7BA562339AC44C03CCD29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 21:00:36 +0000
Manifest this update: Fri 17 Apr 2026 21:00:36 +0000
Manifest next update: Sat 18 Apr 2026 21:00:36 +0000
Files and hashes: 1: 9qwf6-Dqoc3yJJecKnCaJyAyhZ4.roa (hash: /C2CSaK00NB+/TpXiHAeWUhtWjQTZ45pzq0LkkZy9eA=)
2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: 6PqcUAo6WFG7bC87n/r03EcgMV52Q4lLbHhOuKDwafY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:3e:de:c4:7f:f7:ba:56:23:39:ac:44:c0:3c:cd:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade
Validity
Not Before: Apr 17 21:00:36 2026 GMT
Not After : Apr 18 21:00:36 2026 GMT
Subject: CN=ba330ca134c6a589aab95b37c435de4bba9924aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:f7:43:c8:9d:3e:d7:9b:38:0a:5c:59:9f:8d:
a4:f4:54:55:4e:6e:79:c4:72:9b:45:5d:8e:50:36:
18:fc:4d:df:76:c7:f3:8c:f1:c0:67:fc:9c:65:6c:
95:a1:37:0c:eb:8b:19:16:75:e5:2d:38:90:7d:e7:
db:85:16:66:fc:6f:b8:06:cc:53:a5:ca:04:61:50:
49:c0:03:1f:d7:3b:fc:05:1b:2f:6b:57:15:75:33:
24:42:c8:7d:ae:4d:60:13:71:3b:a3:28:57:e7:10:
1f:d0:b2:d9:bf:81:7e:d4:51:2b:c2:95:40:39:0f:
31:8b:00:8e:81:b7:94:6d:f2:43:b0:93:76:ee:e8:
37:14:ce:ec:7d:53:66:b0:88:e6:3d:79:55:05:71:
06:72:a7:82:b6:27:24:d8:8b:2e:07:19:7d:30:f8:
e0:07:8f:39:08:c2:fe:3b:38:22:1a:47:5d:1e:11:
46:44:e6:d6:0e:8c:83:2a:a8:1e:a3:a6:a5:76:95:
af:07:96:1d:61:16:14:c0:7d:54:b5:a6:b7:f7:f9:
cb:25:bc:bf:ae:47:ae:9a:be:7c:19:03:ab:b1:55:
a4:2e:a6:42:70:48:33:b6:25:c0:09:c6:69:cb:29:
7a:60:bf:83:13:a6:b6:32:a1:88:1f:89:74:8b:00:
95:81
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:33:0C:A1:34:C6:A5:89:AA:B9:5B:37:C4:35:DE:4B:BA:99:24:AA
X509v3 Authority Key Identifier:
keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:ae:26:fa:a4:53:4d:3a:ec:b6:2e:e2:07:38:8a:48:be:f6:
3c:12:52:f9:f1:4f:f3:6b:0c:cf:fe:84:3c:0c:00:70:bc:39:
86:42:11:6c:b8:dd:8e:bf:8c:68:8d:26:65:ef:4e:dc:1b:63:
a0:89:9d:4b:25:06:1a:c5:1f:9d:cf:15:b2:dd:ed:3b:1b:ca:
ed:11:19:8e:ce:31:37:bc:ef:2f:2b:d3:7f:5e:86:d1:bd:13:
7c:ae:9c:69:76:13:b1:d0:1b:b9:77:ca:3f:3c:c2:6a:2b:73:
53:5d:70:57:b5:0e:2e:88:f0:75:54:ab:39:5a:fa:f6:0e:85:
72:48:d1:0f:8b:d1:60:95:92:f4:2d:13:bb:3b:c9:99:ae:9e:
0a:c7:02:43:74:c4:09:f9:bc:2f:84:6c:f0:04:32:56:cf:a5:
6e:7f:d3:2b:e5:10:13:d8:b8:67:ed:78:36:0d:91:80:e9:a1:
13:24:a3:4e:5a:66:db:e0:3b:d8:53:ec:6f:39:ee:e0:8e:5f:
e2:56:16:96:6a:6d:c8:39:ec:f9:db:07:31:ba:a5:49:ef:8c:
6d:30:60:45:8e:30:c1:1b:fa:b4:81:07:77:ea:f7:9f:b4:15:
37:3b:1c:c3:7c:71:1a:d1:be:87:ab:cb:5b:51:1f:ba:ba:0c:
de:e6:80:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2dPt7Ef/e6ViM5rETAPM0pMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIyMjBkOTFiNGU5ZDcwZjAzNGZhMTZhMTZhODg3ZDQyNTU3
OTJhZGUwHhcNMjYwNDE3MjEwMDM2WhcNMjYwNDE4MjEwMDM2WjAzMTEwLwYDVQQD
EyhiYTMzMGNhMTM0YzZhNTg5YWFiOTViMzdjNDM1ZGU0YmJhOTkyNGFhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5PdDyJ0+15s4ClxZn42k9FRVTm55
xHKbRV2OUDYY/E3fdsfzjPHAZ/ycZWyVoTcM64sZFnXlLTiQfefbhRZm/G+4BsxT
pcoEYVBJwAMf1zv8BRsva1cVdTMkQsh9rk1gE3E7oyhX5xAf0LLZv4F+1FErwpVA
OQ8xiwCOgbeUbfJDsJN27ug3FM7sfVNmsIjmPXlVBXEGcqeCtick2IsuBxl9MPjg
B485CML+OzgiGkddHhFGRObWDoyDKqgeo6aldpWvB5YdYRYUwH1Utaa39/nLJby/
rkeumr58GQOrsVWkLqZCcEgztiXACcZpyyl6YL+DE6a2MqGIH4l0iwCVgQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLozDKE0xqWJqrlbN8Q13ku6mSSqMB8GA1UdIwQY
MBaAFLIg2RtOnXDwNPoWoWqIfUJVeSreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQt
OTg3MTczYjllOTg3LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQtOTg3MTczYjllOTg3
LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU64m+qRT
TTrsti7iBziKSL72PBJS+fFP82sMz/6EPAwAcLw5hkIRbLjdjr+MaI0mZe9O3Btj
oImdSyUGGsUfnc8Vst3tOxvK7REZjs4xN7zvLyvTf16G0b0TfK6caXYTsdAbuXfK
PzzCaitzU11wV7UOLojwdVSrOVr69g6FckjRD4vRYJWS9C0TuzvJma6eCscCQ3TE
Cfm8L4Rs8AQyVs+lbn/TK+UQE9i4Z+14Ng2RgOmhEySjTlpm2+A72FPsbznu4I5f
4lYWlmptyDns+dsHMbqlSe+MbTBgRY4wwRv6tIEHd+r3n7QVNzscw3xxGtG+h6vL
W1EfuroM3uaA5Q==
-----END CERTIFICATE-----
Generated at Sat Apr 18 00:37:25 2026 by rpki-client