Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: Zlteqs6j+SSMJPkycygr4zhmpWcSIj4df4chb7O/b0A=
Subject key identifier: B5:78:FA:BE:71:08:F2:B8:1E:6E:EC:53:34:71:F8:7F:9E:8B:B1:AE
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 019D9A071D1331C4E94F9641D319C5CCFD45
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 08B8
Signing time: Fri 17 Apr 2026 06:00:50 +0000
Manifest this update: Fri 17 Apr 2026 06:00:50 +0000
Manifest next update: Sat 18 Apr 2026 06:00:50 +0000
Files and hashes: 1: KIWGoOwTd_0to3ZfSp61C8HKyu8.roa (hash: zO+QGlqWRre1WYpcK0kFybtzqC8LgSXdzrWLa3l1LOU=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: o0XL7qSvWo758wWBLKhdT+CsMjvTORZ71pOdKisRYFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:1d:13:31:c4:e9:4f:96:41:d3:19:c5:cc:fd:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Apr 17 06:00:50 2026 GMT
Not After : Apr 18 06:00:50 2026 GMT
Subject: CN=b578fabe7108f2b81e6eec533471f87f9e8bb1ae
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f8:5f:fb:31:fe:f1:d9:da:77:f1:a4:a7:cd:
a9:67:c4:58:82:68:78:ab:59:02:2a:1f:1c:3d:44:
19:d6:7d:d5:44:14:c6:91:03:01:a8:03:09:a1:04:
d8:0b:5f:2c:8a:9e:22:7a:90:f8:79:9f:34:5e:c9:
18:d8:ce:c4:06:0e:fb:27:a8:2e:e7:53:de:78:d1:
41:8b:75:67:3d:55:fa:70:af:40:1b:3d:18:d9:46:
8d:0a:20:1d:1c:8f:18:a2:28:37:4e:7d:7e:4f:ba:
e1:da:00:85:68:29:d8:9b:06:53:7d:1d:02:04:77:
7a:33:52:79:34:60:15:f9:8b:67:08:4d:8f:1d:8b:
8d:8e:a0:98:16:29:30:8c:68:e4:6b:91:98:05:df:
fa:97:6e:2c:d0:80:25:54:dc:d4:96:ff:16:79:75:
18:01:73:8d:be:3d:5c:4a:e9:d0:c8:6f:0d:56:27:
cc:fe:e3:29:3e:ec:5c:08:79:03:aa:83:b2:52:38:
b3:2e:6f:0e:1c:1c:03:79:da:a1:c4:50:79:93:1a:
50:aa:b2:b7:0e:e0:dd:32:34:05:ce:04:06:93:60:
79:3f:e5:3d:13:ea:86:bf:1b:06:8d:e5:f7:1c:da:
98:e5:65:34:b1:11:24:fe:59:4f:27:1d:ff:f5:42:
d8:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B5:78:FA:BE:71:08:F2:B8:1E:6E:EC:53:34:71:F8:7F:9E:8B:B1:AE
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:73:09:18:55:0a:28:94:81:86:5a:f6:ef:71:a0:59:ab:f0:
99:fc:b7:1c:db:d9:7e:32:91:9f:08:ba:16:23:06:e5:8e:16:
f6:ac:1e:fa:df:52:d6:83:d7:50:93:f4:f2:e8:f0:d0:f8:c8:
aa:cc:9f:49:59:9e:fe:fe:46:0e:bb:a7:dc:b6:4d:39:e9:70:
bb:2a:8a:f6:3c:34:d2:27:30:1b:92:68:d6:00:66:b4:cf:2e:
ed:d0:e9:db:b7:2b:82:28:e1:31:80:73:51:a4:0d:bd:f2:e8:
b6:b7:46:f1:06:90:2d:61:63:37:2c:e3:5f:6f:f0:6a:4c:8f:
e5:a1:f5:fd:1f:7f:88:a0:e4:06:2d:30:12:ad:cb:ef:2d:86:
5a:dc:8d:2f:41:36:18:7e:67:f0:86:1a:49:c5:b5:a3:ff:2f:
e5:8b:8d:c0:68:5e:ef:73:ad:3a:bb:40:19:7a:89:b7:13:fc:
b7:74:a2:74:0a:68:a9:26:36:bd:67:2b:86:97:a5:51:cd:b6:
a4:16:37:c2:bf:08:ac:3a:36:33:55:03:a5:13:d1:78:28:20:
6e:12:0d:0f:f7:1b:2f:64:ac:89:67:1a:9c:fb:54:83:ce:1f:
b5:cb:c0:7a:fa:e7:25:dc:78:2c:83:fd:61:3d:ae:7e:5b:4a:
25:73:ae:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:36:35 2026 by rpki-client