Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json)
Hash identifier: iL6wyR+tgZLPZ3gIzZ7ysjyax25M2uq3bYYk9caLNnY=
Subject key identifier: D5:D0:7E:06:98:05:F5:E3:C6:D4:C1:E6:68:AA:99:31:4B:34:AD:2F
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 019DA34144858B54587CA8FCBB58B7C5F198
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
Manifest number: 1797
Signing time: Sun 19 Apr 2026 01:00:56 +0000
Manifest this update: Sun 19 Apr 2026 01:00:56 +0000
Manifest next update: Mon 20 Apr 2026 01:00:56 +0000
Files and hashes: 1: D9w27obqocEFDTdBIPGTWc0hJYs.roa (hash: w/x4WJOjB+8CrMv8hDIJNBTxxZWB2vm/ke2sX5HhAl8=)
2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: tIfa4anvHoEgjYt/XDIR+AD4u+clnE5NROzv2bpEISw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:41:44:85:8b:54:58:7c:a8:fc:bb:58:b7:c5:f1:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Apr 19 01:00:56 2026 GMT
Not After : Apr 20 01:00:56 2026 GMT
Subject: CN=d5d07e069805f5e3c6d4c1e668aa99314b34ad2f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:74:34:ba:0f:6b:bc:6e:33:5e:e5:3e:4a:38:
cd:a0:24:27:cf:25:0c:18:d8:ac:f2:b2:a4:7a:cd:
88:75:b6:82:41:7f:e9:61:d2:67:b5:74:4b:15:96:
99:af:e8:d4:04:bf:43:7a:cd:d1:7a:ee:5c:57:31:
de:eb:c1:41:82:38:a4:62:28:29:94:76:08:4a:51:
de:33:b4:3d:3b:67:0d:e6:1b:b8:30:d9:eb:d8:fb:
30:24:97:fd:73:76:60:ae:ea:db:d5:fb:57:c9:20:
5c:a5:67:f5:c3:23:e9:d5:ee:b4:c5:03:9e:f8:de:
aa:34:6b:f5:b3:01:cf:12:51:88:72:f9:61:fa:2b:
39:11:cf:d0:5c:1d:62:f2:81:c3:83:cd:2a:3a:9b:
92:ed:a9:fa:05:e0:24:1f:c4:0b:6d:bb:42:12:07:
08:15:14:e9:de:3e:50:0d:01:98:d2:1b:92:15:fd:
45:d0:15:c7:2b:6e:f5:65:50:5c:7a:67:87:e5:7b:
5a:2f:b1:5a:dd:7c:49:63:88:a7:c2:fd:9e:4c:a1:
39:9b:ca:3c:44:bf:a3:de:92:7d:87:85:46:fd:0d:
70:fc:a4:a5:b4:9b:67:1a:ef:c4:f0:f3:9b:4c:47:
6d:cc:9b:08:e7:1b:9e:74:de:2a:d2:49:a1:2a:09:
ab:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:D0:7E:06:98:05:F5:E3:C6:D4:C1:E6:68:AA:99:31:4B:34:AD:2F
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3b:98:52:25:62:3a:73:69:5d:54:50:ad:00:03:22:ab:2e:e7:
21:64:73:f1:39:11:70:9f:eb:f3:69:be:7c:59:cf:47:f9:08:
51:b6:6c:67:97:5c:5d:4e:85:c2:38:2c:25:ad:98:b2:f1:4a:
72:2f:db:dc:84:a2:ea:01:2f:d5:3d:76:8b:a9:8c:7b:92:5b:
87:80:6f:3d:e7:cb:51:dd:e4:a9:46:6a:b9:23:a0:0d:b9:bc:
7e:e0:5c:5e:27:a2:4c:2f:e1:0a:1e:8d:4e:4b:7e:68:e6:38:
c7:ea:54:cf:93:80:86:b3:8a:6c:95:6a:90:47:c0:06:de:45:
60:dc:46:85:22:bd:7a:8a:48:c7:61:fc:5c:93:16:26:ff:b7:
6a:cc:6d:66:ed:8e:59:ae:e7:a2:4b:02:27:4b:65:fa:e1:7c:
f8:b6:bc:90:4e:2f:6c:94:7c:6a:63:77:ee:a8:88:00:8c:d5:
b4:d6:8f:36:53:ae:aa:70:d5:32:8b:c0:d6:df:18:b7:63:0a:
ec:3d:cf:87:9e:dd:8d:a2:35:99:6c:a7:ce:f1:fb:3f:30:86:
a8:02:41:47:23:3a:40:f4:68:e5:60:27:bb:83:69:df:65:10:
bd:96:6b:96:23:b0:97:db:54:98:e7:30:ab:54:36:e2:c5:9d:
fa:b4:2f:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 09:45:43 2026 by rpki-client