Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
File: sKT8KvOK9bT1hh4n_QB-YktfmwI.mft (raw, json)
Hash identifier: cAKgNxdOPv8FYBFp2q/MJDFCoFZCzrLUr2f44SEyd28=
Subject key identifier: A4:80:DA:18:9F:38:76:74:11:F1:96:1C:1A:6E:4C:32:47:75:99:DD
Authority key identifier: B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
Certificate issuer: /CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Certificate serial: 019CAC101556A47D4E221B4E61D8A26BF41F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
Manifest number: 1717
Signing time: Mon 02 Mar 2026 01:01:00 +0000
Manifest this update: Mon 02 Mar 2026 01:01:00 +0000
Manifest next update: Tue 03 Mar 2026 01:01:00 +0000
Files and hashes: 1: D9w27obqocEFDTdBIPGTWc0hJYs.roa (hash: w/x4WJOjB+8CrMv8hDIJNBTxxZWB2vm/ke2sX5HhAl8=)
2: sKT8KvOK9bT1hh4n_QB-YktfmwI.crl (hash: 8NDrz7o5oZmniZqzSeU0FvYUKicVc9nvKYET9Qhu3WQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:10:15:56:a4:7d:4e:22:1b:4e:61:d8:a2:6b:f4:1f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b0a4fc2af38af5b4f5861e27fd007e624b5f9b02
Validity
Not Before: Mar 2 01:01:00 2026 GMT
Not After : Mar 3 01:01:00 2026 GMT
Subject: CN=a480da189f38767411f1961c1a6e4c32477599dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:92:16:b5:0e:f6:a6:30:04:33:cb:7b:98:d0:
1f:06:54:d2:48:31:93:77:09:20:31:7c:67:0d:85:
0d:39:0d:1b:c8:03:58:34:4e:e8:10:cd:6e:c8:1a:
bb:8f:ba:a9:15:ed:22:77:d4:c2:8e:3b:16:b7:48:
90:a0:07:d4:e7:72:f7:e3:eb:b6:0d:65:f6:a2:b1:
c5:8f:0f:4a:f5:7f:07:14:d4:bc:66:74:81:2e:3b:
c9:bd:8b:5e:88:2e:6b:2e:dc:b3:ac:b0:95:07:3b:
86:19:c1:30:e4:4b:e1:be:5e:15:c3:9f:9c:b7:3c:
ee:06:c8:4b:85:ba:62:71:c1:6e:b0:75:65:60:74:
1b:64:20:75:70:80:3d:2e:b3:47:6a:29:9e:d7:b5:
d7:d8:40:14:48:d2:b4:4a:d9:ae:8e:da:aa:a3:60:
6f:74:c9:16:f8:30:44:b2:40:8d:d3:22:ad:bf:62:
c0:68:38:fa:d0:fe:f0:40:1e:2d:ac:3b:f3:7b:0c:
3b:c6:61:8e:e6:a5:2c:ad:7e:1f:0b:9b:31:57:30:
83:56:33:59:1a:2e:c9:03:b6:03:d9:7f:28:bf:31:
6f:5f:ca:a2:a4:4d:b9:62:68:e6:d7:c8:82:3a:af:
b2:92:f8:67:07:56:9d:6b:41:24:1b:c6:2e:97:ca:
35:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:80:DA:18:9F:38:76:74:11:F1:96:1C:1A:6E:4C:32:47:75:99:DD
X509v3 Authority Key Identifier:
keyid:B0:A4:FC:2A:F3:8A:F5:B4:F5:86:1E:27:FD:00:7E:62:4B:5F:9B:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sKT8KvOK9bT1hh4n_QB-YktfmwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/a80dbf-5cb4-4e26-adaf-68fe08622614/1/sKT8KvOK9bT1hh4n_QB-YktfmwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:86:3a:50:86:29:9c:fd:54:a7:23:30:33:8b:80:17:f6:78:
66:d7:bc:ca:99:a2:ca:a7:04:d9:f7:6d:90:1d:ad:22:3b:4a:
d2:00:82:b4:d6:42:62:a0:12:82:4f:64:f1:19:44:39:00:a1:
9c:ec:88:3e:2b:0b:63:28:68:1b:8e:79:ea:dd:b6:8d:a8:d2:
e1:1e:02:bb:92:b9:54:08:f1:19:2f:81:23:64:65:40:23:d7:
91:4d:bb:81:99:d4:da:55:c6:e0:ef:82:1a:aa:23:0c:e1:78:
06:3e:d1:fa:2b:b1:d7:ff:84:de:35:6b:02:3d:22:03:c1:ee:
fc:3d:b3:09:6c:aa:3a:e8:16:94:7d:ce:4d:81:15:2f:d7:fb:
bb:71:d3:97:69:b1:64:9d:43:57:5f:44:e0:6c:5e:3c:e0:6d:
23:db:63:ae:e7:d0:82:31:c2:58:f5:1c:02:a2:93:72:00:2d:
25:be:a1:90:af:83:03:fd:1c:02:c0:89:44:cf:1d:54:96:12:
fd:63:da:10:d4:cf:a3:6b:3b:31:fc:ef:cc:16:ac:f3:36:b7:
27:db:d9:92:6c:05:3d:aa:16:bf:88:18:9e:0c:bd:2e:ab:c4:
8d:99:80:57:83:ac:76:d0:87:f1:d0:0b:87:f8:ee:f2:94:6d:
1e:84:42:1c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysEBVWpH1OIhtOYdiia/QfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwYTRmYzJhZjM4YWY1YjRmNTg2MWUyN2ZkMDA3ZTYyNGI1
ZjliMDIwHhcNMjYwMzAyMDEwMTAwWhcNMjYwMzAzMDEwMTAwWjAzMTEwLwYDVQQD
EyhhNDgwZGExODlmMzg3Njc0MTFmMTk2MWMxYTZlNGMzMjQ3NzU5OWRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJIWtQ72pjAEM8t7mNAfBlTSSDGT
dwkgMXxnDYUNOQ0byANYNE7oEM1uyBq7j7qpFe0id9TCjjsWt0iQoAfU53L34+u2
DWX2orHFjw9K9X8HFNS8ZnSBLjvJvYteiC5rLtyzrLCVBzuGGcEw5Evhvl4Vw5+c
tzzuBshLhbpiccFusHVlYHQbZCB1cIA9LrNHaime17XX2EAUSNK0Stmujtqqo2Bv
dMkW+DBEskCN0yKtv2LAaDj60P7wQB4trDvzeww7xmGO5qUsrX4fC5sxVzCDVjNZ
Gi7JA7YD2X8ovzFvX8qipE25Ymjm18iCOq+ykvhnB1ada0EkG8Yul8o13wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKSA2hifOHZ0EfGWHBpuTDJHdZndMB8GA1UdIwQY
MBaAFLCk/CrzivW09YYeJ/0AfmJLX5sCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYt
NjhmZTA4NjIyNjE0LzEvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81YS9hODBkYmYtNWNiNC00ZTI2LWFkYWYtNjhmZTA4NjIyNjE0
LzEvc0tUOEt2T0s5YlQxaGg0bl9RQi1Za3RmbXdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASoY6UIYp
nP1UpyMwM4uAF/Z4Zte8ypmiyqcE2fdtkB2tIjtK0gCCtNZCYqASgk9k8RlEOQCh
nOyIPisLYyhoG4556t22jajS4R4Cu5K5VAjxGS+BI2RlQCPXkU27gZnU2lXG4O+C
GqojDOF4Bj7R+iux1/+E3jVrAj0iA8Hu/D2zCWyqOugWlH3OTYEVL9f7u3HTl2mx
ZJ1DV19E4GxePOBtI9tjrufQgjHCWPUcAqKTcgAtJb6hkK+DA/0cAsCJRM8dVJYS
/WPaENTPo2s7MfzvzBas8za3J9vZkmwFPaoWv4gYngy9LqvEjZmAV4OsdtCH8dAL
h/ju8pRtHoRCHA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:06:15 2026 by rpki-client