Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: NmlZqRElqw+cInyA+5tSQWA0ONzBdmiBuvcqpVJV37s=
Subject key identifier: EA:C2:06:8E:B9:25:99:12:D2:EF:7A:B6:F4:37:DB:C4:E2:95:C2:34
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 019CAC4696C33F2FCD59C5BE69E19648EE7D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 1502
Signing time: Mon 02 Mar 2026 02:00:32 +0000
Manifest this update: Mon 02 Mar 2026 02:00:32 +0000
Manifest next update: Tue 03 Mar 2026 02:00:32 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: CPvGU5/wOjS1F2qLJ2WPJxNUYJSuvnPHSrg5Kaha6NY=)
2: VFzP0FGh0SQzSyAC9MEO9bnaqZU.roa (hash: DwjrXgZVVBQjvwjFMKe9t4mZj6kib5GRnctDIksFE5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:96:c3:3f:2f:cd:59:c5:be:69:e1:96:48:ee:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Mar 2 02:00:32 2026 GMT
Not After : Mar 3 02:00:32 2026 GMT
Subject: CN=eac2068eb9259912d2ef7ab6f437dbc4e295c234
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:1c:8c:97:a5:b6:3a:0f:2d:0f:e1:4f:80:b5:
f3:72:d7:81:05:63:2a:b7:a9:13:0d:4e:36:63:9e:
b2:4b:27:65:1a:1d:9e:ee:c8:34:f8:52:34:72:59:
39:be:c2:72:ea:d8:91:74:77:7c:7c:7f:27:52:ac:
05:45:60:a0:47:e7:06:c6:ae:92:c0:15:2c:ac:bd:
ae:e3:b9:55:34:c2:70:b5:ff:4a:4d:ab:21:15:d7:
4a:ae:47:ae:81:a1:d9:67:2f:65:ea:b5:84:85:f9:
5e:9f:bd:52:5f:90:14:e7:33:73:af:0d:0d:9f:9b:
6a:16:ef:59:63:d9:75:74:4d:cc:32:0f:c9:1f:b7:
46:e7:5e:5a:2e:73:a3:01:54:e8:9e:06:24:6d:9c:
1a:a1:3d:06:ba:97:cb:b3:54:7a:65:97:8f:b3:bd:
06:75:85:13:1f:f6:82:e1:22:b7:81:98:82:85:15:
f1:eb:c4:d9:f3:8a:ca:93:56:3b:af:03:50:cc:7a:
60:f0:8a:d2:67:54:96:4d:5d:78:8a:ae:4e:ac:0b:
e4:59:53:fb:a4:6a:7f:cc:ab:2b:70:b9:3d:3a:0d:
26:fb:87:da:8a:61:a7:71:e6:65:64:12:8b:f8:4d:
48:bb:7a:48:01:f0:a8:38:13:b1:e3:0c:51:50:fd:
a9:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:C2:06:8E:B9:25:99:12:D2:EF:7A:B6:F4:37:DB:C4:E2:95:C2:34
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:8d:cc:14:ab:98:bf:51:f8:76:ba:f7:b8:d4:4b:de:df:6f:
22:cb:ac:96:c1:79:94:31:02:89:32:40:e3:9d:f9:2d:64:bd:
de:88:3c:3d:7e:bc:29:9b:25:1f:21:0b:dc:20:54:c3:50:da:
6e:09:1a:dc:93:fc:8b:f8:ca:38:61:3a:1e:b3:13:b2:92:f0:
8d:b6:15:b3:d3:5f:c0:5a:d2:f9:27:64:d1:30:b2:cb:41:6d:
33:27:ed:3e:c8:f1:6f:81:59:bc:f3:67:cc:de:45:62:f7:12:
71:d7:70:78:ea:34:3f:3e:b2:f6:03:c0:30:ca:51:c9:77:28:
bb:2f:a0:e8:44:b5:5e:d4:af:ad:32:1e:31:bc:38:2b:8c:75:
d5:80:28:d3:10:1e:30:7e:23:98:e4:f9:45:8a:ee:67:a6:e6:
32:83:75:ea:8b:c7:8f:a6:86:56:b8:f0:dc:8d:ab:3e:6c:cc:
ee:96:fe:37:5a:72:fa:22:af:a5:e8:61:29:de:95:79:0c:ef:
bf:05:5f:68:c0:1a:9d:55:e4:6a:34:9e:f4:3e:c7:f9:9b:fa:
99:33:2c:26:c2:f0:19:ac:53:b8:21:70:cd:8a:9f:fe:d4:25:
83:c4:47:5e:75:72:fb:84:cb:45:c2:13:06:b9:4d:d4:9f:de:
8f:36:8f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 07:31:47 2026 by rpki-client