Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
File: SFk-QNpaUvMi21oEwg-0htThVQI.mft (raw, json)
Hash identifier: X1aAx9HH5ak7ky2BcQDAF+y06LO91X76pIG1+pRQGRQ=
Subject key identifier: 2C:D7:7A:FD:54:F7:D4:D5:8C:6A:12:AA:0A:C4:09:D4:6D:78:00:A7
Authority key identifier: 48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
Certificate issuer: /CN=48593e40da5a52f322db5a04c20fb486d4e15502
Certificate serial: 019EC336EE2FE7510BB406125BFAC7E30FDA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
Manifest number: 1617
Signing time: Sat 13 Jun 2026 23:00:17 +0000
Manifest this update: Sat 13 Jun 2026 23:00:17 +0000
Manifest next update: Sun 14 Jun 2026 23:00:17 +0000
Files and hashes: 1: SFk-QNpaUvMi21oEwg-0htThVQI.crl (hash: Ohh/igaAYWj5T0Tt34GSs0KmVSrVIfl23V8Va1ZzYGI=)
2: VFzP0FGh0SQzSyAC9MEO9bnaqZU.roa (hash: DwjrXgZVVBQjvwjFMKe9t4mZj6kib5GRnctDIksFE5w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 23:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:36:ee:2f:e7:51:0b:b4:06:12:5b:fa:c7:e3:0f:da
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=48593e40da5a52f322db5a04c20fb486d4e15502
Validity
Not Before: Jun 13 23:00:17 2026 GMT
Not After : Jun 14 23:00:17 2026 GMT
Subject: CN=2cd77afd54f7d4d58c6a12aa0ac409d46d7800a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:87:c2:80:6d:d1:a1:52:5c:02:f6:31:6c:1f:93:
b7:b4:1a:bf:89:4c:13:d9:86:e8:eb:95:0c:4a:28:
2d:01:7b:8a:93:9d:98:3d:36:72:6a:d0:1c:45:fa:
89:b4:b1:bb:df:a5:b9:b9:34:e2:b8:e5:32:a3:f7:
d5:b6:c6:4f:c8:e0:55:e8:7c:38:4b:0f:6b:3a:d7:
a5:fe:ef:98:69:4c:bd:96:11:c8:7e:f6:85:9f:4c:
d3:02:d4:37:31:96:63:64:14:bb:2c:6b:0d:e4:c3:
63:dc:af:a5:e1:f4:ed:9b:ea:61:74:89:27:75:3b:
29:02:b8:6f:07:c6:dd:41:b3:28:1f:86:f5:ed:59:
a5:48:56:98:55:d7:a5:9f:c0:95:83:58:0f:31:a4:
01:c9:d2:c8:ff:d3:34:b2:8a:e9:d4:80:cd:a8:1c:
80:cd:74:b6:f7:99:13:47:5d:fc:a5:93:d9:48:29:
39:23:7e:7d:68:2d:20:74:8d:1b:1e:cb:c1:32:9f:
65:57:b5:9a:b8:34:cd:4c:d5:b0:4a:71:e1:be:69:
db:35:33:e9:cd:5f:29:f4:fc:75:cf:d7:0c:73:ff:
d6:7d:60:b0:ee:d1:7d:20:f7:9b:13:3c:f8:db:bd:
72:b4:ff:e5:80:1e:39:14:f5:0b:f7:bc:81:41:b6:
9a:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:D7:7A:FD:54:F7:D4:D5:8C:6A:12:AA:0A:C4:09:D4:6D:78:00:A7
X509v3 Authority Key Identifier:
keyid:48:59:3E:40:DA:5A:52:F3:22:DB:5A:04:C2:0F:B4:86:D4:E1:55:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SFk-QNpaUvMi21oEwg-0htThVQI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/9700c8-f9ab-42a7-b1fa-e68a08d9e54f/1/SFk-QNpaUvMi21oEwg-0htThVQI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
96:d8:b5:e6:ad:3f:03:56:63:45:b5:13:e0:77:4c:f3:27:ff:
3c:f6:88:f4:ad:e6:6e:de:b0:1e:78:c2:42:1f:6a:ba:f7:8e:
a4:d4:e9:5e:fa:33:1e:1d:21:8e:0d:c6:bf:ba:0b:08:fd:2e:
b7:ab:38:11:e5:6b:11:5b:74:85:ff:ea:12:1a:9c:b0:1f:76:
9e:c2:64:9f:ed:cd:fb:76:b9:5e:f3:f9:93:45:c2:f4:c4:31:
c3:d3:96:09:7c:89:b5:96:ec:00:5a:a8:a4:e7:fa:26:eb:08:
12:c6:02:f6:e8:c5:79:25:cb:1a:2f:97:69:f1:7c:1f:e8:df:
80:6e:c2:c5:25:35:85:cc:b2:c5:11:4f:e0:90:46:7c:99:85:
9a:0c:d6:a0:40:3e:27:28:80:e5:90:8c:01:b4:4b:00:9a:f4:
c1:19:8c:65:51:46:b8:23:d8:1a:a6:3c:6d:fd:dc:9f:74:c4:
2f:0f:f2:9b:e8:1d:82:be:82:b1:1e:06:f6:97:e3:d6:1d:82:
ef:41:74:d5:3b:fc:ab:ab:48:99:f5:87:b7:cb:a8:55:20:ba:
1c:a4:45:e9:44:81:53:35:fd:bd:b5:c0:b9:0a:42:49:e6:18:
2b:17:af:68:e1:c3:3b:00:1d:86:18:57:fa:aa:b0:b6:cf:8e:
65:5e:b4:12
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:21:57 2026 by rpki-client