Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
File: sCBx_ye9CehFJRchNknb9nvK1dE.mft (raw, json)
Hash identifier: /2C2tT4ow1r69lnfgPvOmEJZ+0wfrHQJ0qX45oXV6IY=
Subject key identifier: FF:7C:D9:FD:B1:1E:D1:8E:DA:68:79:68:3B:45:36:4F:90:58:6E:34
Authority key identifier: B0:20:71:FF:27:BD:09:E8:45:25:17:21:36:49:DB:F6:7B:CA:D5:D1
Certificate issuer: /CN=b02071ff27bd09e8452517213649dbf67bcad5d1
Certificate serial: 019CAB6B48C210A91C34EAC479B4245ACCC7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
Manifest number: 04D2
Signing time: Sun 01 Mar 2026 22:01:00 +0000
Manifest this update: Sun 01 Mar 2026 22:01:00 +0000
Manifest next update: Mon 02 Mar 2026 22:01:00 +0000
Files and hashes: 1: sCBx_ye9CehFJRchNknb9nvK1dE.crl (hash: EU4EjSHpR6xrJmoWBNm/xMTJNVPxFZdpN+L0wS/JiHA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:48:c2:10:a9:1c:34:ea:c4:79:b4:24:5a:cc:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02071ff27bd09e8452517213649dbf67bcad5d1
Validity
Not Before: Mar 1 22:01:00 2026 GMT
Not After : Mar 2 22:01:00 2026 GMT
Subject: CN=ff7cd9fdb11ed18eda6879683b45364f90586e34
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:4c:9a:87:f6:7d:8a:99:f9:e0:49:59:6b:89:
68:d5:a8:f4:77:f2:3d:0d:1d:6d:95:3d:fe:48:d8:
0c:34:62:9b:70:10:87:b5:22:6f:2f:96:52:5c:54:
33:5a:9a:e2:de:18:5a:6d:74:c0:1f:10:7d:2d:25:
f0:03:24:ba:f0:a9:24:c8:20:2d:54:8b:eb:6c:99:
1f:72:52:46:0d:9b:ee:9d:76:d4:3e:29:87:17:40:
40:a1:15:bf:2d:f1:26:ad:09:8c:a9:db:eb:47:5e:
20:3f:c5:8a:5e:ba:36:15:07:7e:a0:75:65:3d:41:
2e:1a:ec:32:1b:85:62:9f:90:22:34:f8:18:7a:30:
71:fd:c0:08:66:97:99:56:5f:62:40:1d:6b:8e:31:
43:5b:90:5c:e9:e4:f2:47:a7:f8:22:db:2e:19:91:
7d:09:82:67:39:47:cc:81:3c:50:c3:3c:14:f3:23:
f8:61:f9:3e:ac:a1:3f:ef:7f:a4:9a:87:49:e4:2f:
9d:52:7d:6f:dc:a4:10:6f:89:ee:0b:90:61:59:90:
97:2b:6a:89:0f:65:8e:04:62:eb:44:60:93:40:e6:
7c:35:d0:82:3e:c9:fc:16:d8:7e:9e:82:d1:6e:e7:
76:b0:00:e7:70:0f:db:3e:61:ca:74:a7:bb:4c:ab:
05:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:7C:D9:FD:B1:1E:D1:8E:DA:68:79:68:3B:45:36:4F:90:58:6E:34
X509v3 Authority Key Identifier:
keyid:B0:20:71:FF:27:BD:09:E8:45:25:17:21:36:49:DB:F6:7B:CA:D5:D1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCBx_ye9CehFJRchNknb9nvK1dE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/566dba-8179-4c13-9d3f-bc895f731695/1/sCBx_ye9CehFJRchNknb9nvK1dE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:77:e8:9b:9e:01:08:15:5b:80:c9:26:7b:a3:82:8b:5e:5e:
ca:86:ae:09:9b:b7:6e:4f:88:7c:27:ab:08:87:f0:25:d8:54:
f5:60:31:89:d8:13:1c:d4:e3:29:ec:9d:ef:0e:ed:08:47:a0:
eb:79:f4:46:72:e4:8f:cf:b7:6c:dd:42:44:9b:ad:f6:c9:b4:
24:04:11:98:05:ba:cc:7c:67:ad:43:64:0b:24:0c:93:22:f8:
a1:fd:59:8e:42:36:85:21:80:01:8a:70:ce:b6:1f:9e:6e:a1:
f0:5f:49:3f:88:e2:48:cb:fb:31:6c:40:00:5e:70:00:9b:82:
de:00:4d:a4:c4:d5:18:ef:cd:6c:db:05:83:22:0d:a5:1e:0e:
90:0b:4c:a0:da:c6:53:d9:e5:bd:d9:16:fa:b9:02:aa:8b:6b:
f0:1f:a7:4b:3b:bb:d2:0a:8e:bd:ae:8a:d3:73:d3:0e:cf:5c:
85:18:7a:9e:a6:1c:1b:d9:48:e5:57:1b:31:07:7f:dd:1a:1f:
00:06:f0:d6:83:50:76:4d:41:76:28:27:93:82:b5:5b:ec:9e:
47:c7:16:33:82:03:99:b8:b0:af:db:ac:d3:25:4f:30:d4:5a:
19:99:78:70:d0:89:7a:ed:db:50:6e:bc:c3:cf:30:35:77:f3:
27:60:54:81
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra0jCEKkcNOrEebQkWszHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGIwMjA3MWZmMjdiZDA5ZTg0NTI1MTcyMTM2NDlkYmY2N2Jj
YWQ1ZDEwHhcNMjYwMzAxMjIwMTAwWhcNMjYwMzAyMjIwMTAwWjAzMTEwLwYDVQQD
EyhmZjdjZDlmZGIxMWVkMThlZGE2ODc5NjgzYjQ1MzY0ZjkwNTg2ZTM0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAykyah/Z9ipn54ElZa4lo1aj0d/I9
DR1tlT3+SNgMNGKbcBCHtSJvL5ZSXFQzWpri3hhabXTAHxB9LSXwAyS68KkkyCAt
VIvrbJkfclJGDZvunXbUPimHF0BAoRW/LfEmrQmMqdvrR14gP8WKXro2FQd+oHVl
PUEuGuwyG4Vin5AiNPgYejBx/cAIZpeZVl9iQB1rjjFDW5Bc6eTyR6f4ItsuGZF9
CYJnOUfMgTxQwzwU8yP4Yfk+rKE/73+kmodJ5C+dUn1v3KQQb4nuC5BhWZCXK2qJ
D2WOBGLrRGCTQOZ8NdCCPsn8Fth+noLRbud2sADncA/bPmHKdKe7TKsFbQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFP982f2xHtGO2mh5aDtFNk+QWG40MB8GA1UdIwQY
MBaAFLAgcf8nvQnoRSUXITZJ2/Z7ytXRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvc0NCeF95ZTlDZWhGSlJjaE5rbmI5bnZLMWRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC81NjZkYmEtODE3OS00YzEzLTlkM2Yt
YmM4OTVmNzMxNjk1LzEvc0NCeF95ZTlDZWhGSlJjaE5rbmI5bnZLMWRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jNC81NjZkYmEtODE3OS00YzEzLTlkM2YtYmM4OTVmNzMxNjk1
LzEvc0NCeF95ZTlDZWhGSlJjaE5rbmI5bnZLMWRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfXfom54B
CBVbgMkme6OCi15eyoauCZu3bk+IfCerCIfwJdhU9WAxidgTHNTjKeyd7w7tCEeg
63n0RnLkj8+3bN1CRJut9sm0JAQRmAW6zHxnrUNkCyQMkyL4of1ZjkI2hSGAAYpw
zrYfnm6h8F9JP4jiSMv7MWxAAF5wAJuC3gBNpMTVGO/NbNsFgyINpR4OkAtMoNrG
U9nlvdkW+rkCqotr8B+nSzu70gqOva6K03PTDs9chRh6nqYcG9lI5VcbMQd/3Rof
AAbw1oNQdk1Bdignk4K1W+yeR8cWM4IDmbiwr9us0yVPMNRaGZl4cNCJeu3bUG68
w88wNXfzJ2BUgQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:21:24 2026 by rpki-client