Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
File: sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft (raw, json)
Hash identifier: MLNAyEnxFin7Ff9/WUSuD62X1Wm4gE5n1UCvji6f2CE=
Subject key identifier: A6:F8:93:8E:96:8B:DF:AE:65:69:96:B7:B4:78:F9:CC:2A:35:FE:25
Authority key identifier: B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
Certificate issuer: /CN=b24d588df20b32db9787d77864394cd7a66d4030
Certificate serial: 019DA378322138BBB0F47E44B0B229F51D86
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
Manifest number: 17AB
Signing time: Sun 19 Apr 2026 02:00:56 +0000
Manifest this update: Sun 19 Apr 2026 02:00:56 +0000
Manifest next update: Mon 20 Apr 2026 02:00:56 +0000
Files and hashes: 1: bQ0UMbsXdltHxsStpLRstv9CTXE.roa (hash: im1T7M/9bEyzU0YTti18gKcB/PDLlDsdZZk+yOh0iEQ=)
2: sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl (hash: p0V9VhXKgu0yVguOSKTXWpbTiDYqjcapj+FP5B7ZMtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:32:21:38:bb:b0:f4:7e:44:b0:b2:29:f5:1d:86
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24d588df20b32db9787d77864394cd7a66d4030
Validity
Not Before: Apr 19 02:00:56 2026 GMT
Not After : Apr 20 02:00:56 2026 GMT
Subject: CN=a6f8938e968bdfae656996b7b478f9cc2a35fe25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:9b:03:d2:77:a8:5f:a0:44:6c:f9:a6:d8:d5:
27:2a:9b:57:4a:49:4e:27:98:8e:7f:08:b6:dc:bf:
46:7d:5d:da:03:b6:e5:99:0a:ec:d6:34:c0:e0:2f:
a9:02:4e:3a:c6:70:40:70:84:f0:c3:f0:ac:c1:46:
0c:59:15:32:c0:7c:69:d6:2a:89:20:90:1b:62:e7:
bd:12:68:df:c2:2b:82:b9:a1:85:6b:6c:80:4a:81:
7f:54:90:28:eb:dc:25:22:33:fe:62:b6:02:23:c5:
b6:e8:be:a2:85:62:a5:60:04:a6:50:94:e5:d4:53:
d8:c9:66:6f:9c:4b:b1:7f:42:ab:6e:f0:07:93:ab:
e7:10:25:72:45:7b:7c:fd:47:55:23:bb:3b:4b:26:
93:b6:f3:3b:e3:23:23:b5:4b:b3:17:6a:29:45:43:
7a:f7:70:fb:fc:57:81:7c:ad:b6:59:c8:87:9d:99:
f2:5c:10:33:d1:fa:62:e7:cf:fa:d6:f1:1e:d9:58:
45:09:d3:6e:ef:f8:72:06:b9:4f:01:ad:3b:d0:ba:
12:31:a0:f9:77:ac:c9:93:57:64:4a:15:95:b7:79:
dc:f1:0d:4e:d7:aa:96:d5:cd:cd:c7:be:44:89:dd:
6d:fb:f4:28:4b:c4:60:10:22:fe:4c:f4:09:e2:1b:
65:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:F8:93:8E:96:8B:DF:AE:65:69:96:B7:B4:78:F9:CC:2A:35:FE:25
X509v3 Authority Key Identifier:
keyid:B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
54:b9:1d:8f:ad:ec:88:e3:13:23:69:1e:2a:47:ae:34:39:2c:
f0:2d:e8:1d:e1:2a:0f:07:a7:d7:cb:b7:53:b7:ca:4f:2a:d5:
f9:95:07:df:45:6f:75:6f:a0:58:1a:6b:e8:e8:79:75:02:07:
ef:14:1b:34:bc:ac:19:60:df:e0:74:4e:ec:5d:62:d5:67:56:
f8:b6:7a:73:0c:19:00:81:49:3f:5f:1a:ab:82:fe:21:9e:f1:
67:15:fe:4c:16:83:40:56:ba:d8:cf:5a:b7:43:37:cc:b5:f7:
6b:f6:f5:87:ad:46:aa:04:79:2c:54:87:94:32:a6:07:8b:ba:
10:9d:65:b8:a4:e7:0e:65:f0:94:97:f8:b5:54:12:62:0e:f2:
84:d7:04:2a:23:da:3a:02:da:d5:de:c5:70:0b:33:7e:fe:d7:
a8:1c:9b:ed:59:f7:94:d6:0f:24:f6:14:d9:6e:3d:bd:2d:4c:
a9:d5:db:7f:07:5e:3d:f3:2c:eb:c0:25:24:10:e2:fb:6e:85:
0c:54:67:94:6b:9e:d0:70:ce:c4:6e:e1:f4:98:4c:c3:07:2a:
e7:41:1b:6f:bb:4b:7e:10:6e:63:55:80:30:dd:5b:88:9b:15:
bc:7a:0d:56:d0:9e:fc:6e:b7:62:97:7f:96:e1:a0:d3:63:a3:
bb:76:ac:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:22:30 2026 by rpki-client