Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
File: sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft (raw, json)
Hash identifier: YXDhHLGan1b8JZlh8n9u+LRTVH6O0aqfujVoSuKAfGk=
Subject key identifier: F1:5D:28:AA:BA:A3:B8:44:C8:89:ED:22:1E:CB:66:88:D3:C5:DD:5F
Authority key identifier: B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
Certificate issuer: /CN=b24d588df20b32db9787d77864394cd7a66d4030
Certificate serial: 019CAA589659F325744C8EE94C13284106A8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
Manifest number: 172A
Signing time: Sun 01 Mar 2026 17:00:58 +0000
Manifest this update: Sun 01 Mar 2026 17:00:58 +0000
Manifest next update: Mon 02 Mar 2026 17:00:58 +0000
Files and hashes: 1: bQ0UMbsXdltHxsStpLRstv9CTXE.roa (hash: im1T7M/9bEyzU0YTti18gKcB/PDLlDsdZZk+yOh0iEQ=)
2: sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl (hash: 5DKdzg7gNai9NINYe4h0YiMoQSDHvsU+oe0JKAluU0A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:96:59:f3:25:74:4c:8e:e9:4c:13:28:41:06:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b24d588df20b32db9787d77864394cd7a66d4030
Validity
Not Before: Mar 1 17:00:58 2026 GMT
Not After : Mar 2 17:00:58 2026 GMT
Subject: CN=f15d28aabaa3b844c889ed221ecb6688d3c5dd5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:72:6e:da:20:d9:44:2d:ee:e1:ac:a7:63:a4:
55:d2:3e:05:7f:ca:d2:c7:3f:f9:e5:71:d1:97:2d:
3b:79:1c:2e:a8:00:40:80:96:84:3f:7d:2e:0b:22:
fc:f6:da:9a:e2:a5:20:e1:e2:c7:ff:9d:a1:68:e6:
d0:b7:c2:0d:e3:6e:fb:93:dd:c4:81:f5:5c:4a:c2:
99:88:d9:05:f7:11:38:32:a6:ed:c6:36:5e:64:45:
6b:43:54:68:de:93:b9:73:5b:6e:68:83:e1:33:4b:
53:ca:38:76:bd:63:35:a1:13:43:9a:d0:be:c3:f5:
48:e7:d3:01:26:a1:2a:3b:5d:97:06:c7:94:60:2c:
e3:09:33:ac:89:18:17:5a:8c:15:82:04:0e:06:ef:
1b:bb:38:4b:53:48:32:1c:6d:97:53:a5:13:c5:9b:
64:64:8f:a3:93:32:e8:11:2d:f1:70:02:17:a5:1b:
2a:e6:16:38:2e:bf:4a:91:b1:f4:05:9c:34:d3:86:
18:fd:74:0d:77:5b:94:c6:ab:28:72:b1:77:33:5a:
28:05:de:31:37:eb:c9:88:04:b6:a7:ec:bc:62:ea:
6b:33:00:fd:8d:c9:20:6c:1d:64:88:ca:89:61:16:
3f:5e:69:51:ba:b5:04:6e:9d:1b:8a:30:8a:df:3b:
8e:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:5D:28:AA:BA:A3:B8:44:C8:89:ED:22:1E:CB:66:88:D3:C5:DD:5F
X509v3 Authority Key Identifier:
keyid:B2:4D:58:8D:F2:0B:32:DB:97:87:D7:78:64:39:4C:D7:A6:6D:40:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sk1YjfILMtuXh9d4ZDlM16ZtQDA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/bd2d39-15e6-4640-ad08-d7b64b7cc583/1/sk1YjfILMtuXh9d4ZDlM16ZtQDA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:98:d3:2d:74:8b:37:93:ba:ca:62:6e:23:3b:88:2d:90:ca:
3f:3c:95:54:64:a9:a8:8e:ad:dd:cb:0f:31:1c:b2:66:19:1d:
86:e7:e8:42:7d:54:58:7e:14:49:e3:d2:9e:d3:10:2d:fc:fd:
ba:47:88:3a:cc:a4:c2:fc:07:ad:25:b2:69:a5:ff:c5:69:25:
9b:70:70:0c:32:3a:cc:fb:ab:5c:66:3b:36:d6:6e:00:df:3a:
50:c8:d7:d4:7d:bc:c1:df:fd:20:95:e8:9b:7f:e8:cf:a2:35:
44:0f:65:13:4e:37:a4:49:4d:d1:b9:f0:39:69:20:24:30:b8:
70:7f:24:33:0e:01:cd:30:63:94:55:58:72:59:aa:44:6c:05:
41:60:02:57:be:02:8a:0a:dd:cc:8b:c1:fb:63:e0:fe:78:13:
3b:49:d8:99:04:3b:c9:1c:02:59:03:5d:b4:00:e7:63:3d:59:
a9:bb:68:d8:af:b4:39:40:f2:45:a3:a8:48:d4:69:e1:82:7a:
ef:36:c6:70:c8:46:0d:cc:70:aa:f5:99:08:98:12:b6:78:68:
28:76:b3:53:e0:aa:a6:59:63:e2:db:2d:d8:ec:56:ee:21:28:
f9:43:a2:00:79:2d:db:ec:fb:ce:a7:39:44:c1:64:7b:3f:b1:
96:68:67:4d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:16:03 2026 by rpki-client