Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
File: MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft (raw, json)
Hash identifier: bX6sFTyCMJkW7krRCb1T72rrAPWXUvxFoto8RVHRK6w=
Subject key identifier: 5E:13:3B:74:8C:45:0B:EA:0E:68:C2:B4:F8:9E:FC:81:D8:11:B6:09
Authority key identifier: 32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
Certificate issuer: /CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Certificate serial: 019D389BAC9623FED3558A2EBEBD000F4FFE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 08:00:19 +0000
Manifest this update: Sun 29 Mar 2026 08:00:19 +0000
Manifest next update: Mon 30 Mar 2026 08:00:19 +0000
Files and hashes: 1: CXw4IiYcMMsq5Ub-2HQJVH14IxY.roa (hash: W9tE5EUHkQFTRiFxznT+ictJcHvJ5wZk3oWmLH3VHTs=)
2: MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl (hash: xPUxkQAH8CalBUmN++tZcDxaYRuxCdobs9e1hJ1nC6Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:ac:96:23:fe:d3:55:8a:2e:be:bd:00:0f:4f:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=32c2be483ff27bb8f0dc09ce0f71f2a88eaf7e07
Validity
Not Before: Mar 29 08:00:19 2026 GMT
Not After : Mar 30 08:00:19 2026 GMT
Subject: CN=5e133b748c450bea0e68c2b4f89efc81d811b609
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:03:ab:5e:18:15:1b:4a:b2:b7:e7:39:b6:df:
19:26:90:91:58:fd:e4:f0:12:c7:6b:69:1a:3f:b5:
e3:10:dd:46:4e:ec:0b:ee:6d:b2:a5:77:5e:22:37:
1d:c5:10:a4:bd:8c:ee:50:15:f6:5c:b8:70:dc:1a:
75:f0:89:34:7f:07:09:45:24:05:ce:e8:2c:b5:f2:
1c:ab:a4:dc:f9:e1:65:e8:cd:cc:d2:40:a5:3c:76:
1e:ff:e1:fe:48:57:b0:78:4b:be:f1:05:93:75:89:
ec:d6:78:49:9f:95:63:84:5b:7f:bf:04:8a:9e:4f:
01:03:a6:6c:92:cc:67:a5:e2:59:1c:8a:7b:b3:47:
ab:45:64:a0:d1:45:7c:61:72:9c:f7:63:ab:29:a2:
74:1d:1d:34:fa:22:c9:fd:12:11:de:c0:08:67:f1:
87:87:6e:3a:4e:f6:51:19:f8:29:e6:02:da:bd:bf:
9f:c3:f9:06:92:f9:ed:e0:96:4a:e9:c7:0e:e6:0b:
c6:7e:b7:10:03:47:01:a1:97:7f:ac:08:48:6f:e5:
36:f8:74:b3:90:ee:a2:52:4f:c7:44:ac:36:5c:66:
38:76:13:ec:0a:37:42:dd:31:6c:0b:3b:89:70:58:
cf:ea:aa:cf:6c:0d:58:b6:48:9a:a4:87:d5:26:69:
2a:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5E:13:3B:74:8C:45:0B:EA:0E:68:C2:B4:F8:9E:FC:81:D8:11:B6:09
X509v3 Authority Key Identifier:
keyid:32:C2:BE:48:3F:F2:7B:B8:F0:DC:09:CE:0F:71:F2:A8:8E:AF:7E:07
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MsK-SD_ye7jw3AnOD3HyqI6vfgc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/ff00c4-b728-44a0-962d-973db9ce68b5/1/MsK-SD_ye7jw3AnOD3HyqI6vfgc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:d5:8e:96:62:4a:fe:65:b7:06:65:91:98:df:db:ad:8e:a4:
f7:7f:b7:ef:99:23:9f:5c:f8:da:38:34:15:1f:ad:24:49:32:
37:f0:e1:62:38:9c:d2:b0:6f:b5:1b:b8:c3:c9:18:fc:6c:f3:
28:dc:b0:08:be:a1:0b:84:ff:00:8d:9d:2a:95:6f:3a:62:9b:
8c:b2:04:05:32:0a:45:e2:db:90:fb:ca:a7:55:f2:fe:10:f2:
d6:4a:c2:fb:0c:4c:04:3f:16:f1:3b:e8:ff:50:31:94:34:18:
2d:18:0c:9f:97:d9:90:7f:35:ad:68:44:92:43:03:b5:1f:3d:
ba:75:42:af:6e:f8:e6:e7:b9:5e:50:2c:05:66:a8:fc:ce:15:
cb:7a:f3:41:f3:89:38:bd:e1:53:39:91:34:87:3f:df:d0:72:
ca:c5:68:86:be:a2:b1:2d:14:16:f3:63:65:3b:72:ba:f9:2d:
4d:37:5f:39:b4:28:bd:50:98:12:ee:10:a8:2a:e4:34:b3:1a:
9f:99:ad:77:5f:fa:8e:51:6d:41:35:f6:7b:2b:08:ad:a9:88:
8f:0e:96:f7:07:35:cf:a5:ed:72:27:04:21:13:5b:57:b9:0a:
21:0c:26:65:8f:9c:e4:ee:a8:c1:3f:04:71:36:56:06:c5:d8:
cc:2f:bd:06
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04m6yWI/7TVYouvr0AD0/+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMyYzJiZTQ4M2ZmMjdiYjhmMGRjMDljZTBmNzFmMmE4OGVh
ZjdlMDcwHhcNMjYwMzI5MDgwMDE5WhcNMjYwMzMwMDgwMDE5WjAzMTEwLwYDVQQD
Eyg1ZTEzM2I3NDhjNDUwYmVhMGU2OGMyYjRmODllZmM4MWQ4MTFiNjA5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArQOrXhgVG0qyt+c5tt8ZJpCRWP3k
8BLHa2kaP7XjEN1GTuwL7m2ypXdeIjcdxRCkvYzuUBX2XLhw3Bp18Ik0fwcJRSQF
zugstfIcq6Tc+eFl6M3M0kClPHYe/+H+SFeweEu+8QWTdYns1nhJn5VjhFt/vwSK
nk8BA6ZsksxnpeJZHIp7s0erRWSg0UV8YXKc92OrKaJ0HR00+iLJ/RIR3sAIZ/GH
h246TvZRGfgp5gLavb+fw/kGkvnt4JZK6ccO5gvGfrcQA0cBoZd/rAhIb+U2+HSz
kO6iUk/HRKw2XGY4dhPsCjdC3TFsCzuJcFjP6qrPbA1YtkiapIfVJmkqhwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF4TO3SMRQvqDmjCtPie/IHYEbYJMB8GA1UdIwQY
MBaAFDLCvkg/8nu48NwJzg9x8qiOr34HMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQt
OTczZGI5Y2U2OGI1LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mZjAwYzQtYjcyOC00NGEwLTk2MmQtOTczZGI5Y2U2OGI1
LzEvTXNLLVNEX3llN2p3M0FuT0QzSHlxSTZ2ZmdjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfNWOlmJK
/mW3BmWRmN/brY6k93+375kjn1z42jg0FR+tJEkyN/DhYjic0rBvtRu4w8kY/Gzz
KNywCL6hC4T/AI2dKpVvOmKbjLIEBTIKReLbkPvKp1Xy/hDy1krC+wxMBD8W8Tvo
/1AxlDQYLRgMn5fZkH81rWhEkkMDtR89unVCr2745ue5XlAsBWao/M4Vy3rzQfOJ
OL3hUzmRNIc/39ByysVohr6isS0UFvNjZTtyuvktTTdfObQovVCYEu4QqCrkNLMa
n5mtd1/6jlFtQTX2eysIramIjw6W9wc1z6XtcicEIRNbV7kKIQwmZY+c5O6owT8E
cTZWBsXYzC+9Bg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:31:54 2026 by rpki-client