Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
File: sCqa8vxf6TxDFIqssTxRvpBMjkw.mft (raw, json)
Hash identifier: hLEi8kHiAuNgr5kUaZy9nHuzAs94PGiNu+VdK8vM0/o=
Subject key identifier: 85:1D:57:6E:4D:EF:08:64:15:5D:6C:67:39:59:0A:A1:0A:B9:95:B7
Authority key identifier: B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
Certificate issuer: /CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Certificate serial: 019DCFE35CF9F5672AEC2653E1A3DD464375
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
Manifest number: 0718
Signing time: Mon 27 Apr 2026 17:01:17 +0000
Manifest this update: Mon 27 Apr 2026 17:01:17 +0000
Manifest next update: Tue 28 Apr 2026 17:01:17 +0000
Files and hashes: 1: sCqa8vxf6TxDFIqssTxRvpBMjkw.crl (hash: Z5PYV9ZUFDokHfuRjp+GlxkGJ0edvpwfjiZ8kbnbhME=)
2: y0urSuZI8k80qDTQJ3kG5eohDE0.roa (hash: Y9liF5XubPckrTgkSr37iUFqjTSMFsZSlRvzu6Hk6eI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:e3:5c:f9:f5:67:2a:ec:26:53:e1:a3:dd:46:43:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b02a9af2fc5fe93c43148aacb13c51be904c8e4c
Validity
Not Before: Apr 27 17:01:17 2026 GMT
Not After : Apr 28 17:01:17 2026 GMT
Subject: CN=851d576e4def0864155d6c6739590aa10ab995b7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:bb:55:d5:37:24:d0:20:b7:13:6d:81:7a:b4:
c3:e0:ef:82:f3:82:06:b4:78:a5:5c:92:df:dd:c0:
a6:ee:3e:50:d3:e5:a2:83:d5:5c:00:c3:67:b8:5d:
c1:21:8b:6e:db:9b:b6:52:23:30:0f:68:a4:93:bb:
c5:6a:78:95:36:b2:db:bc:db:07:24:a2:2a:eb:a9:
87:d4:3b:72:37:15:29:2c:72:c8:29:ce:a3:5f:e4:
66:3d:1a:29:3e:00:a6:02:aa:4b:e2:00:72:af:c7:
7b:68:85:56:00:1e:5e:81:be:c9:26:d3:d7:18:dd:
a7:7d:4e:e9:97:db:e2:9a:cb:3c:7c:ef:f5:24:68:
45:a0:30:5b:8d:30:62:c7:36:de:9c:5f:54:4b:bc:
53:9f:9d:29:90:e5:00:16:12:0e:40:4b:99:61:64:
01:6d:6e:ad:ca:9f:ed:23:ba:ba:43:e8:3f:50:f9:
1b:16:a6:8e:23:09:b3:df:56:ea:30:a7:29:69:f0:
a5:91:28:56:66:bc:ce:ce:5b:af:32:ac:60:1d:de:
04:d9:10:14:68:70:bd:4a:ee:b1:0d:bb:c3:c9:69:
4c:4d:9e:de:2e:47:b5:32:84:c6:70:34:d4:26:ac:
7d:fd:a4:0d:2b:0e:b3:9d:9d:06:03:45:c3:27:64:
ea:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
85:1D:57:6E:4D:EF:08:64:15:5D:6C:67:39:59:0A:A1:0A:B9:95:B7
X509v3 Authority Key Identifier:
keyid:B0:2A:9A:F2:FC:5F:E9:3C:43:14:8A:AC:B1:3C:51:BE:90:4C:8E:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sCqa8vxf6TxDFIqssTxRvpBMjkw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/0a60ce-bb37-4337-bf50-5eca36e19f5d/1/sCqa8vxf6TxDFIqssTxRvpBMjkw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:b7:11:d9:91:3c:c8:69:1a:3d:12:fe:d9:5c:ae:12:69:a4:
24:f7:08:d9:d3:ae:45:eb:7e:65:99:29:47:c8:c2:2c:8a:f9:
0b:d9:e4:c5:9e:8f:38:39:a6:a5:b5:54:8c:1a:9a:6e:e0:8a:
12:4f:bd:09:c9:09:23:57:cc:49:d6:6b:05:34:33:af:79:e1:
88:53:d2:e6:ca:0d:97:6a:75:d0:a2:c2:6c:7c:7d:15:bf:95:
41:6a:05:c6:74:7c:ec:85:39:ba:2d:46:8b:25:e1:c9:b9:cf:
b3:12:8e:d6:b9:f0:f9:56:bb:ca:da:ee:56:93:7a:ff:b0:15:
fa:16:fa:f6:fa:c6:4f:46:50:d1:51:51:91:6c:31:95:04:dd:
5a:81:38:fc:13:68:eb:40:0c:9f:ca:9e:2a:7d:78:e3:9d:bb:
06:54:d1:45:f5:10:4b:67:70:3a:c1:2a:78:07:16:c7:a6:7c:
df:a8:d4:80:8c:0f:07:ec:f4:2d:8b:fa:e8:e9:02:a9:e3:80:
5a:39:97:26:09:09:1d:c8:b1:71:ff:d6:a5:87:89:95:88:99:
54:c2:4c:90:0d:2a:80:8c:85:bd:9c:5a:44:4d:2f:0e:27:f1:
b8:c1:ad:a6:b7:36:5f:ea:0f:35:14:25:31:7d:2f:01:08:81:
ea:14:9e:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 23:18:23 2026 by rpki-client