Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
File: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft (raw, json)
Hash identifier: KTllSp7tNzz6wqZMWjUeqI/JbA/m3ZD1f1A3fo92qbQ=
Subject key identifier: CF:0C:36:2D:B0:7D:5A:B2:37:1C:87:B2:2E:96:9D:F2:CE:4D:41:C3
Authority key identifier: 30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
Certificate issuer: /CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Certificate serial: 019CAD5A2F7F2122EC678E8C0C948A769F8B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
Manifest number: 0BCE
Signing time: Mon 02 Mar 2026 07:01:34 +0000
Manifest this update: Mon 02 Mar 2026 07:01:34 +0000
Manifest next update: Tue 03 Mar 2026 07:01:34 +0000
Files and hashes: 1: MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl (hash: 8AceK/IJYq0q52oZLvVeQI1eSJcTXEYpgIMYw/KPYHQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:2f:7f:21:22:ec:67:8e:8c:0c:94:8a:76:9f:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a242cf6c1529aaa0693367e44c84a07d8b0c9f
Validity
Not Before: Mar 2 07:01:34 2026 GMT
Not After : Mar 3 07:01:34 2026 GMT
Subject: CN=cf0c362db07d5ab2371c87b22e969df2ce4d41c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:5f:44:c2:8b:91:18:c7:25:92:ac:26:d4:67:
ea:aa:a4:1d:d7:a4:30:80:1d:27:ef:56:e2:68:e6:
f4:78:ac:51:55:dc:79:a8:23:28:5f:15:be:66:76:
b0:25:47:c6:60:55:4d:18:bb:57:4b:70:9f:93:36:
26:18:7c:e8:23:ea:b7:f3:a2:a3:b4:f4:52:2c:6b:
0e:12:ce:d2:7b:86:f0:77:f2:c9:d8:5b:a5:97:1a:
71:5e:77:d6:e7:7a:d9:52:32:7b:30:bc:4a:48:3f:
48:88:c7:bd:8b:d8:5c:db:a1:31:ff:7e:3f:d1:af:
21:c1:3a:d5:74:9a:76:2e:91:5a:dd:38:4c:2d:29:
5a:70:89:a9:dc:0f:40:8e:1c:e6:dd:8c:bf:42:a5:
58:4a:a8:9a:c4:ca:e8:df:d2:f1:88:8a:66:68:4f:
53:ab:84:1c:c5:25:17:94:a3:8a:e0:04:3f:db:dd:
6c:45:d3:32:2a:40:4f:01:26:1a:af:df:f3:27:c6:
49:75:0b:7b:39:1d:4a:c1:55:9f:8b:7c:95:86:09:
33:55:3d:7b:33:23:2f:ab:3e:a5:ad:75:dc:67:73:
d6:80:c9:9a:55:f1:fb:0b:58:14:f4:7f:21:fa:e5:
1a:42:b0:63:c3:2c:9c:46:d5:77:bf:14:25:9a:e3:
bb:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:0C:36:2D:B0:7D:5A:B2:37:1C:87:B2:2E:96:9D:F2:CE:4D:41:C3
X509v3 Authority Key Identifier:
keyid:30:A2:42:CF:6C:15:29:AA:A0:69:33:67:E4:4C:84:A0:7D:8B:0C:9F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/17cd86-7fbb-408f-a28c-fa2676fe38fd/1/MKJCz2wVKaqgaTNn5EyEoH2LDJ8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
68:71:95:cb:8f:cc:9d:fa:a2:55:55:97:ca:d8:a4:19:53:a3:
4c:29:86:63:2e:ef:f4:3d:7c:eb:1e:88:d9:46:50:1b:26:c6:
8a:9a:21:61:e6:9d:79:e0:07:0a:a9:63:32:4d:21:e0:6b:f4:
5f:dc:d4:93:31:db:96:ec:9f:a5:6a:e4:95:75:d9:f3:33:c5:
f2:df:34:de:b3:40:65:ee:24:b8:28:ee:c1:b5:dd:af:0d:2c:
13:42:81:d0:29:15:e6:e4:da:89:eb:b0:af:38:53:30:3b:cf:
7f:34:b0:41:ea:bc:3d:26:db:5a:ef:bf:c1:33:7c:bb:f4:3f:
ab:68:a2:97:b5:0a:b4:66:92:2a:91:30:e2:59:84:ec:ec:5e:
ec:c5:d6:c6:03:c5:c6:b4:67:57:c2:94:f5:d0:79:be:32:9a:
55:3d:73:cf:dc:8f:e6:90:81:62:f5:82:ef:98:9f:bd:c6:bf:
85:d4:99:7b:2e:65:cf:c2:34:21:74:b7:78:be:d4:c8:c8:90:
cf:20:b2:53:dc:a1:1f:e7:6c:e7:63:0f:03:30:a4:cc:9b:da:
da:1a:66:fd:69:ef:d7:cc:33:f5:b6:2d:35:dc:f6:3b:15:b4:
c2:09:0f:d5:40:cd:c0:fe:1e:94:c4:72:b6:fe:f3:b9:31:bf:
86:5d:f0:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:18:38 2026 by rpki-client