Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
File: KmU0qslEKjlNE5oagwPcBJWcHaA.mft (raw, json)
Hash identifier: QrAGUuj8srr1Ycu7TmLPNsCHphBtYA7ojjMlNNYR58U=
Subject key identifier: D0:8F:2D:77:3F:88:2C:06:CF:C1:4B:DF:12:A7:93:F3:EA:E6:28:88
Authority key identifier: 2A:65:34:AA:C9:44:2A:39:4D:13:9A:1A:83:03:DC:04:95:9C:1D:A0
Certificate issuer: /CN=2a6534aac9442a394d139a1a8303dc04959c1da0
Certificate serial: 019D9AE2F4EE71EE6562EBB039A5B02345D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
Manifest number: 11D6
Signing time: Fri 17 Apr 2026 10:00:58 +0000
Manifest this update: Fri 17 Apr 2026 10:00:58 +0000
Manifest next update: Sat 18 Apr 2026 10:00:58 +0000
Files and hashes: 1: KmU0qslEKjlNE5oagwPcBJWcHaA.crl (hash: 42j0s8pUFiOVL+bsT7fJloGsIpD40ADTE6z9NR2cQgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:f4:ee:71:ee:65:62:eb:b0:39:a5:b0:23:45:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a6534aac9442a394d139a1a8303dc04959c1da0
Validity
Not Before: Apr 17 10:00:58 2026 GMT
Not After : Apr 18 10:00:58 2026 GMT
Subject: CN=d08f2d773f882c06cfc14bdf12a793f3eae62888
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:aa:a8:c6:01:d8:2a:a3:3f:08:ff:94:22:02:
62:19:cf:20:83:87:bf:d5:3e:8a:ed:f7:91:6c:83:
be:55:c8:71:1f:a6:2b:ce:a8:b8:5e:75:74:37:69:
09:2a:bf:de:cb:8c:df:ab:3d:00:80:b2:9a:df:3d:
00:ee:09:97:48:86:bb:a4:51:26:cc:69:ab:4d:49:
dd:47:9a:41:ce:bb:c3:ff:62:7d:2d:99:6c:2e:7a:
70:0c:63:e7:ca:4d:c9:9f:e1:68:47:3d:56:28:22:
a8:28:a6:ce:ef:1d:c5:7e:81:87:1f:fe:c7:0a:54:
60:7c:04:19:b4:2a:10:43:3d:2c:fe:3c:bd:fd:62:
2d:36:2c:b9:89:ca:66:cc:1e:63:32:f3:e0:0d:cf:
16:07:89:66:45:3d:38:ff:43:ca:84:53:d7:15:c3:
45:7b:74:43:16:0b:ca:62:b5:21:85:b7:57:53:71:
40:f6:2f:bc:a5:da:9f:7d:76:ad:41:33:10:bb:60:
69:3d:50:73:fc:54:e3:16:7f:4c:c8:0d:b9:a6:63:
f9:50:f9:14:cc:3f:d6:12:dc:b9:bd:27:a3:cf:38:
4d:9a:14:99:81:2f:09:9b:6d:f8:46:b1:06:b0:7a:
4a:59:d1:c7:fb:e2:ee:b2:c5:ae:0f:ba:c7:2e:04:
a5:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:8F:2D:77:3F:88:2C:06:CF:C1:4B:DF:12:A7:93:F3:EA:E6:28:88
X509v3 Authority Key Identifier:
keyid:2A:65:34:AA:C9:44:2A:39:4D:13:9A:1A:83:03:DC:04:95:9C:1D:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KmU0qslEKjlNE5oagwPcBJWcHaA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/d2388f-f8a9-4485-937f-840fd5352dc0/1/KmU0qslEKjlNE5oagwPcBJWcHaA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:30:b4:f9:2f:84:98:f8:88:ca:bc:a3:f6:84:e1:e8:4d:b2:
d3:b6:c7:b7:9e:ae:c1:19:d4:d8:a3:64:2b:0f:52:57:78:3d:
d6:24:ed:4c:0a:74:51:90:cf:0a:31:87:5d:09:af:96:42:06:
88:6b:df:63:5a:15:15:10:03:9b:95:85:29:a7:2f:80:5b:60:
14:ae:26:31:a5:63:05:3b:9b:c2:62:ed:4c:05:f4:b8:e4:80:
6a:c7:26:73:9c:09:d4:4a:f4:32:60:6d:be:de:ce:57:5a:94:
53:ba:73:99:4d:bc:5f:7b:f4:c3:29:22:d4:5d:cb:58:29:f7:
10:cc:93:85:0e:36:2e:7f:a9:d8:62:85:97:6d:7c:04:77:33:
e3:59:d6:f9:dc:f2:d6:ba:2c:7e:46:0e:5e:fa:01:65:07:03:
33:f8:9c:7a:39:a5:71:4a:b2:80:14:b8:04:65:f3:03:87:01:
4b:cb:ae:75:80:3f:e7:2d:6c:27:ec:d7:42:f1:db:5d:a1:f6:
c4:d8:bf:1d:ef:d9:46:bc:23:84:8f:1e:2e:99:ea:cf:aa:bd:
2f:3a:00:a7:63:a6:a3:88:f5:f6:83:2e:b9:47:55:7d:bd:53:
43:7f:f2:e0:3f:b3:81:ae:85:6d:cd:49:d7:08:ff:3f:72:72:
7a:fd:cf:9c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:21:41 2026 by rpki-client