Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: M5k15lAMzbXdguBQ6AakgwTNchcaEFT4BSZIVLeoa+o=
Subject key identifier: D4:7E:F1:E8:6E:DA:0A:57:CC:5D:62:E8:77:EB:82:8D:77:CA:59:35
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 019D97E1FDE9DCCFA002840F0027F92310D1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 1734
Signing time: Thu 16 Apr 2026 20:01:03 +0000
Manifest this update: Thu 16 Apr 2026 20:01:03 +0000
Manifest next update: Fri 17 Apr 2026 20:01:03 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: dnJVAuDwz3jHFu2+zJ/dfSi48n8zUf2xFgm1y0B34eQ=)
2: qh7XZDst8WsBCGjKLPzTSR00_9w.roa (hash: 91hvylgfnm1S7Q889lgwTcLMuKxZDx/xX3dO/XE0rko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 20:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:97:e1:fd:e9:dc:cf:a0:02:84:0f:00:27:f9:23:10:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Apr 16 20:01:03 2026 GMT
Not After : Apr 17 20:01:03 2026 GMT
Subject: CN=d47ef1e86eda0a57cc5d62e877eb828d77ca5935
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:75:92:87:0d:c5:02:ce:31:84:5c:31:20:85:
74:02:cc:1e:40:eb:2a:36:de:fa:1a:57:31:00:fe:
2b:ff:61:54:ff:fd:74:e8:68:fb:c8:62:a6:0a:09:
5e:0d:da:e4:88:30:e0:a4:1a:f2:d2:30:6e:9d:48:
b6:db:f9:73:a4:a4:44:96:a5:c2:2d:6b:61:f4:ba:
fa:f6:46:9f:de:6a:90:1d:8b:2c:30:ed:7d:b7:08:
48:10:02:bb:b6:f0:0f:c3:b4:ae:b4:c0:a4:63:82:
ff:94:78:c2:ae:b2:e6:ee:c6:b7:84:0c:8e:c1:3a:
a2:68:46:d5:90:78:ee:e9:c6:e4:4c:60:15:ad:fe:
d6:59:9f:c9:f5:00:e0:54:51:16:24:35:96:43:d7:
d6:b6:22:61:eb:a7:0a:20:5f:88:f7:a9:a0:d1:6e:
ef:dd:99:3f:ce:23:a8:76:06:10:2a:fb:a7:de:58:
c9:8c:32:c9:f6:f6:17:44:17:57:72:ff:fa:e8:1c:
5c:2e:eb:89:7d:bd:c7:82:52:64:59:b8:a0:fd:03:
83:99:cc:d9:81:fb:65:29:3e:24:34:34:32:12:d9:
b8:ef:26:b5:b1:36:04:b5:50:94:15:81:62:10:53:
2a:32:8c:f8:29:7d:2c:ce:30:df:1f:fe:ff:3d:4d:
33:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:7E:F1:E8:6E:DA:0A:57:CC:5D:62:E8:77:EB:82:8D:77:CA:59:35
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:19:ad:98:f5:6b:4b:cd:2f:01:c5:7c:a1:da:09:da:84:02:
7e:cc:db:ce:69:41:10:2d:b0:37:c5:0c:44:e5:90:92:4d:4a:
20:35:14:cd:0c:51:29:e2:d9:72:00:b8:0a:a5:a8:4c:5f:db:
bb:18:2c:95:ef:0d:42:39:3f:fc:e6:5d:76:90:fd:35:21:e1:
2c:c1:bb:b8:67:e9:32:fd:68:c0:ed:98:bf:26:0d:6f:21:d7:
39:a4:d5:a2:6e:54:f6:b5:72:21:76:b0:3c:a7:f1:e2:4e:f5:
5b:8b:93:da:16:cd:74:94:a2:1c:83:26:f4:47:2f:5a:b6:9e:
fa:78:c7:20:29:39:6b:e8:83:cd:dd:92:2c:96:58:43:5e:65:
80:49:9c:9a:30:ca:64:37:6e:1c:6b:8e:71:3d:c2:56:6c:41:
37:e6:30:47:c7:fe:7d:73:2f:3c:db:77:83:de:eb:b2:ff:68:
26:b2:c7:af:31:81:db:50:b9:64:98:43:56:3e:db:d8:e8:bc:
a0:54:21:e2:21:bf:a8:7d:c0:d4:40:ca:2e:34:1c:b5:48:fa:
c3:1c:f0:0c:a7:ff:6a:0c:e4:73:10:89:27:ca:84:ac:6f:69:
74:6b:68:38:4c:e6:e3:ab:15:b7:93:e9:77:14:ca:26:74:11:
97:ba:9c:03
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:27:45 2026 by rpki-client