Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: TbN6iCJ1ROUKGXcDsP0+8h2fXD+B29ZS9Ab3heD4+Yk=
Subject key identifier: D7:81:B9:61:1B:50:29:0A:ED:E7:03:1F:8D:6A:8E:35:96:0D:C5:77
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 019EBF5AB0B23BD2C41E4C16A3EAF99410B1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 17CD
Signing time: Sat 13 Jun 2026 05:00:52 +0000
Manifest this update: Sat 13 Jun 2026 05:00:52 +0000
Manifest next update: Sun 14 Jun 2026 05:00:52 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: aXllLI5EHxYB/kzd5dBc9MZ9YWnr/aqEn8vJ0zNamRo=)
2: qh7XZDst8WsBCGjKLPzTSR00_9w.roa (hash: 91hvylgfnm1S7Q889lgwTcLMuKxZDx/xX3dO/XE0rko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:b0:b2:3b:d2:c4:1e:4c:16:a3:ea:f9:94:10:b1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Jun 13 05:00:52 2026 GMT
Not After : Jun 14 05:00:52 2026 GMT
Subject: CN=d781b9611b50290aede7031f8d6a8e35960dc577
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a3:b7:6e:a0:10:57:99:72:1f:e8:c3:11:87:
cf:b8:6d:2c:c1:9e:90:0c:23:e6:07:b9:75:91:ef:
09:cc:17:e6:db:e5:aa:c8:78:c0:62:46:a2:9f:6f:
4b:51:f7:2e:cc:60:21:ba:bb:39:78:46:8d:f1:58:
d9:fb:9f:ee:9c:f6:24:70:f0:13:78:3e:76:02:ba:
bc:8b:74:2d:18:cc:27:1a:75:7a:18:2e:2f:8b:19:
aa:30:e0:19:4a:74:3c:63:8b:4b:95:f0:eb:53:84:
33:c8:49:65:a9:dd:21:d9:09:13:96:5a:63:5d:16:
40:c0:2d:a4:12:c9:f9:d0:0d:c5:95:f1:62:42:a9:
0d:f9:e2:ec:56:c9:48:bf:23:3a:2b:b6:fd:27:53:
ad:12:de:8a:34:47:47:51:03:9f:11:c6:65:40:28:
03:10:9e:a2:a4:d5:12:ed:90:d9:99:df:dd:33:76:
2b:61:0f:f7:b8:5c:f6:e6:5c:14:5e:df:5e:36:12:
ff:bc:7a:07:29:57:1a:53:36:e8:87:2e:9c:f6:9a:
db:2b:e3:b7:95:e2:10:03:9d:27:a3:95:d2:43:fe:
bf:8b:03:df:8f:9a:4c:d7:f2:6a:38:f2:3f:c4:55:
bd:c2:d2:82:af:a8:4a:dc:dc:39:bf:9d:0f:78:5c:
68:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:81:B9:61:1B:50:29:0A:ED:E7:03:1F:8D:6A:8E:35:96:0D:C5:77
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:f4:b6:f0:74:96:5e:4e:4c:4f:a6:f9:0b:91:2d:f8:88:6c:
57:30:d5:86:9f:80:f7:be:18:28:61:77:32:d2:c7:dd:cb:2f:
82:ad:fb:76:a4:cc:97:51:e8:bc:28:6f:a4:81:55:0e:22:69:
d1:71:af:11:0b:b5:27:e7:5f:2e:ee:bf:9c:f9:a5:d9:f2:a7:
f4:4d:71:b2:6f:49:35:b5:db:23:72:aa:90:43:eb:58:7e:6b:
4f:19:11:99:36:1b:95:8a:09:7c:4d:ee:2b:8d:b5:5f:c1:2b:
4c:67:6c:f9:cc:cb:17:7c:af:93:b0:c0:9b:04:a9:51:75:f1:
85:6c:3d:69:ca:78:86:44:f0:40:02:4e:33:d8:35:6e:01:ae:
57:61:ed:b2:8c:8b:23:a2:e9:c1:1a:7c:a8:eb:73:d4:fb:a4:
67:da:40:ef:fd:36:9b:b9:2d:6d:e3:8e:72:49:de:81:cc:eb:
e0:8b:98:05:22:2b:61:1a:82:1f:e1:29:1f:c6:e3:59:93:a3:
83:30:ea:ce:87:db:88:47:30:b7:1b:a4:0f:2b:13:b1:78:f2:
99:c7:4c:9e:8a:23:04:2a:aa:b6:15:bd:4c:8b:39:86:20:c0:
7e:2f:bc:06:09:67:7d:cf:a2:e3:bc:95:78:23:a4:43:2f:a9:
61:1a:3e:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:48:23 2026 by rpki-client