Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
File: KfFNQRwg7PxJYhX82w9D2EchkJY.mft (raw, json)
Hash identifier: CnNd52NlniTaMOveYcQBsBe2wKuOZgt4QvnmcvQpBPM=
Subject key identifier: 82:39:82:84:4C:32:54:EA:31:D4:76:EC:F6:B5:84:C3:12:1C:B8:E5
Authority key identifier: 29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
Certificate issuer: /CN=29f14d411c20ecfc496215fcdb0f43d847219096
Certificate serial: 019D99993B3371EA01AFC7B04E28F3339F39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
Manifest number: 1555
Signing time: Fri 17 Apr 2026 04:00:49 +0000
Manifest this update: Fri 17 Apr 2026 04:00:49 +0000
Manifest next update: Sat 18 Apr 2026 04:00:49 +0000
Files and hashes: 1: KfFNQRwg7PxJYhX82w9D2EchkJY.crl (hash: dorPTK2jauqEdqwT5/jYgcjbxUSXgQyWYJnFV+RC1GA=)
2: iu7FFkG2QJaHmPA7RGTX_kUyXKI.roa (hash: QTLspgP39MYk5PSZszpGPAjQcEqECucB1FhWpPvxaIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:3b:33:71:ea:01:af:c7:b0:4e:28:f3:33:9f:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f14d411c20ecfc496215fcdb0f43d847219096
Validity
Not Before: Apr 17 04:00:49 2026 GMT
Not After : Apr 18 04:00:49 2026 GMT
Subject: CN=823982844c3254ea31d476ecf6b584c3121cb8e5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:c1:8f:f8:1e:eb:e0:c8:c4:f2:c3:e8:21:ca:
3a:1a:f6:af:8e:d0:1c:07:d5:bb:b9:dc:f6:e7:7f:
10:d2:be:9e:8e:70:b5:ef:1e:6a:57:ad:67:c5:52:
8f:de:6a:0e:da:02:b2:ef:0d:6a:2d:6b:be:17:e0:
8d:b9:38:ae:10:bc:d5:4c:0f:d8:68:ef:33:f6:f7:
e5:db:1f:d2:1e:5b:44:95:39:8b:f3:d4:e2:11:42:
b2:2d:29:e3:b2:c6:81:87:f0:72:c0:13:05:c3:ed:
be:0c:03:fa:8a:d3:a9:76:3a:bc:15:59:a9:61:db:
a2:52:4b:aa:cb:61:a5:69:b6:4a:9d:30:d8:10:1c:
fb:13:d9:43:a7:aa:46:03:0b:cf:1c:b9:1c:9a:7a:
4a:dc:27:b6:f4:75:59:3b:e1:89:b2:5a:66:2a:38:
de:df:bd:ad:17:d9:c8:7f:76:ce:76:79:88:2a:06:
69:4d:88:24:ba:e3:a2:f1:60:90:57:c3:b1:4a:15:
df:af:3c:22:9c:8b:49:ac:06:4d:fe:63:3b:43:b3:
09:46:7a:80:2b:29:a1:c7:89:01:a2:db:61:21:01:
75:73:29:24:49:9e:37:52:98:f1:fd:b3:55:d8:f0:
bb:70:c3:18:6d:3a:6a:a0:21:01:96:46:28:03:1a:
85:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:39:82:84:4C:32:54:EA:31:D4:76:EC:F6:B5:84:C3:12:1C:B8:E5
X509v3 Authority Key Identifier:
keyid:29:F1:4D:41:1C:20:EC:FC:49:62:15:FC:DB:0F:43:D8:47:21:90:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfFNQRwg7PxJYhX82w9D2EchkJY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/bcf272-d751-45be-9856-018a3770da77/1/KfFNQRwg7PxJYhX82w9D2EchkJY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:56:76:64:95:a1:75:5b:27:fe:58:b1:0c:9b:f0:5e:b7:07:
c8:36:b4:e1:38:7a:ed:bb:47:f0:bb:de:f4:08:27:21:1b:77:
2e:11:ab:d4:80:6b:42:98:38:b6:d7:ff:4c:20:de:a7:5b:4c:
10:1d:eb:34:de:27:ab:9d:71:d8:53:f5:f5:ab:99:5f:d7:25:
c0:84:b6:39:ed:5d:6d:d7:33:15:04:b9:88:12:06:11:c6:55:
87:59:54:47:f3:20:0c:86:7c:2e:b7:62:8b:be:a4:f6:01:8f:
55:37:9c:27:44:a8:8b:69:1f:9d:bb:ec:2e:5f:8a:88:9f:77:
01:36:4b:ee:61:5f:63:fb:be:dd:b9:e7:07:6d:05:08:f1:2b:
ed:be:39:51:3a:2c:06:73:74:6c:d3:6d:56:fa:b0:1d:8e:40:
6c:29:11:48:87:99:08:d8:09:d4:11:d8:d4:42:a8:f1:d1:b7:
6a:a4:75:d5:45:a5:56:c9:0f:bd:d2:6f:80:1d:fe:cf:f3:a8:
21:8c:95:ea:e8:f5:31:11:fd:a2:88:cb:51:c3:fc:18:e1:02:
5b:1d:80:e2:47:50:12:a3:e1:24:da:18:8e:be:d1:af:c8:10:
06:18:98:96:e6:5f:c7:11:bf:87:04:4d:7b:1c:28:5f:bf:1d:
23:91:b7:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:24:26 2026 by rpki-client