Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
File: KeRudYZejUoIHktd2kbTyUADZ5s.mft (raw, json)
Hash identifier: 6NIwBe65IYwxzOjxlfjHQc1FZN0+XLD0j5czxmf2mIM=
Subject key identifier: 1D:7F:64:AA:BE:E6:F6:C2:50:F2:8F:32:F1:DD:1F:5A:D3:B0:6D:27
Authority key identifier: 29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
Certificate issuer: /CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Certificate serial: 019CABA23FD86CC793BEE0E9570F5CEF5C37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
Manifest number: 1725
Signing time: Sun 01 Mar 2026 23:01:02 +0000
Manifest this update: Sun 01 Mar 2026 23:01:02 +0000
Manifest next update: Mon 02 Mar 2026 23:01:02 +0000
Files and hashes: 1: FY64f2n5IZxak83WH5Xr7DjmI48.roa (hash: jtG7O8Fc8btXdN9Jv20DVMBroccgppZEs1H1G7+kiM8=)
2: KeRudYZejUoIHktd2kbTyUADZ5s.crl (hash: tk7Yo4mVwufUVxc+TwjcDRSn4HdTqnsPpBiJdfWfAJI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:3f:d8:6c:c7:93:be:e0:e9:57:0f:5c:ef:5c:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29e46e75865e8d4a081e4b5dda46d3c94003679b
Validity
Not Before: Mar 1 23:01:02 2026 GMT
Not After : Mar 2 23:01:02 2026 GMT
Subject: CN=1d7f64aabee6f6c250f28f32f1dd1f5ad3b06d27
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:98:11:51:70:18:c9:ba:fb:c8:b8:a1:07:dc:
f0:78:91:77:7a:8a:11:7e:7b:c3:11:f5:f8:d5:aa:
2f:1a:18:75:4c:8e:b1:7e:3c:43:5e:46:db:49:47:
57:ea:40:8f:4e:db:c1:ee:50:3a:3d:1f:4c:52:f1:
f3:33:a8:92:89:98:15:e6:28:42:bb:e6:b0:49:c3:
f1:6a:3b:8b:87:db:4b:69:d4:bf:3c:cd:54:8b:84:
03:22:7d:c0:88:87:49:02:e9:8c:a2:0d:68:58:06:
6b:be:fb:20:5c:46:a9:39:0b:5e:54:14:8f:90:25:
7b:13:73:59:f0:e9:6b:c9:03:fe:c9:e5:e6:58:4d:
50:7f:79:f1:92:61:e2:a2:f9:28:f6:52:3d:fb:d6:
d8:60:1c:3c:08:cb:10:35:b1:4e:cc:5d:7f:c1:2f:
3b:87:f0:b3:3e:01:d4:7d:4f:b6:20:3b:db:92:86:
2d:4e:eb:33:4a:58:cc:ed:aa:7a:6f:fe:1d:15:29:
20:0b:c0:5c:a5:3c:0c:a7:b5:a8:20:5c:75:da:03:
fd:7b:e6:a4:cd:6c:0a:fb:84:e8:87:be:53:0e:ef:
3e:2f:36:55:e3:ef:e8:bf:91:46:cb:8e:bc:2e:e3:
8b:aa:f3:76:2a:3c:10:f0:09:2d:41:c7:45:45:fb:
13:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:7F:64:AA:BE:E6:F6:C2:50:F2:8F:32:F1:DD:1F:5A:D3:B0:6D:27
X509v3 Authority Key Identifier:
keyid:29:E4:6E:75:86:5E:8D:4A:08:1E:4B:5D:DA:46:D3:C9:40:03:67:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeRudYZejUoIHktd2kbTyUADZ5s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/d2354a-f3c2-41d5-b292-a9d267acf664/1/KeRudYZejUoIHktd2kbTyUADZ5s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:12:a9:93:f8:fc:d0:6d:bb:fc:a0:15:68:4d:c0:c7:3a:04:
ae:35:0c:c5:ed:6c:aa:2b:7a:08:a6:d8:9e:69:4d:17:01:72:
92:50:92:02:d1:c2:f3:f8:de:be:fa:bb:b3:61:8f:a6:c4:dc:
54:13:35:de:74:64:48:63:3a:c3:f2:a8:57:ad:e5:b7:fa:5c:
8f:16:ef:4b:93:2f:1c:91:f1:76:cd:c8:be:02:d4:2d:67:76:
07:5d:5e:86:89:39:df:f9:00:c9:7a:88:e0:ad:18:b9:3d:c8:
2d:82:ef:6c:8c:0f:62:e3:70:b2:d3:ff:66:83:f0:68:0f:ce:
a9:3c:8c:d6:7a:8d:a4:c8:03:cf:0d:fc:7f:6d:7d:05:bb:36:
b3:e4:e4:e9:3c:83:ee:6c:59:b8:93:d7:2d:76:45:15:62:89:
bf:28:22:0e:a1:1a:52:f9:2d:2b:f6:6e:39:98:6b:5d:fe:a3:
e4:6e:2a:3a:9f:19:c9:aa:d3:d5:4f:f5:cd:00:15:68:80:5e:
76:b4:96:4d:a5:e9:84:2a:8c:ca:2e:ba:54:98:33:bb:ef:93:
e4:50:12:60:04:d9:d9:1f:14:7f:1c:57:cc:a1:0c:13:e4:ea:
d2:d7:4b:3a:0f:9b:30:25:52:f2:1e:21:89:1f:7b:cc:65:cc:
da:30:2e:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:22:14 2026 by rpki-client