Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File: KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier: SLvQxvzhQUq1Zx7o1LGHK8Vqw9i4wo9kA3z5+pTX0f0=
Subject key identifier: 4B:01:90:D8:3F:C1:10:74:9E:47:E5:26:05:28:2F:8D:BA:AC:B1:DD
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial: 019D99D092CC7A6B8228A33C716E70CA76E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number: 18C0
Signing time: Fri 17 Apr 2026 05:01:16 +0000
Manifest this update: Fri 17 Apr 2026 05:01:16 +0000
Manifest next update: Sat 18 Apr 2026 05:01:16 +0000
Files and hashes: 1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: 2pcHOZZQ0X4CLORIpPhZAccjxDqho8KbFZ7/4iGMAKk=)
2: wkII8mT_euYThV1XwcC1p09SIq8.roa (hash: KTBmbNMYpZwuYjtqFt1PYs9OEJ/5++AGe1s/9JAMhzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 05:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:d0:92:cc:7a:6b:82:28:a3:3c:71:6e:70:ca:76:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Validity
Not Before: Apr 17 05:01:16 2026 GMT
Not After : Apr 18 05:01:16 2026 GMT
Subject: CN=4b0190d83fc110749e47e52605282f8dbaacb1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:63:28:3c:81:c4:8d:31:a9:9d:4b:fe:d0:ef:
89:57:f6:ab:56:aa:3f:1d:d0:05:e5:0b:ca:2c:37:
93:a3:1a:c2:22:2e:4d:d5:ce:42:07:65:ff:b6:b1:
37:60:a2:5b:c1:41:53:56:27:ef:6e:1e:d0:d9:96:
60:63:f3:26:54:a2:ee:17:38:a6:9e:b4:91:84:50:
6b:c6:2e:78:fb:c7:3e:53:89:6f:2f:1e:37:7e:01:
49:85:da:a9:30:ae:3b:3e:ee:07:02:3e:8b:75:6b:
f8:77:6e:ea:f3:f1:ee:81:5c:97:b4:71:29:dd:4a:
7a:db:f3:67:27:b7:8d:69:ca:b0:2f:81:10:ab:a9:
1c:92:a9:82:b3:fa:8d:cf:21:6f:c3:d6:d8:14:53:
77:98:b1:e7:6e:ef:4c:13:3e:ad:2e:fb:30:a6:a8:
d1:66:5d:05:70:66:ea:eb:dc:c1:23:27:2f:8d:b1:
51:7d:2e:d3:c4:2a:c2:56:32:08:4c:7d:3a:6b:e3:
64:70:0f:65:7b:84:33:57:62:07:8c:47:d1:a6:0f:
89:1f:bd:7d:7e:13:f9:90:31:5f:0c:33:2c:f7:43:
17:fe:e9:06:23:cc:5d:5e:2d:fb:c8:b6:76:a8:be:
33:4b:36:dc:63:b4:93:75:c9:bf:8d:78:0c:01:7d:
bf:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:01:90:D8:3F:C1:10:74:9E:47:E5:26:05:28:2F:8D:BA:AC:B1:DD
X509v3 Authority Key Identifier:
keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:79:6a:01:c6:70:bf:ad:7a:78:a3:c4:cd:d6:62:4c:78:9b:
d3:a1:c2:2f:fb:5c:68:ae:8e:d5:15:b2:34:7d:83:5f:37:c2:
f6:49:f7:f0:08:ca:5d:41:70:b9:fd:a5:92:f8:9c:b7:e8:d0:
5b:fe:86:24:21:ff:3e:06:6f:7b:d6:1d:0c:c1:2e:d8:84:60:
ac:95:ff:36:4b:23:95:d4:5f:71:14:ad:52:04:df:d7:c5:7b:
fc:9d:d1:81:4b:69:0f:3f:b7:c0:82:49:cf:36:57:51:db:67:
d2:4e:25:0b:19:86:33:0f:f2:4a:fa:04:35:ca:da:7c:10:3d:
fc:d3:5a:42:9f:1e:df:8d:18:5c:48:27:2d:2d:2f:70:2d:70:
95:9c:59:90:06:c7:8f:4f:9f:f4:58:50:95:6f:08:fe:4a:f9:
e4:d6:50:ee:c2:70:ba:81:fb:95:c2:f5:ae:ed:3d:7b:ab:18:
6c:70:25:b0:97:a3:e2:08:4b:d1:c0:e4:4a:fa:1d:0c:1b:6d:
19:ea:a0:00:f1:1e:b4:69:43:ea:7f:66:15:b5:09:51:40:4e:
8f:e5:51:a7:79:f5:77:c5:4a:17:54:fb:af:3b:a4:c2:95:11:
68:b5:54:fd:d2:0d:e0:75:26:40:25:af:74:dd:73:19:72:ee:
9a:d4:b0:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:42:06 2026 by rpki-client