Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
File: KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft (raw, json)
Hash identifier: 7vyntvKjHelpKahNO8LjFOnnlJ3z4iwe63R4Ylcrhus=
Subject key identifier: 88:AD:A1:8B:B8:E4:2D:71:DA:3A:AB:9F:62:05:81:39:63:97:8C:A5
Authority key identifier: 28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
Certificate issuer: /CN=283624007f44dcaf568c370e7f71f950cb1940ef
Certificate serial: 019D9B515BD5D82CF247DF3CE45AC28AB69D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
Manifest number: 0A3E
Signing time: Fri 17 Apr 2026 12:01:33 +0000
Manifest this update: Fri 17 Apr 2026 12:01:33 +0000
Manifest next update: Sat 18 Apr 2026 12:01:33 +0000
Files and hashes: 1: KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl (hash: amRicpOmdWbgcJCM7n5OVsCT48cSa30oSlUbClKOHBM=)
2: wyIJp-MtwD9wUV37AIQAnQ5KD5g.roa (hash: 27rqphnZqec6wo9U62eKve93o5VP/+kmAfxs2ybJPtU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:5b:d5:d8:2c:f2:47:df:3c:e4:5a:c2:8a:b6:9d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283624007f44dcaf568c370e7f71f950cb1940ef
Validity
Not Before: Apr 17 12:01:33 2026 GMT
Not After : Apr 18 12:01:33 2026 GMT
Subject: CN=88ada18bb8e42d71da3aab9f6205813963978ca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:62:9a:a4:c3:c8:fc:58:cb:3c:31:3d:28:8f:
8c:3a:ef:ee:1c:a3:19:fe:3d:26:21:1c:a0:b4:5f:
02:2d:65:8e:37:89:58:27:1f:ea:aa:0d:42:a3:c8:
a9:97:03:1e:8a:88:b5:97:20:6c:0f:94:70:98:16:
e8:64:f0:2a:95:65:58:a0:4a:8f:a7:0e:8c:28:16:
c2:01:6c:ec:6e:d2:2e:f0:a4:ef:4b:15:f4:32:d0:
72:e9:78:40:c2:06:df:cb:66:bc:46:f0:6c:f4:ac:
9c:9a:0d:ca:89:5d:2c:01:78:48:40:71:51:24:dc:
a2:02:57:c3:0a:f4:3a:45:7d:64:f1:c5:1b:85:23:
7a:c8:e0:2c:fa:31:5f:c4:0a:ea:91:6f:f7:12:b0:
96:31:bb:78:d2:28:6c:7c:a3:3b:47:f7:8b:59:36:
26:05:86:7d:95:dc:64:27:25:17:3e:ae:d9:73:dd:
6c:c9:c6:8e:55:ec:55:65:d5:16:01:54:70:75:aa:
53:7b:6c:d7:2a:96:08:0f:18:d9:40:55:48:75:d7:
b3:02:47:17:aa:30:34:7e:8c:b4:e9:e3:17:99:33:
9f:d6:7a:cd:06:c5:5b:ab:32:50:56:65:1b:c8:f2:
63:31:13:e1:5b:1b:ec:60:11:f3:12:8c:d9:61:dd:
dd:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:AD:A1:8B:B8:E4:2D:71:DA:3A:AB:9F:62:05:81:39:63:97:8C:A5
X509v3 Authority Key Identifier:
keyid:28:36:24:00:7F:44:DC:AF:56:8C:37:0E:7F:71:F9:50:CB:19:40:EF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KDYkAH9E3K9WjDcOf3H5UMsZQO8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/60c724-a005-46d7-8452-16ce339016a0/1/KDYkAH9E3K9WjDcOf3H5UMsZQO8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:ec:b4:01:af:60:fa:98:5a:0a:a9:cb:2b:2a:e0:8c:ee:ca:
e6:a4:a8:62:d6:28:4d:df:e2:ab:41:d8:43:79:55:d7:f8:91:
d5:ee:28:e6:61:8d:ed:1f:00:5b:2f:2e:0e:a6:de:d6:5a:d4:
3e:9f:30:78:14:1a:27:80:86:73:44:51:a2:27:c2:a1:32:01:
39:44:ce:75:4d:99:b2:d9:e8:76:be:fe:fe:43:b0:b1:77:bd:
e8:61:a7:6d:9f:bd:9b:f7:bf:aa:f1:3a:36:87:49:17:d0:fc:
0f:b4:dd:66:8e:13:49:4c:4e:5b:d6:05:50:d9:cf:e6:c9:fa:
f0:d4:cc:2f:03:ce:72:13:f2:f1:d2:9d:55:91:00:f0:84:7e:
04:2c:88:54:dc:42:af:1b:26:82:1a:92:f9:96:1f:e0:59:a3:
74:42:3e:da:dc:79:6c:d3:74:d7:2c:7e:8d:70:21:de:9f:f0:
cf:0c:e7:54:28:52:40:7e:ce:f8:fd:c0:73:c9:e0:f8:33:c4:
6c:03:7a:f5:67:f9:f0:0a:82:d0:50:7e:89:d6:fe:19:39:28:
11:df:9e:00:3e:68:ce:8f:65:cb:24:1d:2e:2f:d7:7c:49:50:
91:6c:9d:47:3f:34:97:31:e2:d7:93:fe:ad:7b:bc:bb:12:8e:
65:37:f3:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 14:14:31 2026 by rpki-client