Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
File: KyJEyKPrSjxtd20EbOkqvwHGwi8.mft (raw, json)
Hash identifier: ilmoVin2DGTPQBo1LelaMj7V5GvHTf0y8X23ugllN/U=
Subject key identifier: 21:9D:8C:DC:FC:98:6C:95:0A:E0:68:FC:96:11:72:5F:5D:1A:A0:7D
Authority key identifier: 2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
Certificate issuer: /CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Certificate serial: 019D9A3EEAEA8DEE301FEF0E698888F8C7C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 07:01:47 +0000
Manifest this update: Fri 17 Apr 2026 07:01:47 +0000
Manifest next update: Sat 18 Apr 2026 07:01:47 +0000
Files and hashes: 1: DWxK7O4df_W8HA4KXmkc0bNeZRc.roa (hash: BoTdjcLNvInLjrHcqKbP+Q4OyLKz1VsHHG2lylnjHaU=)
2: KyJEyKPrSjxtd20EbOkqvwHGwi8.crl (hash: Lw33xfSuNMoSTmol9S8OUC0sTBjyKWPKHqK9MzwOohk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:ea:ea:8d:ee:30:1f:ef:0e:69:88:88:f8:c7:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Validity
Not Before: Apr 17 07:01:47 2026 GMT
Not After : Apr 18 07:01:47 2026 GMT
Subject: CN=219d8cdcfc986c950ae068fc9611725f5d1aa07d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:54:af:9e:44:81:ae:ae:c3:02:e6:74:8f:8b:
9d:37:14:64:3d:c0:af:d5:41:42:05:70:66:21:17:
9c:1a:50:58:3d:ad:c0:77:df:12:fe:3e:d3:e9:0a:
01:f6:98:1d:02:2d:9d:61:89:05:8a:a6:7a:be:fd:
3b:2c:5f:4d:71:6d:37:e8:36:34:bd:ba:ff:89:6e:
fc:25:51:dd:a7:35:4d:54:c9:49:e2:a4:61:27:12:
2a:56:c4:66:f0:98:b8:4b:62:b9:5e:09:9b:3a:d5:
4b:80:0b:e5:9e:df:2d:25:d5:c8:b3:fc:79:0a:fd:
38:89:8f:e0:2e:b4:8f:74:65:6c:6f:c9:82:c6:24:
b2:75:30:d6:7a:92:bd:c0:50:13:73:89:bc:2c:88:
28:15:c6:07:85:2f:4c:cf:bd:ba:87:15:eb:85:d7:
04:69:98:13:b1:c8:97:15:9c:c9:e9:e1:24:4c:1f:
36:6f:17:0d:4e:d3:7a:3c:72:73:9e:73:9f:bb:ed:
d0:bd:99:89:ee:47:cb:ea:6a:d8:4f:65:76:af:96:
13:4f:c5:34:fe:9e:c7:8a:32:58:88:dc:67:1f:81:
28:41:0b:30:30:ba:a5:c8:07:6d:90:cc:a5:a5:67:
98:51:42:12:0f:0e:ca:f6:d7:4e:0d:9a:5d:fc:ad:
9f:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:9D:8C:DC:FC:98:6C:95:0A:E0:68:FC:96:11:72:5F:5D:1A:A0:7D
X509v3 Authority Key Identifier:
keyid:2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:1c:53:af:19:3e:d1:59:d6:1e:f4:37:a4:da:ad:db:13:90:
21:5e:f9:a8:7f:4d:44:bd:69:0e:cf:fa:70:44:64:1e:58:6c:
51:bd:df:eb:16:3c:11:1e:4d:8b:e5:6b:26:a6:b0:7e:41:9d:
ca:1b:a1:35:6d:d4:6f:68:ab:84:14:db:83:10:75:dc:e0:17:
40:c8:77:40:a7:6a:73:6b:e1:55:24:c5:45:de:db:74:ea:29:
3d:63:36:fb:5a:ef:cf:9c:6a:98:08:40:df:66:47:52:e6:17:
94:d1:c6:a4:4f:5d:4a:75:17:7d:72:a8:c8:b8:5e:6f:41:44:
6e:b8:13:c1:d8:5d:60:bb:e8:c5:37:a7:0c:0d:67:bf:65:03:
d9:5b:18:59:af:0f:87:c7:8e:d8:ec:b0:21:2e:85:bf:29:57:
a3:37:3e:bd:48:5d:76:b8:69:c1:94:5a:7e:16:7e:dc:af:b9:
89:e2:19:d0:4c:1c:a0:b1:0c:df:17:ef:1a:03:41:28:03:d1:
67:32:0a:5b:5e:17:e3:b3:f8:42:20:32:34:4c:e5:da:cb:b3:
9d:72:3a:02:2a:7a:8f:42:37:97:ab:e3:0e:1c:2c:06:ee:30:
b2:72:af:8b:0e:b1:68:e9:83:86:69:27:c0:14:d9:07:c6:a4:
96:f5:44:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:45:24 2026 by rpki-client