Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
File: KL8ecjI3QqxNgTarbI6F33ujfus.mft (raw, json)
Hash identifier: ukCsqZmbXIb18Pfohz88SxgOXa58XUq1AF+7MUzoyjw=
Subject key identifier: 17:57:7A:6F:BD:DB:F0:8F:C1:25:8E:9A:67:99:37:22:29:EB:88:1F
Authority key identifier: 28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
Certificate issuer: /CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Certificate serial: 019D9BBE6F0F479958C27D22639FA3755B6C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 14:00:41 +0000
Manifest this update: Fri 17 Apr 2026 14:00:41 +0000
Manifest next update: Sat 18 Apr 2026 14:00:41 +0000
Files and hashes: 1: KL8ecjI3QqxNgTarbI6F33ujfus.crl (hash: tc8PU7xhkyhw6LuZAtsg9N3VNg/UdIVg7X/geBxobfY=)
2: ecRzktYrFjLVxOC-GlugSTEtWK0.roa (hash: rKqBSvS82bzwCh2lS4Ae0RGYw1nfUEHFPUJO90hBbGI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:6f:0f:47:99:58:c2:7d:22:63:9f:a3:75:5b:6c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Validity
Not Before: Apr 17 14:00:41 2026 GMT
Not After : Apr 18 14:00:41 2026 GMT
Subject: CN=17577a6fbddbf08fc1258e9a6799372229eb881f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:48:1c:ac:6c:8a:08:39:6f:2a:0e:98:f6:9b:
b2:62:07:fd:c4:8f:d7:f2:20:0d:b2:0f:84:1c:a6:
a8:cb:60:27:38:96:56:b9:36:0a:07:46:9f:16:d5:
b1:d4:e4:e1:54:e3:e5:f1:24:c3:59:4e:d0:a3:a3:
43:03:3c:fd:d5:76:b2:35:67:8c:ce:23:ec:11:27:
13:06:06:f7:c1:92:c7:d6:a3:e7:e0:9a:33:7d:77:
f7:39:1c:e1:0c:d7:99:d9:79:80:38:61:93:41:48:
45:5f:b4:ec:6c:8e:ea:4a:58:84:a7:9d:f8:00:c5:
ad:f2:e2:41:39:db:18:bf:c1:18:fc:e6:83:f2:03:
59:08:02:e9:42:09:40:af:00:92:5a:8a:f0:15:79:
b0:77:32:ce:de:23:e2:7b:df:c0:4e:9e:fd:a7:a3:
3f:f0:0e:83:eb:77:3b:83:74:fa:70:71:9b:46:ed:
89:b4:f1:68:a9:4d:44:3e:6e:3a:62:47:f6:c5:89:
5d:3d:64:44:b9:7a:50:03:75:dc:ef:71:81:3a:49:
07:ce:50:15:6d:78:2e:e5:44:d9:e6:b2:75:df:43:
34:4b:ce:65:08:c9:1e:60:d0:32:56:06:5d:ba:d0:
ef:f4:d1:7a:98:23:cc:a1:e9:68:bc:f2:d9:96:12:
c0:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:57:7A:6F:BD:DB:F0:8F:C1:25:8E:9A:67:99:37:22:29:EB:88:1F
X509v3 Authority Key Identifier:
keyid:28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:ea:d5:4d:e0:d9:63:5d:8c:84:48:6c:3d:f6:70:c0:ed:1b:
fd:c9:ca:aa:a3:f8:66:44:aa:11:cf:af:d3:c3:54:77:c4:be:
ba:56:b2:fa:e4:bf:c0:13:b0:2a:10:de:e2:0c:c4:88:45:19:
8f:60:72:35:25:be:89:39:35:33:f6:a1:4b:80:c9:7b:ce:fe:
01:b1:f1:4c:4c:20:a6:20:a2:ab:d8:b0:62:3f:df:a5:03:04:
1e:b0:87:d6:8b:64:25:47:76:a1:8e:7a:04:a5:d5:5e:26:15:
ac:ad:38:f2:82:d2:e6:de:cc:04:be:c3:87:ca:56:c7:1d:76:
3f:20:16:29:f3:40:d0:43:b7:a0:39:5f:34:ac:51:af:18:12:
18:13:74:a8:97:ee:40:f7:7e:75:b6:e4:3b:0c:1f:99:e5:03:
f9:90:49:d0:53:04:a0:c6:21:c9:cb:99:55:c2:34:b8:89:90:
65:cd:7b:06:e8:7c:9e:88:0e:b0:53:f9:79:87:aa:70:d5:15:
3f:e5:e6:d2:f2:25:0d:d6:2e:4a:bd:70:5c:a6:eb:1a:fd:86:
9c:3f:31:7f:04:07:3e:09:00:1c:d8:4d:9a:a9:83:34:14:1e:
39:81:af:a1:20:bd:8a:76:ba:b6:06:68:ec:42:2c:fd:24:c4:
09:a4:4f:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:15:35 2026 by rpki-client