Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
File: kiYrQ-lHhUb8DhN16LHguv1q3lA.mft (raw, json)
Hash identifier: DcuvrCQM9QD1VtrZnfm4GDTVEgDgdSZBET0gHO9CFJk=
Subject key identifier: B9:E1:34:83:94:81:A3:B7:28:D7:48:20:E9:0E:50:E4:B6:40:FA:01
Authority key identifier: 92:26:2B:43:E9:47:85:46:FC:0E:13:75:E8:B1:E0:BA:FD:6A:DE:50
Certificate issuer: /CN=92262b43e9478546fc0e1375e8b1e0bafd6ade50
Certificate serial: 019D9BBEF6B13053F2DBA93C17C474CB6F75
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
Manifest number: 18BF
Signing time: Fri 17 Apr 2026 14:01:16 +0000
Manifest this update: Fri 17 Apr 2026 14:01:16 +0000
Manifest next update: Sat 18 Apr 2026 14:01:16 +0000
Files and hashes: 1: kiYrQ-lHhUb8DhN16LHguv1q3lA.crl (hash: vcgRfL9gu5Ykv+ipYVWCeoNxUizmB9N8gF6PlKvzFuc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:f6:b1:30:53:f2:db:a9:3c:17:c4:74:cb:6f:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92262b43e9478546fc0e1375e8b1e0bafd6ade50
Validity
Not Before: Apr 17 14:01:16 2026 GMT
Not After : Apr 18 14:01:16 2026 GMT
Subject: CN=b9e134839481a3b728d74820e90e50e4b640fa01
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:cc:5f:53:89:df:1e:ff:6e:8e:91:ab:67:ce:
5f:5d:02:69:0a:d1:f5:0c:f8:30:ff:a7:19:85:59:
51:b2:fa:45:af:68:8f:1b:5b:e4:5b:df:c3:04:f7:
92:d3:0c:01:38:74:f0:77:dc:dd:d5:2f:97:0b:73:
75:79:d4:f7:7f:6c:b2:05:2a:9c:d4:b0:db:17:3b:
04:ac:02:63:5a:0e:f4:c6:13:be:7e:64:a2:a4:1d:
a6:9f:17:f9:74:e2:91:a9:62:13:b0:cf:fe:8a:be:
d1:41:61:05:b2:bf:6b:d6:d8:00:4c:60:fd:f4:ee:
a2:f6:27:7f:74:11:1e:19:8a:da:ac:ba:c3:17:81:
36:16:31:4c:85:f0:11:27:6d:42:a5:4f:16:7c:e8:
a3:ad:33:a7:5f:16:0c:aa:e2:6e:ee:76:d1:f5:9c:
a7:be:88:be:e3:1e:71:1a:d4:bc:44:58:0f:9e:52:
e8:f6:bc:71:03:6f:fd:8f:85:82:7f:f3:4e:d9:3b:
8e:c2:e0:ad:54:25:2c:b7:da:a1:20:9c:29:da:ab:
f6:33:e3:36:06:76:be:14:16:29:98:9c:4f:78:7c:
76:13:a6:92:25:04:4b:0b:17:b6:79:81:0c:80:c3:
5e:14:6c:b0:61:67:12:f1:9a:14:aa:3c:00:2e:7f:
07:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:E1:34:83:94:81:A3:B7:28:D7:48:20:E9:0E:50:E4:B6:40:FA:01
X509v3 Authority Key Identifier:
keyid:92:26:2B:43:E9:47:85:46:FC:0E:13:75:E8:B1:E0:BA:FD:6A:DE:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:09:89:bf:2b:61:e9:b4:5e:4b:9c:4d:bb:71:10:0c:f4:a5:
6c:85:97:90:bf:64:80:bf:bd:52:d6:3b:7d:63:dd:11:bd:65:
76:db:27:10:b1:ff:56:9b:f1:5c:07:ac:e6:6c:3d:98:5d:c7:
67:77:01:4d:01:00:3e:1c:f0:ca:fb:98:d7:af:99:ba:14:39:
70:b2:a6:42:71:96:22:8a:54:62:e9:b7:a1:60:19:2e:83:b8:
05:d9:fc:8b:07:50:dd:59:9d:2f:42:5c:78:ec:0e:4b:74:31:
b8:80:62:2e:89:16:c2:08:f5:be:c1:15:27:87:70:6a:d2:06:
e0:44:f4:92:61:a7:13:1f:98:17:09:e8:7a:38:bc:18:91:fa:
d9:44:7a:a0:cf:fb:a1:df:fd:52:9c:4d:9c:66:d4:d3:5a:2e:
70:08:10:63:2e:41:52:82:57:d6:80:40:7d:69:5a:0b:61:81:
99:5b:04:8d:60:23:63:fb:a7:44:51:41:cd:ca:c9:6d:21:49:
ad:c8:5f:ef:3e:f4:16:f9:72:96:56:50:5f:ea:8e:47:a1:91:
54:06:de:75:ed:33:a2:c1:fd:8d:73:2b:9c:86:9e:88:29:2f:
53:2a:99:2a:38:75:df:17:eb:2c:25:a3:7a:42:3d:55:a4:0b:
5c:cc:b7:d8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:52:52 2026 by rpki-client