Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: 6wvhdrWKuwyVCsyiKdOQ8eEwHY54PfatTazzOli6RsM=
Subject key identifier: DA:C8:0E:9C:79:5B:32:67:1E:78:6C:72:23:CF:29:4E:85:7F:D9:FE
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 019D9AE31CB4CC93EF7F4E65559CD6602BC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 140D
Signing time: Fri 17 Apr 2026 10:01:08 +0000
Manifest this update: Fri 17 Apr 2026 10:01:08 +0000
Manifest next update: Sat 18 Apr 2026 10:01:08 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: 4bKCdCDNGULRfd3L9yFkys8TuwZQrbS1KY+18DR7hnw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:1c:b4:cc:93:ef:7f:4e:65:55:9c:d6:60:2b:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: Apr 17 10:01:08 2026 GMT
Not After : Apr 18 10:01:08 2026 GMT
Subject: CN=dac80e9c795b32671e786c7223cf294e857fd9fe
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:c3:cc:87:4f:db:dd:c0:b2:c7:5b:e4:ae:31:
1d:a9:19:af:d7:e7:c0:ce:5e:4e:1a:54:8b:78:47:
9b:66:0b:dd:7d:0c:5d:ba:33:dd:bc:ea:69:0b:6d:
a0:73:ce:27:3d:42:6b:ca:03:84:8a:ab:7f:4e:19:
1f:e6:91:66:9a:92:c8:d2:86:59:a0:ad:d4:94:0c:
5e:35:5f:20:80:1d:88:41:f8:73:d6:4d:66:0d:ad:
0c:a8:ef:ad:5e:66:98:1a:c1:6b:d6:36:cb:e3:fc:
a2:ce:84:90:26:22:18:52:6a:9c:56:d0:37:02:50:
a9:b9:bd:86:e9:a5:a7:e4:77:94:e6:7a:34:ed:6c:
78:99:34:64:4f:ae:23:84:d5:24:8e:64:dd:ef:e8:
61:5e:f5:97:09:2f:d0:84:81:9e:12:76:3d:97:0d:
d2:5c:ee:a9:2b:05:ec:67:e8:52:25:a4:2a:be:38:
9b:4d:03:27:4b:6b:6f:8b:f1:49:11:72:f0:5b:fe:
4a:f4:ae:37:a0:35:63:ab:3e:eb:ba:20:74:c3:a8:
79:06:7d:e9:45:5c:0e:06:3c:ef:08:93:bd:b5:81:
6e:1d:a1:89:91:8e:42:b1:85:dd:c6:fd:b0:60:30:
22:8b:7c:66:11:a1:b8:73:45:c2:6e:2f:eb:30:cf:
01:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:C8:0E:9C:79:5B:32:67:1E:78:6C:72:23:CF:29:4E:85:7F:D9:FE
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:5d:3c:77:a3:b2:ee:37:fe:b4:b5:a4:7c:ea:f9:ea:1e:05:
fc:e2:32:e1:02:37:cf:5f:53:37:b7:92:68:43:91:79:c0:bf:
77:9c:19:a2:33:6c:b6:3b:f3:68:d4:48:b7:50:59:26:2a:99:
fb:92:54:a2:ec:fa:f3:54:86:25:10:e3:aa:7a:0c:98:91:fb:
a9:4e:cf:31:40:ec:b6:74:d3:08:70:97:c3:52:74:bb:3e:07:
c1:5f:9c:42:fc:0d:d6:0b:c0:48:64:37:32:bc:f8:35:58:de:
d1:2f:b8:cc:45:3e:10:f5:77:cb:41:04:48:bd:59:5b:26:7c:
b0:06:11:29:91:11:0e:af:40:38:f5:f9:84:71:d5:a9:80:c4:
09:ba:1b:c9:e4:b1:ea:df:28:a4:7f:bb:52:09:f9:aa:ab:1f:
fd:82:77:5e:e0:2f:15:99:76:70:d0:35:7e:66:83:3a:bf:31:
e9:8f:0d:00:26:75:58:e8:52:78:65:93:4e:82:10:2d:66:9c:
15:28:4d:90:10:67:81:99:d9:2a:61:3f:23:6b:4e:de:15:46:
61:53:b5:a7:4a:bc:91:75:b8:3c:01:27:9f:3f:4f:6b:62:cc:
5b:17:b0:7c:d0:b9:33:56:ed:0c:25:85:1a:c4:a0:cc:20:c6:
50:80:6e:d8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4xy0zJPvf05lVZzWYCvCMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQyNGJjYmY1ZTlhNGZlNDMyOWYyMjNjMTE0NTA3MjkwNTM4
ZjljYzIwHhcNMjYwNDE3MTAwMTA4WhcNMjYwNDE4MTAwMTA4WjAzMTEwLwYDVQQD
EyhkYWM4MGU5Yzc5NWIzMjY3MWU3ODZjNzIyM2NmMjk0ZTg1N2ZkOWZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiMPMh0/b3cCyx1vkrjEdqRmv1+fA
zl5OGlSLeEebZgvdfQxdujPdvOppC22gc84nPUJrygOEiqt/Thkf5pFmmpLI0oZZ
oK3UlAxeNV8ggB2IQfhz1k1mDa0MqO+tXmaYGsFr1jbL4/yizoSQJiIYUmqcVtA3
AlCpub2G6aWn5HeU5no07Wx4mTRkT64jhNUkjmTd7+hhXvWXCS/QhIGeEnY9lw3S
XO6pKwXsZ+hSJaQqvjibTQMnS2tvi/FJEXLwW/5K9K43oDVjqz7ruiB0w6h5Bn3p
RVwOBjzvCJO9tYFuHaGJkY5CsYXdxv2wYDAii3xmEaG4c0XCbi/rMM8BLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNrIDpx5WzJnHnhsciPPKU6Ff9n+MB8GA1UdIwQY
MBaAFNJLy/XppP5DKfIjwRRQcpBTj5zCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUt
MmU2ZTVlNWY1ZDliLzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9iYzQxYTQtZmM5MS00OTZmLWEyMjUtMmU2ZTVlNWY1ZDli
LzEvMGt2TDllbWtfa01wOGlQQkZGQnlrRk9Qbk1JLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbl08d6Oy
7jf+tLWkfOr56h4F/OIy4QI3z19TN7eSaEORecC/d5wZojNstjvzaNRIt1BZJiqZ
+5JUouz681SGJRDjqnoMmJH7qU7PMUDstnTTCHCXw1J0uz4HwV+cQvwN1gvASGQ3
Mrz4NVje0S+4zEU+EPV3y0EESL1ZWyZ8sAYRKZERDq9AOPX5hHHVqYDECbobyeSx
6t8opH+7Ugn5qqsf/YJ3XuAvFZl2cNA1fmaDOr8x6Y8NACZ1WOhSeGWTToIQLWac
FShNkBBngZnZKmE/I2tO3hVGYVO1p0q8kXW4PAEnnz9Pa2LMWxewfNC5M1btDCWF
GsSgzCDGUIBu2A==
-----END CERTIFICATE-----
Generated at Fri Apr 17 14:35:50 2026 by rpki-client