Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
File: KY60_lwZ8pLyiSTL8VVaj1do2CY.mft (raw, json)
Hash identifier: m8+spR/wWaO5lUM8xoarlTy24dkgKVFi+vCbdUAtxyw=
Subject key identifier: 37:17:ED:6C:7E:A8:32:68:0A:8F:96:26:B6:5C:8B:C3:FB:C1:36:91
Authority key identifier: 29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26
Certificate issuer: /CN=298eb4fe5c19f292f28924cbf1555a8f5768d826
Certificate serial: 019D98F49ACEE92340C1C1DB00627E69D73F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
Manifest number: 18BE
Signing time: Fri 17 Apr 2026 01:01:00 +0000
Manifest this update: Fri 17 Apr 2026 01:01:00 +0000
Manifest next update: Sat 18 Apr 2026 01:01:00 +0000
Files and hashes: 1: KY60_lwZ8pLyiSTL8VVaj1do2CY.crl (hash: +5mfNWXVKo7Ee5G0FYqFiGOjjjKSUWnblRmDuTuT6sM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:9a:ce:e9:23:40:c1:c1:db:00:62:7e:69:d7:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=298eb4fe5c19f292f28924cbf1555a8f5768d826
Validity
Not Before: Apr 17 01:01:00 2026 GMT
Not After : Apr 18 01:01:00 2026 GMT
Subject: CN=3717ed6c7ea832680a8f9626b65c8bc3fbc13691
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:6f:78:f3:84:01:2b:c8:41:90:57:b3:74:2e:
7d:e9:a7:47:4a:51:39:6c:bf:d4:38:25:de:76:bd:
f2:68:08:ae:30:72:0f:f3:33:aa:e2:32:e1:be:d4:
4f:c7:ef:ba:e7:cb:e4:ec:77:67:9f:9e:33:9e:4b:
66:47:87:7e:7d:1b:dc:02:98:c6:39:21:56:42:85:
56:24:8c:be:00:1b:ba:66:ec:32:59:31:18:57:f5:
31:58:58:8f:fd:df:65:28:87:55:ab:ec:db:9a:48:
36:e9:3e:59:08:e7:e6:f0:7f:75:aa:70:79:da:17:
0c:b3:29:72:02:20:c6:82:43:2c:b5:3a:7e:07:bd:
8c:b3:43:ad:71:78:1b:cc:a9:e3:14:38:96:c0:60:
11:86:e2:2d:cb:d5:97:83:d2:35:76:f9:f5:8b:ad:
42:e4:a4:53:08:8f:da:fb:4c:86:ac:35:50:0d:32:
8e:57:25:8e:04:e4:49:55:d1:09:35:54:bc:7a:ad:
cf:a2:80:1a:ad:cd:78:36:89:c3:43:ba:de:ab:61:
01:fc:d1:fa:f7:c9:96:d7:c9:65:19:0c:32:df:29:
dd:b5:e2:80:7e:39:1f:e4:fc:c6:6d:24:02:8a:04:
5b:a8:5c:fd:a0:01:66:76:03:80:ec:cb:10:8b:6f:
99:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
37:17:ED:6C:7E:A8:32:68:0A:8F:96:26:B6:5C:8B:C3:FB:C1:36:91
X509v3 Authority Key Identifier:
keyid:29:8E:B4:FE:5C:19:F2:92:F2:89:24:CB:F1:55:5A:8F:57:68:D8:26
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KY60_lwZ8pLyiSTL8VVaj1do2CY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/97111c-2e61-4359-8766-6bedf2fbdce2/1/KY60_lwZ8pLyiSTL8VVaj1do2CY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:8f:9e:08:26:4c:82:39:19:32:3c:7a:92:29:6d:85:e3:27:
79:7e:b8:0b:44:6f:34:87:ae:bf:4f:8d:0b:d3:a0:03:73:cf:
29:4c:ea:9e:1f:0b:95:68:5b:2e:15:c9:ec:fb:c4:34:71:32:
f7:e6:fb:29:59:cd:ca:cc:7a:9a:8b:10:d5:16:27:34:65:2c:
ad:db:f5:2e:c5:02:88:b2:ed:8d:85:30:f1:57:41:02:1e:a9:
dd:cf:0c:1d:e6:7e:f8:52:e1:fb:2e:00:80:3e:5c:74:f5:77:
66:91:da:9d:05:24:da:46:67:35:69:f4:7c:b3:1e:be:b9:c0:
60:93:1a:1c:4a:15:91:c7:e3:ee:38:c6:b1:e6:42:62:08:84:
1a:8b:92:fb:c0:ab:9a:71:46:62:d6:d1:37:29:58:84:b0:d9:
97:c6:62:6c:16:7e:1b:72:c1:d4:22:a1:a4:89:5b:95:2b:7b:
f3:44:9e:da:7a:e4:56:ba:1c:8a:a7:9c:eb:9d:13:70:7d:23:
c2:7f:b5:f1:46:45:b3:f1:81:2f:63:a1:9a:15:30:00:8f:f8:
83:23:6a:8e:f1:4f:55:ae:c1:0f:5c:07:bd:ee:97:4e:11:2f:
f2:a5:59:c7:78:a3:57:43:0c:38:13:fd:ac:42:da:d7:ba:f1:
6e:a7:ff:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:56:10 2026 by rpki-client