Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
File: 1KA5ru5iEDsojGyLlpLPWAh0PiE.mft (raw, json)
Hash identifier: CAkdTQ/SCM443WQUm/deqTk2gccl9FV3SurntiuCtLg=
Subject key identifier: 88:9B:65:18:37:CE:E6:13:52:1E:A8:1D:21:AD:81:97:F5:83:84:08
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 019D9886ABEB47FB06ADB5FC942AEBF9D716
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
Manifest number: 1854
Signing time: Thu 16 Apr 2026 23:00:55 +0000
Manifest this update: Thu 16 Apr 2026 23:00:55 +0000
Manifest next update: Fri 17 Apr 2026 23:00:55 +0000
Files and hashes: 1: 1KA5ru5iEDsojGyLlpLPWAh0PiE.crl (hash: YkZGGrKAz8I4QZRXCjHSNCXmriOgQtjvR8ST9lGAaS4=)
2: xmPDT0qXzI-WfyPj03f5LiDX-UE.roa (hash: bKQt5YSuFEZd8wxQPDeL7WmtwFEyplerjSwRLOQ9NRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:86:ab:eb:47:fb:06:ad:b5:fc:94:2a:eb:f9:d7:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Apr 16 23:00:55 2026 GMT
Not After : Apr 17 23:00:55 2026 GMT
Subject: CN=889b651837cee613521ea81d21ad8197f5838408
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:6f:b2:9c:c8:04:87:27:72:01:8e:44:fb:95:
fa:e9:50:ae:f5:00:8f:93:b2:6c:80:2d:ff:40:36:
26:8b:26:c6:11:9e:c4:b7:b7:dc:5a:bb:ea:64:58:
bd:3c:b1:b9:9d:38:48:d5:f2:5d:47:bd:b2:98:f4:
3e:b0:09:49:18:fc:a9:31:7e:d1:c4:9d:a9:2d:5f:
e1:00:9c:5d:63:6b:67:4e:dc:a3:95:32:b2:76:b2:
9b:be:e6:97:3f:5f:5d:a5:7c:b0:3a:79:e8:b7:3a:
bd:22:23:51:c6:03:1f:73:cd:4f:25:aa:51:8a:ce:
ec:17:05:d7:29:2a:70:b6:a6:01:26:a4:23:a0:85:
e5:fc:1c:e0:08:34:98:ef:4a:5b:0e:83:98:d0:0d:
e4:73:b4:c6:a3:6c:85:2c:a5:ab:a5:ed:7e:95:e4:
af:00:1c:77:03:fd:26:26:37:f6:d4:3f:9c:4a:e2:
75:74:c6:f1:22:59:d5:9e:1b:ea:d6:ee:74:24:fa:
2b:ad:59:56:d7:01:fd:60:4c:e5:b1:f5:14:7e:c1:
59:75:16:29:34:d5:ba:8f:73:36:ef:53:db:80:e7:
e0:10:16:ef:83:ca:28:4d:8c:f0:fa:00:0c:25:cf:
47:be:d1:5c:62:09:ba:ae:1d:2c:2e:21:d0:a3:10:
ec:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
88:9B:65:18:37:CE:E6:13:52:1E:A8:1D:21:AD:81:97:F5:83:84:08
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:70:0b:b8:7a:74:d5:55:ae:a0:b3:b3:eb:64:75:68:b3:17:
f0:71:f9:38:4a:5a:42:32:f3:43:7a:ee:63:80:aa:ec:98:86:
44:2e:f4:77:54:30:aa:74:49:9d:d2:45:c0:e7:d9:2c:96:6e:
47:b3:7c:43:8c:23:63:ea:e8:2a:c8:b0:f7:bf:18:e8:c4:ad:
55:b2:55:28:4c:5c:fa:94:0f:07:fc:a5:3e:8e:84:c1:17:df:
a7:a6:3c:7c:f2:b3:ad:56:78:2c:b1:c7:13:23:6e:03:4e:45:
dd:22:7d:25:f2:af:0b:8a:65:4f:04:74:29:ad:49:6c:77:27:
67:d5:9f:a2:9f:84:01:50:ec:ce:27:5e:15:56:e9:83:23:bd:
bc:fa:66:df:1e:54:5e:74:69:50:b7:83:61:a6:83:38:00:b9:
25:9e:54:f9:a0:65:a1:d3:a9:33:ee:cb:c0:6f:ae:31:2e:f1:
bd:bf:f9:db:d8:ac:7b:64:79:62:71:bf:ed:49:8e:6f:c5:d4:
a4:1e:17:1d:3a:6a:d8:b4:c3:b7:7b:04:32:a0:dc:c5:09:d0:
63:41:d8:41:ba:bf:e1:e4:87:66:5e:e1:33:ce:5b:00:40:a8:
c1:80:b0:e2:39:5b:02:a6:27:94:b1:61:a7:5b:c9:f1:a5:be:
ae:16:28:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:12:39 2026 by rpki-client