Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
File: 1KA5ru5iEDsojGyLlpLPWAh0PiE.mft (raw, json)
Hash identifier: f4KH/kPYMxuKOkb+BaRksI/EnsZ3blHmzmD20BC0+Ww=
Subject key identifier: BD:43:3E:B6:AE:BE:65:9A:DD:47:D1:64:D9:B1:3E:B0:8E:86:E6:50
Authority key identifier: D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
Certificate issuer: /CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Certificate serial: 019CAAFD1021C510D642D60092172501CF61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
Manifest number: 17D9
Signing time: Sun 01 Mar 2026 20:00:37 +0000
Manifest this update: Sun 01 Mar 2026 20:00:37 +0000
Manifest next update: Mon 02 Mar 2026 20:00:37 +0000
Files and hashes: 1: 1KA5ru5iEDsojGyLlpLPWAh0PiE.crl (hash: SkHuKVpFpG+mTSLSzFVejFUzj9+kgd724DFU6iOAXqI=)
2: xmPDT0qXzI-WfyPj03f5LiDX-UE.roa (hash: bKQt5YSuFEZd8wxQPDeL7WmtwFEyplerjSwRLOQ9NRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:10:21:c5:10:d6:42:d6:00:92:17:25:01:cf:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a039aeee62103b288c6c8b9692cf5808743e21
Validity
Not Before: Mar 1 20:00:37 2026 GMT
Not After : Mar 2 20:00:37 2026 GMT
Subject: CN=bd433eb6aebe659add47d164d9b13eb08e86e650
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:1d:63:5c:02:3e:8b:1c:c7:c1:6a:87:18:8d:
ea:80:e7:2b:b8:49:3a:d3:3d:63:e1:91:62:94:36:
83:d8:46:3e:60:0f:41:d5:1b:cb:76:65:ca:44:e9:
68:98:c5:6d:5e:bc:ea:ff:37:6e:80:a3:81:82:70:
5b:91:d4:06:68:fe:f0:af:fc:8a:92:19:f5:7a:12:
b4:45:09:19:47:06:83:8d:fe:1a:2f:98:37:0d:f5:
d0:a8:45:f6:dd:5d:48:c9:e8:93:d0:6a:46:cd:fa:
c1:81:3d:06:7d:42:17:91:10:cd:82:e9:b3:1d:f3:
2f:bf:d2:c6:2d:74:cd:7c:eb:ad:1f:16:75:29:e8:
8d:46:f4:e3:4b:af:8a:62:11:d8:1c:61:a4:1b:81:
a6:46:01:db:e8:4e:64:13:6a:9a:92:ca:2d:ef:19:
86:d0:a6:7b:85:0d:6a:e2:8e:47:d7:01:6d:07:ac:
ff:25:65:6c:87:2c:fb:3f:1a:0c:da:ec:71:2a:f2:
68:07:6b:3b:2b:d7:2c:53:0f:91:f6:6a:19:48:18:
fa:21:0a:43:ea:f5:14:85:77:e2:1a:7e:b4:95:5c:
00:58:4c:ea:a0:80:e2:93:93:e7:fb:c5:f3:97:52:
26:2e:f3:c0:ba:a6:5a:17:93:ab:05:4e:c4:98:73:
c2:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:43:3E:B6:AE:BE:65:9A:DD:47:D1:64:D9:B1:3E:B0:8E:86:E6:50
X509v3 Authority Key Identifier:
keyid:D4:A0:39:AE:EE:62:10:3B:28:8C:6C:8B:96:92:CF:58:08:74:3E:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KA5ru5iEDsojGyLlpLPWAh0PiE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/e54e89-7b6b-417d-9bc9-62ce84f7075e/1/1KA5ru5iEDsojGyLlpLPWAh0PiE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:55:6f:12:9b:e3:4b:c4:8d:75:af:75:56:bc:74:c6:eb:8f:
58:b5:27:83:30:59:8d:f1:13:56:f2:32:6c:64:60:e2:96:1a:
ad:20:e7:e1:fc:66:23:0f:61:d5:ab:05:cd:6e:22:19:d2:72:
f1:bf:3a:77:f8:4f:35:b3:7b:32:00:84:d4:88:30:7c:9c:a6:
7f:35:ac:2b:24:cd:c4:1e:5a:a3:6a:a8:df:23:83:4f:ba:c6:
58:2e:35:07:b1:c2:73:32:96:e7:63:8c:ff:85:87:f1:4e:1c:
a3:89:4e:ba:26:61:f8:ef:ca:bd:e4:e3:70:69:d7:e6:46:07:
bf:ac:43:bc:89:76:b9:28:73:35:3d:d5:8b:82:3a:91:41:87:
b2:73:ab:96:a3:8f:1d:bb:03:57:11:06:c0:73:21:c1:17:ef:
9f:ca:a4:5a:1e:a5:51:2b:77:8f:57:11:27:4f:0a:9e:53:9a:
00:bd:07:e1:f6:d9:9c:74:70:1e:8d:9f:df:44:d0:bd:30:fc:
6d:22:1e:36:b7:cc:d1:94:33:5d:83:9b:d3:d5:b4:c3:b1:c3:
bf:f4:bf:01:4c:e7:90:15:fd:b6:d0:0b:ca:b1:83:bb:f8:54:
24:14:13:47:67:b7:7d:21:7d:5c:bc:b0:b6:68:6d:b0:db:8b:
b5:89:b4:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:35:52 2026 by rpki-client