Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
File: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft (raw, json)
Hash identifier: s0awuD5xV4aTOmidRj7RoGlDrrin80Hx2Wx5hR+aTCA=
Subject key identifier: C5:8D:FF:88:A3:6E:01:52:6E:31:C4:FC:4F:00:69:1E:95:46:E3:6D
Authority key identifier: 32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
Certificate issuer: /CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Certificate serial: 019DA3E635E4BC92CFC96D49886756592C10
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
Manifest number: 0D8F
Signing time: Sun 19 Apr 2026 04:01:06 +0000
Manifest this update: Sun 19 Apr 2026 04:01:06 +0000
Manifest next update: Mon 20 Apr 2026 04:01:06 +0000
Files and hashes: 1: 0V_y0HBzvEsTHB0OqOkherqmcqg.roa (hash: 5K9v1dL8zyHCCylOHHNJD1ggYb0DLDZrjC3+O53wQvs=)
2: MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl (hash: aNn6YnHAiCAgF5IkAgy+6icU5Xr9xOIYb0utQr/MqBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:e6:35:e4:bc:92:cf:c9:6d:49:88:67:56:59:2c:10
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=324c71046c549fb3c7d4ebc4cf9519d002e76df1
Validity
Not Before: Apr 19 04:01:06 2026 GMT
Not After : Apr 20 04:01:06 2026 GMT
Subject: CN=c58dff88a36e01526e31c4fc4f00691e9546e36d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b8:72:78:8b:ab:09:1e:be:43:4c:d7:f6:f9:
5d:6b:14:ff:bb:c3:7a:15:2a:f1:16:82:85:c0:41:
4f:1f:54:76:49:cb:3b:3e:42:0b:8c:98:c1:1e:fa:
15:c3:d4:2a:68:4a:1e:54:8d:20:e0:9d:93:67:ac:
0b:6b:fd:94:f2:30:14:fd:06:ea:ee:a3:e1:76:be:
c8:fd:78:d0:86:09:a6:75:14:24:c0:36:bb:7d:c2:
36:46:fa:c2:8f:79:ff:54:74:8e:d4:67:f9:29:e2:
25:8b:ab:df:70:c7:dc:4a:d2:54:73:75:20:14:d2:
a9:ad:7b:83:47:fa:3e:e3:6b:d8:f6:3a:e1:02:b9:
1f:6b:c2:f6:bf:8f:02:fb:3c:0b:5b:a8:7c:44:ec:
89:79:6d:fe:25:81:cb:a4:46:6e:e9:a1:97:e1:1e:
82:a7:e2:58:89:f2:67:34:ae:cf:1d:54:2e:6b:4e:
bc:af:e1:32:21:6b:4c:d6:08:b4:03:c5:8c:2e:d3:
af:3a:96:1d:cd:35:bf:67:9b:57:bd:66:e3:eb:a5:
cd:09:c8:7f:59:5f:cd:22:21:0a:86:b8:68:c3:d4:
93:77:f9:63:e0:98:10:b1:0c:90:f8:d4:74:c2:cf:
63:8d:18:21:62:cf:9e:39:d2:d3:a6:c8:e0:31:d0:
11:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:8D:FF:88:A3:6E:01:52:6E:31:C4:FC:4F:00:69:1E:95:46:E3:6D
X509v3 Authority Key Identifier:
keyid:32:4C:71:04:6C:54:9F:B3:C7:D4:EB:C4:CF:95:19:D0:02:E7:6D:F1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/56/125b9d-2a1f-463a-965e-7cfeaf086e14/1/MkxxBGxUn7PH1OvEz5UZ0ALnbfE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:62:dd:b1:d1:5b:01:44:5f:7f:0e:1c:08:d7:82:7a:08:bf:
b3:4c:1f:61:8e:2a:43:bd:38:24:c2:fe:80:15:52:4d:a7:b0:
2b:7d:0a:c7:68:a0:70:68:a9:7e:5d:bb:7b:94:2c:78:05:ea:
0d:22:b0:47:2c:5f:52:52:60:9d:9a:df:84:ee:61:5b:24:c2:
74:46:25:b2:64:d1:d5:26:f4:e1:af:e6:21:70:d6:47:a3:0a:
32:04:53:7f:86:b0:71:fb:c3:e5:ee:8a:4d:47:01:5c:68:ad:
3e:34:1f:9e:2a:6c:5c:73:5b:0d:cb:bd:90:ce:af:dc:3f:a5:
0e:ae:1d:12:ba:8c:c7:6e:e8:38:dc:9d:c9:f0:b4:6f:82:b7:
2c:ce:6d:22:a0:5a:9a:c4:0f:a2:3c:79:ed:b9:3a:9a:c5:c0:
47:34:f4:f9:4c:2d:bb:1e:c7:88:39:54:df:b7:ca:0f:da:e3:
8c:0c:ce:41:9f:52:2d:09:88:88:e7:f0:b3:cd:ba:1e:ce:3d:
db:0b:30:79:e3:6e:ef:c1:f9:5b:e9:6e:fb:dd:42:55:45:2f:
b6:29:04:0d:d8:cd:7f:00:e3:a8:7c:20:7a:69:b4:50:e6:9d:
45:41:31:2e:23:35:a7:89:18:b3:39:4c:0e:44:50:dd:bd:67:
d7:62:3c:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:17:44 2026 by rpki-client