Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
File: KpTH34VXtlNEfD4G-0s3LVEgoiI.mft (raw, json)
Hash identifier: +EOWgFTG/kwkRLnNjGwQQzmem+g8DuC+pE6SPmedNxM=
Subject key identifier: 47:AE:41:74:71:E4:F0:AF:19:89:A7:20:41:EE:27:2A:A5:EA:A7:38
Authority key identifier: 2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
Certificate issuer: /CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Certificate serial: 019D9A74FDF69802EB5DB435AC6AA417B828
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 08:00:51 +0000
Manifest this update: Fri 17 Apr 2026 08:00:51 +0000
Manifest next update: Sat 18 Apr 2026 08:00:51 +0000
Files and hashes: 1: KpTH34VXtlNEfD4G-0s3LVEgoiI.crl (hash: IfEdF/1Hsix5L9aKqw/7mZdC94smrz1W6BXCM6yWapU=)
2: zZyI4xvkwJixdxg_pCLk7a1BUdw.roa (hash: zpCoEd9p2O+8DPIDxhP2gPNS4VcEBvo6F6BavOxBd5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:74:fd:f6:98:02:eb:5d:b4:35:ac:6a:a4:17:b8:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Validity
Not Before: Apr 17 08:00:51 2026 GMT
Not After : Apr 18 08:00:51 2026 GMT
Subject: CN=47ae417471e4f0af1989a72041ee272aa5eaa738
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:a3:60:2d:1b:2a:3c:14:32:e8:99:34:61:5b:
9a:74:1f:b0:d9:d4:2f:94:53:f5:ef:dd:af:2d:15:
23:ff:13:e8:22:ed:7f:93:33:04:62:19:33:8c:01:
be:77:bc:ec:d2:cd:51:ea:16:e2:d1:cf:b2:83:75:
a4:04:3f:46:2b:26:47:c9:62:b9:0c:ca:be:7a:13:
69:d9:16:7e:d1:d9:db:a5:48:aa:b8:10:10:55:f8:
76:f4:c3:e1:3c:35:89:01:ed:5b:af:24:d5:f9:5f:
4a:f8:79:af:ad:db:6f:a7:4a:7e:e9:ee:1e:39:d8:
61:91:f9:06:aa:d2:32:eb:35:84:31:e0:8f:09:82:
f4:01:86:c6:20:8c:3a:10:5c:48:97:62:10:bf:88:
b9:6f:aa:d9:b6:84:8e:4a:10:f0:12:b8:52:6a:58:
8e:5b:d7:21:7c:a3:63:ac:d0:41:f1:b7:98:26:de:
bf:a4:19:46:64:03:d6:90:b7:57:18:40:31:64:d3:
a9:9d:e9:9e:7a:69:0d:98:fa:07:fd:85:49:86:31:
b7:cb:d8:8d:89:87:e4:17:4d:2d:5f:09:9d:89:e1:
eb:4c:32:45:ee:55:94:c4:e8:2b:49:e4:c0:2e:c9:
25:b0:06:4b:7a:03:ba:87:ea:8e:f1:a4:ca:a5:c5:
b1:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:AE:41:74:71:E4:F0:AF:19:89:A7:20:41:EE:27:2A:A5:EA:A7:38
X509v3 Authority Key Identifier:
keyid:2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:83:35:55:89:fd:6d:07:1d:5e:df:38:c1:14:7e:48:8a:94:
43:f4:0b:26:42:b4:01:d9:11:d6:2a:ec:43:42:75:e0:fc:bb:
71:83:e6:cf:08:0b:04:0c:09:45:f9:c5:2f:0e:2b:0b:f0:08:
44:87:b3:69:ef:ba:86:6b:9f:63:f6:68:46:b0:56:8b:d9:a9:
e0:2d:de:1f:26:6b:2c:a7:cc:a3:52:7a:8d:13:33:e5:e9:01:
20:27:56:bb:b6:f1:7f:ef:1e:45:6e:10:0d:f0:fd:ec:11:58:
e7:d1:06:23:77:3a:20:47:96:e8:e0:45:92:a0:bb:73:4d:08:
00:09:79:7c:8a:c5:c9:e3:34:97:a2:74:df:33:7d:24:76:1a:
86:04:45:1b:8b:3e:98:48:0a:fa:e0:c2:d3:62:3c:34:a8:22:
26:f9:9c:54:b0:04:4e:e8:f0:5d:eb:ac:79:c9:02:be:e2:3b:
fa:28:6d:6a:8f:20:a5:ea:d2:1e:3b:38:78:db:73:ea:af:13:
c7:0f:6c:d0:e8:6e:43:c3:a2:38:bd:0f:1c:f1:00:48:30:f9:
aa:97:1f:ee:cc:2a:dd:cb:90:35:a5:fa:45:0b:e7:12:de:c4:
a1:9d:ab:e5:6a:ca:6f:e8:60:4a:ca:25:c2:c1:ef:f1:91:78:
f2:c3:f8:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:08:39 2026 by rpki-client