Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
File: kOszbVYE1HuugXI4sNu0l3HiRyk.mft (raw, json)
Hash identifier: 8Sadh7H5ZyrMvc+1LBq9z+aMmHB72DFhx28WB5S3150=
Subject key identifier: CC:50:68:A2:E8:AB:F7:61:18:6D:FA:B7:95:54:5A:D7:C8:1A:D9:F8
Authority key identifier: 90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
Certificate issuer: /CN=90eb336d5604d47bae817238b0dbb49771e24729
Certificate serial: 019D9BBEFE6A166467035B0BE2434193FE69
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
Manifest number: 18C3
Signing time: Fri 17 Apr 2026 14:01:18 +0000
Manifest this update: Fri 17 Apr 2026 14:01:18 +0000
Manifest next update: Sat 18 Apr 2026 14:01:18 +0000
Files and hashes: 1: kOszbVYE1HuugXI4sNu0l3HiRyk.crl (hash: 0uAiVKyI9p9Id0PnorcXGkA61PUVY3uGAPJEzAUA/Pw=)
2: mKOuhDb0lNg_dJ83TTrmFYMNIeA.roa (hash: Om4b1zrUyorfRjmzpKplEidWPKteQvqXZcg+Z0i4g3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 14:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:be:fe:6a:16:64:67:03:5b:0b:e2:43:41:93:fe:69
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90eb336d5604d47bae817238b0dbb49771e24729
Validity
Not Before: Apr 17 14:01:18 2026 GMT
Not After : Apr 18 14:01:18 2026 GMT
Subject: CN=cc5068a2e8abf761186dfab795545ad7c81ad9f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:7f:2e:f4:4d:30:97:ef:9a:98:ae:5c:08:72:
1b:bf:8a:11:f1:cc:8a:82:38:88:4d:29:2a:fd:98:
0b:60:11:fa:14:10:8b:2e:75:5f:98:c8:52:ed:3a:
47:c9:07:a8:ad:d1:16:4e:49:31:d8:04:99:1d:b0:
bd:ef:07:ab:7a:73:15:49:8d:dc:35:4b:5d:3a:40:
5a:f7:08:00:b8:29:5f:c7:c0:ce:99:97:07:70:27:
a3:ef:63:73:b2:47:97:91:79:9f:50:de:fc:51:3d:
8b:40:ce:c5:77:7c:52:f2:31:be:d2:07:5d:5d:d8:
f7:4f:21:41:45:0b:92:b1:b7:11:01:1b:b4:43:88:
57:d1:25:ae:03:66:df:7a:3d:00:4a:3c:d9:15:b2:
88:14:99:21:3e:36:9f:02:0c:30:94:ad:17:36:88:
6f:bb:a5:0b:5b:81:63:ec:82:cf:46:fb:5b:62:4f:
12:22:93:a6:9a:dc:46:a7:38:f6:32:3f:de:62:9f:
69:75:99:01:90:68:a4:57:c2:f3:d5:6d:bb:72:59:
2a:e6:e2:e1:68:53:f6:0d:28:f3:18:8c:1f:ca:70:
7b:c9:fd:29:e2:75:dc:b3:eb:56:2b:c5:b0:91:72:
55:bd:99:ef:80:d9:0e:88:5c:ba:a8:65:31:bd:77:
ec:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:50:68:A2:E8:AB:F7:61:18:6D:FA:B7:95:54:5A:D7:C8:1A:D9:F8
X509v3 Authority Key Identifier:
keyid:90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:dc:ef:30:c8:7d:2a:48:47:22:8c:93:60:f6:8f:9e:fe:cc:
fa:fe:86:b8:f5:10:a8:0b:d9:ca:93:67:ec:dd:8f:69:8d:82:
2c:0c:5e:a0:7d:61:af:6d:15:47:99:f1:d4:39:d2:67:12:68:
e4:ad:b1:35:39:74:68:aa:de:5a:36:7d:4e:d9:ca:2f:6c:3e:
5e:2d:07:a8:0c:41:97:33:e8:c2:db:7c:88:2f:5e:a6:49:36:
56:81:71:a9:ca:e2:a0:bf:48:c9:70:c7:96:8c:9b:5f:c4:5f:
c7:19:26:fc:1c:92:e8:20:60:df:3d:bd:61:ae:64:5f:a7:2c:
9a:18:45:a6:c6:66:c3:f4:8d:98:a5:c3:3a:25:0a:2e:41:18:
48:f8:26:05:23:17:06:9e:dc:13:92:73:76:5e:12:a8:a7:6d:
d8:eb:a4:c0:1d:6f:b3:f1:ef:15:e9:23:28:4c:1f:f4:90:c2:
6e:35:b2:ac:43:72:b5:5a:2b:43:3f:87:41:53:c3:b8:d1:d8:
8e:33:d6:d0:8c:36:26:f9:06:92:5b:f7:e7:c0:be:ba:5d:a8:
41:cc:7f:41:84:c3:1d:ce:34:cf:d2:2f:94:17:ac:a8:da:1b:
ea:0b:f0:cf:07:49:d6:af:6c:dd:5a:a5:e0:65:98:04:fb:d6:
39:41:92:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 20:41:55 2026 by rpki-client