Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
File: A1KD5iNe2yXotUdJtihfXj74U3E.mft (raw, json)
Hash identifier: 7zmEGaGvRNkffPaBjKDWhlYzAWgDC8IGt0JEpf20hMk=
Subject key identifier: F4:55:D4:D7:20:BB:E0:56:9E:56:C9:1B:C3:D1:72:4C:EB:22:B5:81
Authority key identifier: 03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
Certificate issuer: /CN=035283e6235edb25e8b54749b6285f5e3ef85371
Certificate serial: 019D9BF5CC61BD533179168FDE5706F827A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
Manifest number: 0411
Signing time: Fri 17 Apr 2026 15:01:10 +0000
Manifest this update: Fri 17 Apr 2026 15:01:10 +0000
Manifest next update: Sat 18 Apr 2026 15:01:10 +0000
Files and hashes: 1: A1KD5iNe2yXotUdJtihfXj74U3E.crl (hash: h/eQVIqftMWXkbSSbpQJUCFQhlpEb6J9x2Xxn7X5tAA=)
2: yX9ydvOKgI9DtKgtlG1m9Fn2ZI8.roa (hash: qPtAu4bwy3Juh5so6bwqIDZWhOQpRsegMYoucr8NrwE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:01:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:cc:61:bd:53:31:79:16:8f:de:57:06:f8:27:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=035283e6235edb25e8b54749b6285f5e3ef85371
Validity
Not Before: Apr 17 15:01:10 2026 GMT
Not After : Apr 18 15:01:10 2026 GMT
Subject: CN=f455d4d720bbe0569e56c91bc3d1724ceb22b581
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:bc:4c:80:19:a9:bd:3d:85:8c:e0:04:c4:67:
ef:ee:e2:d7:0e:11:12:b5:c3:47:62:a4:db:cd:b9:
24:2f:f1:9f:75:ae:df:0d:79:88:97:01:fe:a5:fe:
a5:98:3e:36:88:e1:e9:d6:44:d1:c9:79:64:2f:ae:
61:e1:6b:64:ed:cf:73:00:fa:9f:0d:b9:d0:63:f5:
7d:5b:a1:0f:b3:8f:1b:84:b5:03:3b:24:fe:27:12:
5a:61:98:bd:33:ab:2a:41:62:44:03:34:c2:a5:78:
6a:14:82:ec:c6:d5:0d:97:b8:6d:a9:41:d3:1a:53:
92:d9:27:a2:9e:c7:cb:c0:0b:80:81:e1:bc:3c:63:
07:b8:c8:5f:5c:77:7c:85:88:17:b4:f2:42:9d:f7:
d0:78:7d:7d:77:9e:82:45:67:e3:29:a3:b6:52:91:
5f:f2:74:01:77:b3:f9:33:12:12:9c:dc:93:4e:c2:
2b:f1:51:da:6b:e1:82:44:c1:e8:99:43:3e:52:13:
80:51:6c:a9:85:87:89:e0:8d:5b:45:b4:5e:3d:98:
f0:25:9a:fe:c5:f0:c3:ab:46:6a:77:05:72:62:0a:
94:94:03:19:76:8d:ea:2a:5d:5a:1c:da:0f:7b:eb:
c9:82:3b:a1:fb:2c:ce:dd:77:d9:ed:4a:b4:3a:fb:
e0:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:55:D4:D7:20:BB:E0:56:9E:56:C9:1B:C3:D1:72:4C:EB:22:B5:81
X509v3 Authority Key Identifier:
keyid:03:52:83:E6:23:5E:DB:25:E8:B5:47:49:B6:28:5F:5E:3E:F8:53:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/A1KD5iNe2yXotUdJtihfXj74U3E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/311f57-6404-446a-9f08-11b92906406d/1/A1KD5iNe2yXotUdJtihfXj74U3E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:78:57:1b:02:9b:3f:12:65:98:5e:31:7e:f8:b0:ca:d9:d2:
5c:2f:ee:bd:71:9c:9e:e5:26:df:64:28:67:32:88:b9:56:c1:
88:83:f1:9a:ea:d9:be:cb:ac:4d:a7:09:bf:d7:62:61:58:1d:
7a:63:ee:fa:b1:5b:92:05:05:ae:bf:91:56:63:58:ab:c1:7e:
e5:be:7c:c0:11:a6:03:7f:83:90:61:12:bf:fa:0c:90:69:20:
b1:c7:34:d3:f7:8f:cb:50:23:6a:00:76:84:31:fb:78:50:32:
0c:9f:bb:ac:f9:2a:08:d0:84:e1:08:6c:3f:a1:1b:57:ca:68:
e9:28:3c:77:b2:19:73:25:24:95:7b:2b:1a:8a:01:c4:b6:52:
38:39:5c:59:26:80:ca:b4:b9:57:35:af:73:23:b7:c1:be:4c:
81:49:69:de:d6:15:4b:60:3a:fd:0e:30:95:a1:48:7f:1f:33:
bd:be:f6:3d:3a:2b:f0:43:e2:40:bf:bf:06:0b:76:e6:c7:c5:
9a:40:4e:3a:4c:f8:b0:dc:87:1e:28:db:93:de:49:a0:44:45:
a5:1e:a4:8e:ff:33:a0:5d:55:63:59:5e:ac:84:54:30:9d:13:
38:ae:43:7f:92:f9:98:9a:b3:2c:10:51:16:8b:b2:36:b0:d2:
29:69:03:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:49:21 2026 by rpki-client