Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json)
Hash identifier: lfuLGwg2tf58x9SiOZthxS/Fa7wW2gny52Db/rC/oAY=
Subject key identifier: AC:75:E8:99:0C:0F:59:72:DD:5A:41:56:CE:97:EE:8F:52:73:CE:E8
Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Certificate serial: 019D9AE31868000E9A2ED09154E93A856555
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
Manifest number: 11EA
Signing time: Fri 17 Apr 2026 10:01:07 +0000
Manifest this update: Fri 17 Apr 2026 10:01:07 +0000
Manifest next update: Sat 18 Apr 2026 10:01:07 +0000
Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: BmUQdNPmuOU5oXBxDK9wHRjYW+1wXoAQWbmrccVaZX4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:18:68:00:0e:9a:2e:d0:91:54:e9:3a:85:65:55
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Validity
Not Before: Apr 17 10:01:07 2026 GMT
Not After : Apr 18 10:01:07 2026 GMT
Subject: CN=ac75e8990c0f5972dd5a4156ce97ee8f5273cee8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:66:01:3b:d3:1a:27:42:19:f2:67:ff:24:fe:
9c:ca:c8:6b:d1:48:92:be:a7:d2:64:87:9e:a7:3e:
8d:6f:7b:e4:51:a7:e1:ed:2b:20:2e:ee:d1:ef:e1:
d7:9f:f2:62:8b:4f:2f:f2:8e:47:5d:c7:e6:15:04:
54:ee:38:76:e9:69:cb:d3:0e:f7:37:0a:e8:58:25:
13:eb:5e:40:8c:82:2f:2f:b3:eb:42:6e:b6:51:f4:
6b:2c:a3:8c:16:e7:93:da:e0:85:0a:fe:f3:b9:1d:
95:1e:15:7f:cf:d0:0e:68:3b:ae:9e:7d:03:81:ba:
a8:06:39:da:f8:fe:10:22:3e:f3:87:df:6f:d1:a3:
a4:5f:bd:5c:78:5c:de:e5:3b:b8:ed:e4:b3:06:2c:
67:a8:3f:0b:a8:89:13:8a:7e:27:c9:33:f3:55:d2:
4f:82:86:5e:66:3f:59:6f:4b:c7:6d:88:80:8e:df:
93:63:63:22:7b:40:78:08:43:58:c8:d7:56:55:01:
d0:dd:3f:8b:18:3c:39:6b:2f:1c:fd:51:3b:0e:25:
c0:08:2c:0f:85:24:89:70:63:35:22:7e:b8:d4:18:
31:d4:a2:99:06:c6:56:af:82:f3:56:10:78:d4:9e:
6c:b7:ea:f1:96:e0:a1:dd:32:c2:d9:7d:56:06:99:
47:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:75:E8:99:0C:0F:59:72:DD:5A:41:56:CE:97:EE:8F:52:73:CE:E8
X509v3 Authority Key Identifier:
keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:df:f9:15:6d:39:42:ee:cd:f9:14:01:c7:c2:8e:54:a9:85:
7d:40:fe:06:ff:3b:c3:06:c6:a2:08:ca:e3:ef:86:09:db:b3:
5d:fa:3b:f0:2f:cb:11:df:31:30:d6:5f:b3:70:e7:d7:c1:48:
91:e2:2b:65:74:3c:1e:3e:da:32:19:10:51:b9:c8:18:b2:3a:
9c:71:f0:1d:f2:12:c2:16:b5:f4:7e:56:dc:1f:9c:f3:89:4d:
3c:e4:03:28:75:aa:50:bd:de:a7:cc:a3:50:f0:16:0f:02:d2:
c6:bf:07:3c:5a:a0:4a:7b:f8:31:ef:90:2b:56:8a:fd:0c:de:
99:72:ac:bf:33:a1:a2:bd:d2:f9:3d:53:81:ff:5e:db:50:6d:
4f:52:4a:84:72:62:20:8c:a9:17:99:e9:bd:82:64:05:83:3c:
d2:8b:e7:40:e4:38:0c:2e:1b:c5:c0:2b:27:71:b7:39:a4:0f:
e2:a7:93:fd:3c:00:e0:6a:83:13:23:8b:e6:f5:f2:ed:22:c9:
f6:99:f0:66:87:f4:d0:bd:9d:22:94:39:95:7d:8c:23:fd:a6:
3e:74:a5:31:c1:33:d1:51:54:66:ea:c5:0b:d9:74:46:6f:ab:
89:b8:36:90:b4:1e:f0:06:9d:3a:d1:17:be:0c:0c:cd:b7:b3:
8a:19:eb:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 21:31:31 2026 by rpki-client