Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: lTW1Gk8YIJm5B44s3+sTXgf9NJAHZ+uvXoJwpwceo4E=
Subject key identifier: E6:F4:86:59:C3:6E:84:02:BC:D1:5B:B7:97:40:5A:68:D5:62:49:37
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 019D9A3EECC7448DDE82ADC4DB2C80F7E307
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 07BD
Signing time: Fri 17 Apr 2026 07:01:48 +0000
Manifest this update: Fri 17 Apr 2026 07:01:48 +0000
Manifest next update: Sat 18 Apr 2026 07:01:48 +0000
Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: wt1QYoopT0i0wqUI6C/1ZfXTdnOXJGOy/d4HWgVCH2U=)
2: oWAA3712bfUBzXFDQ4qEFnRk4-8.roa (hash: IL/tQvQ5PPq+dUr5LLZdpWR+gfGz/0GU5klPWCUecLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:3e:ec:c7:44:8d:de:82:ad:c4:db:2c:80:f7:e3:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Apr 17 07:01:48 2026 GMT
Not After : Apr 18 07:01:48 2026 GMT
Subject: CN=e6f48659c36e8402bcd15bb797405a68d5624937
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:8b:89:c5:ff:10:d3:c2:f5:91:16:9e:71:5e:
f0:4d:db:81:45:ad:8a:2e:e4:36:32:6f:2d:83:5c:
14:b2:07:e3:45:a7:8e:ab:eb:21:81:1d:0e:f9:2c:
38:53:cc:c3:24:30:f1:9d:73:b2:63:ce:10:4b:95:
29:b0:38:28:ec:0b:1e:69:40:28:d0:98:44:04:97:
a4:9d:cb:6f:cf:1b:b8:7a:5b:38:47:1c:e1:b4:3b:
34:7d:ea:c6:3b:0e:4e:c1:1e:44:a5:7b:94:ab:f2:
e1:10:f9:bc:93:57:16:f8:ae:60:e6:a1:34:e4:61:
e9:e6:1b:ae:8d:6a:c7:3c:b4:e2:db:9c:64:40:d8:
b3:60:8a:d8:71:cb:07:f1:da:7b:58:99:4a:0a:dc:
09:6a:e9:4b:24:99:67:ec:fe:88:62:4f:d6:e3:95:
b9:94:e9:65:e9:b5:f7:15:60:0d:9b:3f:74:45:54:
b1:ae:a7:71:2b:2b:f4:58:a0:8d:d0:3b:27:08:d4:
5d:27:d6:84:e9:15:21:b6:5a:b4:51:4f:95:46:20:
81:08:88:e6:25:f5:41:b0:1d:f1:1e:93:2b:60:f3:
5a:13:55:36:ed:4a:46:f2:d1:d6:65:e0:d7:e2:df:
b9:22:b7:4a:2d:b4:48:42:f7:08:9c:bd:a9:2d:76:
4e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:F4:86:59:C3:6E:84:02:BC:D1:5B:B7:97:40:5A:68:D5:62:49:37
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:0f:07:aa:46:c2:77:6e:8d:86:fe:d6:eb:34:cf:80:45:f0:
93:9d:5e:5b:63:44:59:c4:b2:cb:ab:2b:49:46:7b:56:11:7a:
1f:66:cf:36:cd:47:ff:95:61:57:0b:27:98:4f:ac:f9:92:03:
03:67:0d:4a:89:52:94:4f:16:2c:13:26:27:cd:e3:8e:93:ca:
92:91:bc:c6:b7:92:70:af:e9:d1:44:c7:dd:0e:2a:bc:ae:73:
04:29:fc:0e:eb:3c:f1:34:fc:9a:12:89:df:c9:dc:65:8b:a8:
6d:59:f7:38:ac:07:3f:d7:92:a8:53:b1:25:8e:39:1f:b8:b4:
57:63:1c:77:d1:27:53:14:21:96:57:c7:de:3f:29:c5:7b:be:
03:c0:41:f0:4d:16:c3:12:34:f0:f6:b2:79:9f:2b:a0:5c:3f:
45:ab:65:df:08:dc:00:1a:be:3a:af:0d:b5:43:2a:74:37:f6:
3e:56:ff:1b:62:9b:c7:7d:f7:80:16:67:fc:32:5c:74:c1:ca:
ad:3b:8e:c7:de:39:36:63:37:73:0d:3c:52:b1:57:0b:b2:db:
5b:ae:b8:48:b5:94:67:c5:80:93:1d:c4:1d:1b:60:1e:d2:e7:
89:cc:4e:bb:5b:96:ad:63:1e:c2:7e:79:59:a7:cd:fd:aa:6b:
f6:3e:7c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 12:24:40 2026 by rpki-client