Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
File: KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft (raw, json)
Hash identifier: PJmQxthf6Qu6L4R0DfFmyuRcn3jYs+32GCdpkemLjrU=
Subject key identifier: D2:32:96:38:8A:A9:F7:91:0C:DA:A6:DD:BF:57:95:AC:DB:AC:E7:0C
Authority key identifier: 28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
Certificate issuer: /CN=28bbb54e37826c0390b04379279f8e06cff3a234
Certificate serial: 019D9A06AACE2C81D5EF28160F069C1BBA2C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
Manifest number: 07DB
Signing time: Fri 17 Apr 2026 06:00:21 +0000
Manifest this update: Fri 17 Apr 2026 06:00:21 +0000
Manifest next update: Sat 18 Apr 2026 06:00:21 +0000
Files and hashes: 1: KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl (hash: k34s+g4IUiPc24YfeBvWiag1ozuKcXKp3qngdPvALa4=)
2: xeHWs-7RIUG_PFunqf-5HW5QAFk.roa (hash: 4aUlYayA4jhd2ohdWDMeKTCA9ihSHArzD+F2fg4MdEs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:06:aa:ce:2c:81:d5:ef:28:16:0f:06:9c:1b:ba:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bbb54e37826c0390b04379279f8e06cff3a234
Validity
Not Before: Apr 17 06:00:21 2026 GMT
Not After : Apr 18 06:00:21 2026 GMT
Subject: CN=d23296388aa9f7910cdaa6ddbf5795acdbace70c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:2e:7d:1e:43:d3:c1:c4:39:72:be:d9:08:6e:
e4:48:0c:a6:7a:97:64:b3:84:58:eb:22:a6:70:a5:
ea:54:de:29:8f:72:ba:58:94:01:67:e7:5f:11:62:
30:57:9d:b4:d7:e8:70:98:9a:0f:f9:74:3f:a5:f8:
1b:a1:b7:1f:98:4d:62:6e:77:84:27:21:00:ae:e9:
ba:f7:51:ba:bd:ed:25:03:6e:1b:39:53:d7:e4:39:
63:8d:2c:4c:2e:cd:13:ad:53:5e:be:0a:2f:d6:07:
16:dc:f4:18:3a:a0:17:43:65:f7:7c:fe:aa:e7:03:
66:56:24:f7:6d:e6:bb:f6:cf:66:3a:78:71:38:04:
5f:94:67:db:72:e6:04:46:15:db:a3:ce:dd:ae:6b:
77:cd:3d:0b:fc:3c:2f:a8:f4:58:f3:ef:93:36:52:
db:af:14:b0:31:49:3b:9c:c8:e0:68:0c:95:04:31:
69:b3:47:e3:2d:b0:fd:70:d4:d8:8b:68:6e:f4:7e:
d2:09:ae:07:eb:ce:0b:96:a2:55:42:5a:9c:aa:34:
61:d0:bc:59:0f:f0:e6:9c:1f:8c:07:92:73:90:00:
eb:fa:6c:61:ea:5b:21:f4:37:1c:6d:cf:77:b5:fe:
14:94:bf:b8:fa:4f:b3:68:01:a4:58:dc:30:a0:19:
72:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:32:96:38:8A:A9:F7:91:0C:DA:A6:DD:BF:57:95:AC:DB:AC:E7:0C
X509v3 Authority Key Identifier:
keyid:28:BB:B5:4E:37:82:6C:03:90:B0:43:79:27:9F:8E:06:CF:F3:A2:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KLu1TjeCbAOQsEN5J5-OBs_zojQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/fe7296-ec8c-4163-a554-78c017762f9f/1/KLu1TjeCbAOQsEN5J5-OBs_zojQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:a2:74:11:d0:ae:79:ef:f7:71:dd:8a:6e:0e:ab:0e:81:dc:
2b:5e:e2:fd:a8:76:e7:97:de:c6:7d:44:c0:0c:c9:42:0a:22:
f1:e1:66:15:94:fb:15:19:f2:ec:04:b6:84:00:2c:83:ea:dc:
6e:73:78:bb:5a:f5:81:65:84:ed:80:de:13:8e:99:cc:e7:e1:
e2:a8:3e:d6:1d:8b:d2:50:a5:8b:51:65:14:27:3c:88:cf:c5:
db:5b:78:0d:fd:a8:85:1c:a2:fe:49:39:eb:6a:c9:ab:49:1b:
4e:cd:76:a0:b8:40:cf:1b:66:e8:09:9f:bc:bd:41:7f:f9:1c:
6f:ff:75:9f:7a:80:a7:ff:e5:e0:04:20:0e:16:12:ef:e3:aa:
e6:44:94:61:7d:3c:49:20:c5:84:8d:57:a7:1e:46:d6:93:0e:
ab:c1:22:89:4a:cf:4f:a1:aa:ec:ce:49:68:57:54:73:7a:73:
6b:78:d2:94:72:0c:b7:da:e9:52:7b:ce:7b:34:31:1f:f1:22:
ee:94:b0:46:58:86:6b:db:d2:0c:5b:d8:10:20:f4:37:ac:35:
3b:fe:08:5b:60:e8:a8:bf:42:42:6c:83:4e:57:6d:af:ee:70:
45:c8:fa:a8:dd:72:53:6a:3e:b2:07:23:e5:9f:00:1e:3b:71:
ba:bb:b4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:44:05 2026 by rpki-client