Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
File: rKcX8QfgYizkyz71KwFU-n-baS0.mft (raw, json)
Hash identifier: 85MBoiODH0RQBI+OycnsTSV03/TryvjpVhVrz7e7CxQ=
Subject key identifier: 91:9E:B0:2C:08:33:DD:3A:9D:4C:0D:4D:93:B5:65:D3:D7:71:48:B1
Authority key identifier: AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
Certificate issuer: /CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Certificate serial: 019CAD5A0D2E1522079BA55FC930E8485727
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
Manifest number: 13C5
Signing time: Mon 02 Mar 2026 07:01:25 +0000
Manifest this update: Mon 02 Mar 2026 07:01:25 +0000
Manifest next update: Tue 03 Mar 2026 07:01:25 +0000
Files and hashes: 1: rKcX8QfgYizkyz71KwFU-n-baS0.crl (hash: AIr2C2rKnSwfl0BJSFpSymrcccaEa0JNBcc+0yP0hoo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:0d:2e:15:22:07:9b:a5:5f:c9:30:e8:48:57:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca717f107e0622ce4cb3ef52b0154fa7f9b692d
Validity
Not Before: Mar 2 07:01:25 2026 GMT
Not After : Mar 3 07:01:25 2026 GMT
Subject: CN=919eb02c0833dd3a9d4c0d4d93b565d3d77148b1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:a5:b1:68:07:01:c5:66:fd:9e:ae:6c:15:f6:
49:18:86:98:d5:aa:1f:ba:46:bc:65:90:71:15:76:
06:25:7c:0d:f8:a6:06:ba:7b:e5:f2:1a:7c:b1:39:
5c:8c:e0:91:e2:3c:fa:ca:96:2c:4e:63:2f:4c:ed:
0e:00:aa:1f:a7:c1:5e:6d:e5:62:fd:77:4d:79:2c:
e1:de:3f:18:8b:c4:60:37:2b:d6:0e:84:0c:ff:db:
c4:5f:3e:13:71:1e:49:16:7c:14:ed:a5:76:21:c1:
16:0c:a9:aa:dc:9b:23:db:82:a2:5d:64:4e:df:93:
0c:39:ae:bb:b9:2a:b7:9a:3b:9e:07:58:10:13:0b:
a4:eb:f5:ab:66:3e:0a:55:c1:c5:2c:e7:c6:ca:a9:
ee:37:a4:3d:04:e6:4c:74:f8:f6:f0:3c:d6:d0:9c:
cc:4d:4b:11:52:4c:2f:56:ce:04:ee:e5:5e:d2:c9:
38:08:75:b1:8c:2c:36:09:06:7a:6e:17:c0:ea:44:
b1:dd:e5:d3:90:bd:01:f3:b0:7c:3b:06:1f:94:3f:
83:96:03:60:c5:c6:f6:6f:b2:45:b4:cc:03:95:1e:
3a:32:b2:c9:42:14:da:30:ff:7a:be:6c:17:20:17:
2c:5e:f4:89:0e:ad:19:05:ba:00:17:80:65:46:1f:
43:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:9E:B0:2C:08:33:DD:3A:9D:4C:0D:4D:93:B5:65:D3:D7:71:48:B1
X509v3 Authority Key Identifier:
keyid:AC:A7:17:F1:07:E0:62:2C:E4:CB:3E:F5:2B:01:54:FA:7F:9B:69:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKcX8QfgYizkyz71KwFU-n-baS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/0942ec-2e9f-4172-8c53-c4946b8e630d/1/rKcX8QfgYizkyz71KwFU-n-baS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:c5:ff:7f:3a:e6:bf:66:fc:09:9c:05:b0:5e:8e:75:e4:b8:
fe:fd:e2:61:a9:31:7e:e5:3b:ee:c2:3b:2a:64:4d:7f:be:ad:
9a:d1:3e:39:d0:cc:e8:31:fc:51:2b:de:b4:f1:1e:7f:3e:be:
31:12:a4:09:b8:9a:78:c3:80:7a:d4:97:e4:ef:2f:f7:c0:c2:
a1:cb:1d:a2:07:c9:e5:59:2d:f3:62:ef:ae:f8:73:f9:8c:e8:
ec:10:d7:82:48:b0:11:96:2b:ae:4b:c2:27:9c:bb:6b:bc:84:
29:14:2f:a8:6e:a9:e0:18:33:1b:a6:d1:08:47:a5:88:68:10:
02:42:b5:6e:77:50:1c:78:40:bc:62:5e:c3:71:86:e6:a8:78:
ca:7a:0f:02:a0:27:ad:e6:02:47:69:a0:90:86:7a:b9:42:c9:
30:d3:3b:20:26:34:cb:dc:8f:24:37:eb:6b:18:7a:43:d0:8a:
f0:31:3f:f3:39:63:78:35:5e:41:70:86:8f:89:16:be:d7:2a:
48:4f:06:f0:87:75:45:01:6f:78:29:cf:44:87:69:ba:81:68:
ab:ad:9a:5f:3c:22:df:2d:fe:a8:bc:52:6b:f0:44:cf:a0:7c:
ee:d9:c0:6b:62:45:b8:9a:f1:26:63:f6:02:78:d5:d4:fc:0c:
e5:80:66:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 18:24:37 2026 by rpki-client