Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: T9Q8B5SrpNv5krkitX8fPA8ptP7bWpyzA4mMA4zOGZ8=
Subject key identifier: 13:56:75:7A:6A:4F:D6:5E:7A:24:81:53:64:F3:AE:1B:0A:BA:65:B0
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 019DA566AE25EDAA43BB697B954563CAE725
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 03CD
Signing time: Sun 19 Apr 2026 11:01:03 +0000
Manifest this update: Sun 19 Apr 2026 11:01:03 +0000
Manifest next update: Mon 20 Apr 2026 11:01:03 +0000
Files and hashes: 1: 8KaJwIuZexyBoZjYRmZrjQf9lJQ.roa (hash: LrRg49gpH/+ELMxEyexBUIqT8W2t/5VIfE4dXyblhxM=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: ZA5X08afSk0cFErdKJk4zjgB60c58BzK3Nt6FTxhyhA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:66:ae:25:ed:aa:43:bb:69:7b:95:45:63:ca:e7:25
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Apr 19 11:01:03 2026 GMT
Not After : Apr 20 11:01:03 2026 GMT
Subject: CN=1356757a6a4fd65e7a24815364f3ae1b0aba65b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:ed:12:d7:34:ff:1c:74:27:8d:fa:51:ff:ee:
35:f9:59:ad:3c:0d:bc:4f:48:8e:98:d8:ed:5e:08:
ee:fe:91:ca:47:8f:d6:75:3a:9a:3a:43:83:f9:67:
b5:00:d5:45:f9:11:e7:45:13:6a:f5:a3:00:dd:83:
97:b3:8a:2c:7c:de:ba:96:d1:cf:f4:8d:98:a0:2a:
22:7a:47:94:26:9e:2d:7b:3e:c1:a0:9d:f7:82:27:
43:53:2f:15:ba:ec:e2:41:16:d1:9d:cb:5f:96:de:
65:10:1a:e3:20:cd:ed:68:5f:cc:be:bb:23:90:1e:
22:04:01:23:08:96:8a:19:24:07:41:ef:e2:42:ad:
ee:fe:a4:3b:25:64:35:79:ef:b3:24:53:86:0f:fa:
81:ce:0b:29:7c:d9:f9:dd:87:05:6f:94:fc:41:24:
c2:d7:58:de:b4:df:aa:28:1d:cd:99:02:ff:ba:45:
a1:e3:c1:11:ed:e0:dc:08:59:09:97:f2:00:4e:0d:
9b:25:11:ae:12:d8:ae:0e:d8:0d:18:ee:27:2c:ca:
fe:5c:f4:c4:db:2b:f1:e4:ab:6d:0a:42:7b:7e:55:
e2:ad:a5:fb:82:31:de:bb:b4:b0:9f:48:bc:5a:f1:
cb:31:8f:dc:d4:0e:c3:31:af:ee:13:c3:20:81:f4:
ca:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:56:75:7A:6A:4F:D6:5E:7A:24:81:53:64:F3:AE:1B:0A:BA:65:B0
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:f0:6e:42:6c:5a:c8:12:03:31:cf:7d:ee:f2:30:f7:5b:a5:
fe:e2:9a:dc:e4:01:01:30:22:5b:c4:b2:6c:de:f0:0f:11:23:
c1:0e:64:9f:74:04:fe:3d:38:6a:03:39:4c:aa:1f:14:ae:68:
88:42:97:46:73:69:1b:e3:ed:a0:d6:5d:71:e3:75:23:6e:bd:
9f:e4:e1:73:21:4c:0c:7d:96:85:59:20:fc:67:2f:77:8f:63:
4a:db:1c:44:a0:14:a6:e3:96:b4:76:89:55:8b:77:ed:bc:c8:
82:c4:ed:12:56:20:9c:33:e0:53:35:bd:b1:9f:f9:34:96:f7:
42:be:f0:1c:e9:f4:96:66:0d:e7:4e:95:7d:c2:5a:40:9a:36:
de:95:a0:38:dc:5c:43:57:58:e5:07:72:52:bb:21:56:da:32:
ea:7e:05:aa:1f:88:80:63:05:6a:c1:0a:60:22:e8:16:bb:71:
05:a3:22:1a:29:5c:d0:4e:2e:34:cb:59:b9:54:9b:0f:8d:12:
a0:e5:17:a9:05:af:22:b1:52:62:d4:ec:4c:78:0e:f2:c7:85:
83:b1:16:bd:6d:6f:63:06:c1:23:c0:b7:ba:5c:31:04:e7:ac:
9a:85:19:cb:35:27:d4:29:1c:9e:a1:1a:a0:a0:8e:ed:1c:f0:
13:0b:39:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:23:39 2026 by rpki-client