Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
File: kh2gU5IfUoNniBiPgvYt1aqXP-k.mft (raw, json)
Hash identifier: eYems9LKk81obf8HhAorg5k4Z+otQN3o7QyEzUjL+tg=
Subject key identifier: 58:8B:C9:51:69:9A:3A:28:6E:26:C3:24:3C:4C:95:0D:5B:87:60:FF
Authority key identifier: 92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
Certificate issuer: /CN=921da053921f52836788188f82f62dd5aa973fe9
Certificate serial: 019D99630B660E1068BEF340E1DB5D10EFFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
Manifest number: 1186
Signing time: Fri 17 Apr 2026 03:01:38 +0000
Manifest this update: Fri 17 Apr 2026 03:01:38 +0000
Manifest next update: Sat 18 Apr 2026 03:01:38 +0000
Files and hashes: 1: kh2gU5IfUoNniBiPgvYt1aqXP-k.crl (hash: pAtXnxFgtIBGgy/9IKNjtCFr32vYSuY9pV0Ndq24Ggg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:63:0b:66:0e:10:68:be:f3:40:e1:db:5d:10:ef:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=921da053921f52836788188f82f62dd5aa973fe9
Validity
Not Before: Apr 17 03:01:38 2026 GMT
Not After : Apr 18 03:01:38 2026 GMT
Subject: CN=588bc951699a3a286e26c3243c4c950d5b8760ff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:83:2f:e8:57:73:96:29:a9:69:86:b0:79:46:
ef:d1:17:68:28:73:91:74:d7:03:83:be:e2:5d:1b:
5c:3e:07:c4:6e:0a:d1:bc:ca:ad:e0:9b:78:06:95:
9c:43:79:a2:1f:b9:40:ec:30:b2:22:a8:18:42:38:
e7:ce:c4:78:fc:74:76:fd:c5:7b:fc:6a:7f:f3:6d:
7d:08:f8:b4:84:6c:f2:50:f5:67:5a:b9:72:2d:95:
8e:1a:26:cc:b6:61:aa:d8:43:61:38:7d:6c:69:7a:
9c:36:8c:95:de:ae:ab:37:bb:c2:58:17:a7:1c:71:
96:52:83:92:f1:53:3e:6a:2d:e2:15:eb:59:a7:ff:
85:d6:e8:16:06:a2:7e:6e:32:85:77:1b:11:e8:8d:
14:0d:1d:71:10:c2:c8:53:28:6e:ae:8b:b7:33:79:
4f:6f:d7:bb:f1:38:31:ec:26:2d:d2:8c:ce:e3:16:
f9:7a:80:23:ab:ea:59:66:b7:3f:92:56:9c:92:34:
81:1d:9a:ef:2f:c2:46:30:f1:a0:87:39:1e:3e:02:
6b:a7:75:59:f8:71:7b:91:80:6b:39:f3:3d:aa:6f:
27:90:8a:3c:f4:d0:a8:35:0d:7a:7e:06:e6:ab:ec:
f7:a6:6c:c3:db:43:3d:11:00:9f:6b:a9:b3:19:1a:
2d:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:8B:C9:51:69:9A:3A:28:6E:26:C3:24:3C:4C:95:0D:5B:87:60:FF
X509v3 Authority Key Identifier:
keyid:92:1D:A0:53:92:1F:52:83:67:88:18:8F:82:F6:2D:D5:AA:97:3F:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kh2gU5IfUoNniBiPgvYt1aqXP-k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/3e6ea5-0d4e-434f-a6f3-eb346d9ce9e0/1/kh2gU5IfUoNniBiPgvYt1aqXP-k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:50:d1:3a:4d:10:55:0c:81:1e:fa:f5:5e:f7:81:a0:e1:cf:
d6:0b:7f:e0:68:34:6b:eb:b2:b8:c5:dc:b0:32:84:17:23:11:
3e:7e:41:b6:24:ad:f6:30:b2:74:e2:ac:0c:47:20:ff:53:be:
92:af:4a:8b:b2:0c:14:c6:eb:47:b6:16:2b:df:ae:9b:1a:cf:
7d:31:08:9a:9b:5f:92:d8:65:58:e4:c2:fa:c0:04:6f:aa:8d:
80:4c:d8:43:b3:f4:28:74:8b:76:37:2f:5d:94:a0:a4:e7:53:
34:be:49:91:40:eb:6c:6a:64:10:86:1c:6c:96:ad:b4:45:7d:
da:3d:bc:8c:39:d1:83:84:99:df:af:95:0d:f6:2b:f8:24:04:
4f:9c:01:ef:3d:a9:2e:6b:cc:9d:14:a7:bb:3a:82:be:35:c9:
23:f0:84:cd:68:5e:bf:24:de:27:9a:19:33:84:df:80:9f:2a:
9a:71:24:d4:67:8e:94:bb:7f:97:a0:cc:90:a8:f9:0b:4c:91:
88:ff:b6:2b:71:de:7e:26:f2:88:45:46:d2:2a:1b:6b:8c:f7:
fa:dd:d9:76:46:58:f1:e6:cb:0b:3d:38:0a:0a:90:1d:30:83:
6a:73:29:06:1e:ba:ab:2f:d1:ae:23:b8:c7:e2:0c:e3:b3:2c:
86:18:2e:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:40:34 2026 by rpki-client