Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/49e0b2-1e2a-432a-ba19-115988d81289/1/Kksu12XR1HipbYLxJgEen7dS_Ic.mft
File: Kksu12XR1HipbYLxJgEen7dS_Ic.mft (raw, json)
Hash identifier: DaMcCOk/PWr7+ZEK+nKvtHlv1oid2umrX88xmQvNRtI=
Subject key identifier: B3:34:7B:87:8D:52:12:DF:28:D0:D4:FC:7E:5B:2A:69:EB:76:71:05
Authority key identifier: 2A:4B:2E:D7:65:D1:D4:78:A9:6D:82:F1:26:01:1E:9F:B7:52:FC:87
Certificate issuer: /CN=2a4b2ed765d1d478a96d82f126011e9fb752fc87
Certificate serial: 019CAC46E88AFA9BC8ACCAAF8C96135A7418
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kksu12XR1HipbYLxJgEen7dS_Ic.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/49e0b2-1e2a-432a-ba19-115988d81289/1/Kksu12XR1HipbYLxJgEen7dS_Ic.mft
Manifest number: 1842
Signing time: Mon 02 Mar 2026 02:00:54 +0000
Manifest this update: Mon 02 Mar 2026 02:00:54 +0000
Manifest next update: Tue 03 Mar 2026 02:00:54 +0000
Files and hashes: 1: Kksu12XR1HipbYLxJgEen7dS_Ic.crl (hash: waDlUuV/QHUPdR2E3eUrw5q/tkC+EAjGC1idbECunD0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/49e0b2-1e2a-432a-ba19-115988d81289/1/Kksu12XR1HipbYLxJgEen7dS_Ic.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/49e0b2-1e2a-432a-ba19-115988d81289/1/Kksu12XR1HipbYLxJgEen7dS_Ic.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kksu12XR1HipbYLxJgEen7dS_Ic.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:46:e8:8a:fa:9b:c8:ac:ca:af:8c:96:13:5a:74:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a4b2ed765d1d478a96d82f126011e9fb752fc87
Validity
Not Before: Mar 2 02:00:54 2026 GMT
Not After : Mar 3 02:00:54 2026 GMT
Subject: CN=b3347b878d5212df28d0d4fc7e5b2a69eb767105
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:77:c4:5a:68:d2:0f:87:3e:f2:94:42:67:9d:
85:7d:8b:12:37:d5:02:4f:6a:a4:6f:25:13:6c:da:
b7:d3:59:01:e9:c4:d8:8b:4e:22:98:47:73:7a:84:
41:70:df:73:6c:bf:78:53:79:97:a2:0e:07:bf:f6:
fc:7d:69:b4:30:47:1f:9f:05:74:b9:df:48:d2:4d:
5b:f7:70:e6:1b:b6:6b:99:87:8d:95:2c:ce:8a:4d:
11:d6:d6:87:66:4a:d4:2c:27:d5:1e:0f:45:a5:d3:
87:91:33:a5:16:94:bc:e6:8f:7b:45:19:ca:42:81:
f3:41:6c:ef:b4:fa:50:23:a4:94:95:d1:ff:33:c2:
af:c4:c2:e4:ee:36:31:82:1c:78:3d:5c:b8:15:f9:
eb:c9:88:82:2e:db:13:36:24:ac:d4:ea:66:fa:11:
8f:c5:88:77:01:63:02:e8:b8:ba:8c:c9:8c:44:04:
82:c3:c1:dd:57:21:19:50:ef:6c:44:80:d1:c4:ee:
ef:7d:5f:35:74:1b:cb:d6:31:37:60:f7:22:4f:2b:
92:cf:8e:22:cc:3a:a6:2e:33:78:7a:54:df:6a:57:
fc:96:67:8b:b5:df:b6:32:10:76:f9:cb:b0:37:22:
71:a7:54:5a:65:bf:13:a0:ea:7e:3e:eb:c1:49:d3:
fa:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:34:7B:87:8D:52:12:DF:28:D0:D4:FC:7E:5B:2A:69:EB:76:71:05
X509v3 Authority Key Identifier:
keyid:2A:4B:2E:D7:65:D1:D4:78:A9:6D:82:F1:26:01:1E:9F:B7:52:FC:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kksu12XR1HipbYLxJgEen7dS_Ic.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/49e0b2-1e2a-432a-ba19-115988d81289/1/Kksu12XR1HipbYLxJgEen7dS_Ic.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/49e0b2-1e2a-432a-ba19-115988d81289/1/Kksu12XR1HipbYLxJgEen7dS_Ic.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:69:ee:d8:60:77:66:a3:ad:41:33:ca:4c:1d:80:64:d6:74:
71:1c:be:07:67:f6:c8:ef:4c:80:7e:30:00:37:7b:5d:f0:f2:
14:b9:e1:a1:10:71:0c:0a:1e:63:5c:a7:d6:ea:93:6a:67:ba:
dc:a2:61:39:77:7b:8f:f2:8b:19:4f:7f:88:b0:11:05:19:bb:
df:30:77:97:2f:0f:5c:83:d3:06:2f:65:54:cb:ab:d6:21:34:
87:0d:b2:91:79:2c:db:da:8d:c5:da:5b:23:0d:2c:20:dc:c4:
63:06:af:23:e2:60:e2:a3:d9:89:fb:0b:e6:d4:0e:6d:9f:c8:
22:43:b1:dc:40:8a:c4:ee:78:55:fd:b4:1e:34:44:15:f6:92:
08:5c:c7:ca:13:ce:d1:e5:81:b1:49:ce:1d:c6:f3:57:d0:36:
59:d9:56:8d:ba:a0:03:d7:7d:fa:85:2c:14:2b:1b:3b:14:34:
00:bb:f7:44:3c:da:fa:d6:fd:c2:9c:bd:f2:3f:fd:db:44:50:
7d:92:22:e7:8d:ea:b9:24:77:04:1c:e8:e6:ac:57:e9:9f:58:
75:83:ff:6d:cb:6d:30:35:6a:42:54:7f:d7:ea:c8:b6:4e:22:
4b:7d:9a:3d:d0:f5:fa:b5:7e:e4:24:80:c4:98:97:11:19:b3:
63:e5:43:7b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:04:14 2026 by rpki-client