Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: Blbi7LzYO4rYV1mHNAj1qb4O7wKR/K5Eo9xGWcNvbP4=
Subject key identifier: DF:E7:1D:77:11:69:7A:2A:C7:64:FB:E7:31:18:7D:A7:26:E2:25:27
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 019D9999301601F615DFE6F8FE2E13DE980B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 0A8E
Signing time: Fri 17 Apr 2026 04:00:46 +0000
Manifest this update: Fri 17 Apr 2026 04:00:46 +0000
Manifest next update: Sat 18 Apr 2026 04:00:46 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: cCd7mUxDet1TWoiCf4+Y02UEILO88GVRfAw6lOXPYG4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:99:30:16:01:f6:15:df:e6:f8:fe:2e:13:de:98:0b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Apr 17 04:00:46 2026 GMT
Not After : Apr 18 04:00:46 2026 GMT
Subject: CN=dfe71d7711697a2ac764fbe731187da726e22527
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:ca:59:83:9a:da:84:3d:ef:e3:a1:49:d3:ba:
82:e7:c0:ff:7f:15:dd:95:9e:c8:4d:82:ff:78:6a:
61:71:ae:31:b7:8b:b2:8f:92:42:6a:e5:69:28:7b:
81:71:f0:52:02:58:31:3e:83:0c:d5:50:12:d0:dd:
30:cf:5a:07:9c:ba:19:41:74:36:ef:3e:d0:2c:6f:
2f:25:69:b2:12:c3:08:bb:02:e8:14:bb:5f:5d:b3:
a8:38:7c:84:cf:57:fb:4d:07:84:0b:a7:da:9b:f8:
ef:07:cb:b4:0f:ed:ac:22:bc:94:ef:4f:88:b1:74:
2e:ec:b8:72:18:8a:16:6d:b4:77:47:50:4f:f6:90:
c4:91:00:e5:1f:8f:4a:e7:aa:ce:a7:3d:e5:df:61:
6c:34:9d:83:c5:da:50:b1:ac:e0:cc:12:dd:7a:c2:
84:00:fb:22:e2:46:21:32:1e:86:b8:57:16:1c:83:
f1:3f:ce:ed:07:6b:49:52:e6:6a:db:cd:20:19:f8:
96:9e:f9:c6:26:0b:38:11:6c:21:4a:05:5e:21:88:
60:76:46:64:d7:40:bb:f2:7a:ab:17:c5:3d:78:cc:
0b:15:2f:b9:15:8d:b1:aa:87:4b:85:ed:7c:0e:b2:
44:17:5f:1b:74:1b:84:69:bb:c9:65:cb:cc:8f:84:
88:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E7:1D:77:11:69:7A:2A:C7:64:FB:E7:31:18:7D:A7:26:E2:25:27
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:6f:3a:a3:34:a9:95:58:3a:06:1d:9f:ab:96:8f:24:7e:8b:
30:a6:17:8f:52:ad:c0:64:c1:4a:77:e5:40:ca:92:de:c0:50:
d7:a8:57:71:80:9f:ef:0b:5a:2e:eb:16:ff:fc:4c:5d:44:c0:
81:36:43:29:d1:3b:aa:5e:0c:c1:70:cb:fc:89:01:77:eb:e8:
5b:b7:c8:7d:01:16:67:a5:d9:9b:28:49:12:0f:f6:d6:fd:c7:
76:b6:d2:63:d9:61:3c:bc:6a:5d:b2:fb:dd:d1:60:ae:4d:56:
3b:2d:8d:09:da:a1:49:23:fc:a3:29:04:f7:20:9b:50:58:7e:
71:7b:e4:d4:42:db:08:f0:93:45:08:b6:04:64:a3:8c:d0:c2:
70:c4:63:40:a5:d9:1c:55:c5:89:f4:06:bd:fe:8a:4d:db:9d:
1b:0e:ec:fa:fa:bc:06:7e:ee:b0:fc:2d:3e:b9:cd:cd:3b:d5:
39:28:76:5e:f3:32:a1:b4:64:bd:bc:57:92:99:69:63:f2:20:
56:9e:3c:d1:f0:58:2d:5a:d1:f7:76:2b:0e:02:7a:e9:60:b1:
29:db:66:05:44:2f:f3:23:de:44:17:11:d1:0e:8f:4d:f5:56:
85:ef:c3:4c:24:ff:5c:4a:b2:a3:1f:96:e4:ad:f1:36:64:59:
28:2e:ef:44
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:58:19 2026 by rpki-client