Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
File: KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft (raw, json)
Hash identifier: EMAmg1jznKG5r3q3Cx8pGa63E+PsGewAtQ4097wTo44=
Subject key identifier: 26:EB:35:27:B7:A3:3C:A1:28:7F:7D:77:6D:EB:C8:64:40:DD:F7:FB
Authority key identifier: 2A:A3:C9:9F:F5:8B:8F:73:3E:F2:C6:2A:77:72:C0:C1:F2:9E:57:FC
Certificate issuer: /CN=2aa3c99ff58b8f733ef2c62a7772c0c1f29e57fc
Certificate serial: 019D9AE34585B48A4F84C30A0A53041C26C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
Manifest number: 11CE
Signing time: Fri 17 Apr 2026 10:01:18 +0000
Manifest this update: Fri 17 Apr 2026 10:01:18 +0000
Manifest next update: Sat 18 Apr 2026 10:01:18 +0000
Files and hashes: 1: KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl (hash: KlNZMh/ZLYApE9AudIEO1hinkYMggBQ7j55g5yI9a2o=)
2: TjwUrt0QbOg_7Hv7hnE5gPoovGE.roa (hash: vCYAcdHdzTkyR5n/fzt3EtvDXfAERXz/dZUmibVHkag=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e3:45:85:b4:8a:4f:84:c3:0a:0a:53:04:1c:26:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3c99ff58b8f733ef2c62a7772c0c1f29e57fc
Validity
Not Before: Apr 17 10:01:18 2026 GMT
Not After : Apr 18 10:01:18 2026 GMT
Subject: CN=26eb3527b7a33ca1287f7d776debc86440ddf7fb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:e2:4c:7d:03:cf:0d:c2:3d:fd:0c:77:1b:81:
49:a9:50:03:77:e7:5a:e4:98:92:3d:a1:2a:ea:65:
7e:39:ef:42:2d:84:44:79:fd:ab:e6:35:6f:5c:58:
d4:e3:9e:3e:ed:e3:59:45:ea:33:8c:93:97:94:25:
86:28:75:67:01:47:35:c3:8b:bc:93:22:9d:de:06:
e8:45:66:35:de:8c:e7:10:b5:43:f8:96:85:e5:15:
c4:11:f8:df:4a:d6:01:f9:88:f5:b7:f5:2f:6f:f5:
ae:07:30:e0:f0:9b:ab:7f:49:94:b5:e2:28:65:20:
74:e2:e0:cf:38:83:55:a8:a7:69:6a:03:b1:f4:b8:
42:48:d2:a6:85:ac:58:e4:6a:cc:ca:a6:b9:cb:f6:
ec:db:8e:86:f3:6c:01:69:f0:06:ed:f5:d5:63:eb:
fd:74:23:e8:aa:65:b1:46:5d:e8:07:bf:f6:5b:76:
32:f7:59:4f:70:26:68:b5:16:87:ea:e5:0a:d4:77:
56:eb:e3:25:61:3d:49:22:11:67:4e:e4:98:8e:39:
66:37:41:d9:5b:42:6e:bb:60:24:60:33:3b:10:0e:
77:a0:e2:de:66:a1:4a:34:c2:a9:ce:0a:27:66:51:
d3:07:da:db:a1:49:31:47:f1:16:96:39:3d:03:02:
fd:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:EB:35:27:B7:A3:3C:A1:28:7F:7D:77:6D:EB:C8:64:40:DD:F7:FB
X509v3 Authority Key Identifier:
keyid:2A:A3:C9:9F:F5:8B:8F:73:3E:F2:C6:2A:77:72:C0:C1:F2:9E:57:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPJn_WLj3M-8sYqd3LAwfKeV_w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/a0b63e-1166-46b5-9e3e-38b5d1788007/1/KqPJn_WLj3M-8sYqd3LAwfKeV_w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:5f:f0:b6:91:64:b0:4e:f1:d6:39:3e:a2:ca:36:b1:2b:c5:
44:f0:82:f0:c9:9b:eb:8b:9f:3b:05:07:32:8a:c9:4a:cc:f4:
99:b0:42:f6:ce:09:c2:e4:94:55:97:e8:c8:7c:50:03:0e:be:
52:a4:10:52:e6:23:1a:e3:27:f5:a8:03:66:89:db:e0:5a:21:
30:d4:01:5a:53:c0:78:bf:dc:ca:3b:9d:09:74:1b:c0:94:44:
f6:36:71:79:d4:1d:77:36:08:4f:c5:29:41:33:c1:96:9d:ee:
b4:9d:33:f3:8f:01:5c:c2:92:d7:b4:57:fc:8a:55:44:27:e8:
01:a4:1b:1f:3c:b4:05:81:2c:fa:7a:a0:ca:b3:53:a0:04:52:
43:7d:aa:10:f9:3c:ee:a8:cb:aa:f1:ea:65:83:92:b5:6e:d8:
28:57:9a:de:ae:9b:43:6b:a2:9a:63:9e:9c:61:ba:36:20:24:
3f:81:e2:31:98:88:b1:1d:af:a3:93:d9:28:71:43:5e:68:87:
aa:13:28:54:53:93:f8:a1:1e:0e:d5:9b:50:27:a4:2c:fb:01:
94:f2:2e:ff:e7:77:ae:7c:2c:e7:04:db:13:54:ac:69:97:c0:
58:ec:fa:aa:ea:50:b9:97:26:04:18:e1:91:94:92:c1:fd:81:
9c:58:78:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:08:23 2026 by rpki-client