Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
File: kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft (raw, json)
Hash identifier: I3zawi/a5JpQBqKVJB0uwlZaH2hcbNSK7J/o3BMj09Q=
Subject key identifier: E2:C7:B6:93:97:C0:BE:4A:51:A9:86:FD:41:74:C3:31:EE:29:87:46
Authority key identifier: 91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
Certificate issuer: /CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Certificate serial: 019EC148DE4085812DDE1FDB1F3D48A6B08A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
Manifest number: 0DEF
Signing time: Sat 13 Jun 2026 14:00:38 +0000
Manifest this update: Sat 13 Jun 2026 14:00:38 +0000
Manifest next update: Sun 14 Jun 2026 14:00:38 +0000
Files and hashes: 1: bChcbGdFNJLxkL6cWvlOuiphISs.roa (hash: +dNUc4mkY1Ks/wJrUAYjbgs9Kw+RWtpPfvShsAp4TVY=)
2: kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl (hash: upGqd1PwD1QEaOKoujtkJAVxkuSkzFptJ1odkKVED5U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 14:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:48:de:40:85:81:2d:de:1f:db:1f:3d:48:a6:b0:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91188ca64c4670a6eb56b42a50a10588ad9647ee
Validity
Not Before: Jun 13 14:00:38 2026 GMT
Not After : Jun 14 14:00:38 2026 GMT
Subject: CN=e2c7b69397c0be4a51a986fd4174c331ee298746
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:43:c3:55:5e:f7:0b:6b:ee:15:3a:5e:b7:37:
50:e3:d6:5a:f9:1c:51:a2:47:84:c0:82:54:f2:ea:
6e:d0:d2:59:44:ab:51:78:26:1b:50:ef:99:f5:e9:
43:a8:a1:09:cb:58:0e:cd:81:f1:e1:4a:2f:47:c6:
30:8a:21:70:00:d4:ec:8b:db:63:50:66:54:5a:e5:
27:f6:be:4f:c2:fd:5b:70:db:c0:6c:94:ab:f5:e8:
1e:e8:15:6c:a9:c2:4a:c3:b0:e1:3b:ac:db:2c:75:
41:8f:64:2b:82:86:0f:58:e4:24:d6:b5:d0:4a:f1:
5f:ac:a2:5e:ef:48:ad:12:cb:fe:87:87:44:e4:49:
90:b9:d7:c5:03:f8:f2:71:be:57:12:e5:87:de:92:
ac:7a:c4:84:09:67:b1:0e:a8:e5:07:ad:f5:84:c6:
01:97:34:cb:64:d5:92:53:ab:b7:da:7a:7e:a7:d6:
a2:36:b3:1d:91:d2:b3:ca:6c:e9:ff:55:07:19:55:
aa:20:42:31:14:bd:15:1b:aa:33:30:51:f3:8a:ea:
e0:df:20:f3:ae:4c:fa:50:48:f6:49:82:78:a4:75:
34:10:7c:8d:8b:b9:c6:06:2d:0d:5d:f9:d6:3d:20:
40:90:b8:7a:2a:d4:4b:60:40:6b:09:d2:46:ad:a1:
d2:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:C7:B6:93:97:C0:BE:4A:51:A9:86:FD:41:74:C3:31:EE:29:87:46
X509v3 Authority Key Identifier:
keyid:91:18:8C:A6:4C:46:70:A6:EB:56:B4:2A:50:A1:05:88:AD:96:47:EE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRiMpkxGcKbrVrQqUKEFiK2WR-4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/31d6c1-1146-4588-838d-147177b837de/1/kRiMpkxGcKbrVrQqUKEFiK2WR-4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:f9:f6:a9:32:85:bb:0a:75:3e:97:dd:99:e3:c9:78:48:5b:
58:19:47:d4:8a:ab:eb:8e:e8:cc:41:a3:37:ec:03:2f:19:7e:
79:45:52:05:3a:da:20:a4:fb:73:12:b0:83:d2:54:44:dc:9e:
93:6a:4e:ed:85:74:8b:f4:76:ba:5c:18:2a:21:ce:4d:60:62:
41:d6:3b:21:b0:d1:4e:ee:ce:49:80:82:36:ad:af:0c:6a:80:
b3:ef:b2:5e:3c:b8:9b:fc:3a:8a:9d:e5:cf:cd:d1:b0:52:b4:
aa:ba:f9:de:ec:4f:bb:c4:fe:6c:26:ee:e1:af:62:bd:87:84:
9c:81:00:dd:e3:60:fe:e2:2c:d2:e5:9d:8a:fe:2e:e3:08:ca:
e9:e4:aa:2a:bf:6a:78:5a:d6:81:61:a7:a4:6c:56:1e:ab:7c:
78:9b:16:c2:55:2a:99:1a:92:8c:c8:34:80:08:58:28:97:1a:
22:85:7a:64:b7:c6:67:cc:a4:5f:1f:f8:1c:3a:f4:24:a4:9a:
88:8d:1b:f8:60:70:cd:33:a8:f5:4c:eb:27:03:9a:67:6e:3e:
e8:a2:37:a4:c8:ca:0e:ec:a5:90:08:2b:0e:84:da:2f:2a:b6:
af:66:45:01:d5:95:c3:45:81:21:a9:5b:44:ee:ee:86:14:0a:
78:58:19:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:56:46 2026 by rpki-client