Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/d19549-31b8-4a1e-b6d5-6a17e21ca6c7/1/kI7SZXsDRI2ii8JIwvfsSXPabjs.mft
File: kI7SZXsDRI2ii8JIwvfsSXPabjs.mft (raw, json)
Hash identifier: kCuOvvDW2hbVapAOtnqA7KkhTlb2dyx/p1sBtA4noeM=
Subject key identifier: 51:50:E3:0A:A0:9E:22:41:77:30:83:2A:62:B6:55:87:E2:92:23:DE
Authority key identifier: 90:8E:D2:65:7B:03:44:8D:A2:8B:C2:48:C2:F7:EC:49:73:DA:6E:3B
Certificate issuer: /CN=908ed2657b03448da28bc248c2f7ec4973da6e3b
Certificate serial: 019D9BF5C9956025FA344364C597DF8EB006
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kI7SZXsDRI2ii8JIwvfsSXPabjs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/d19549-31b8-4a1e-b6d5-6a17e21ca6c7/1/kI7SZXsDRI2ii8JIwvfsSXPabjs.mft
Manifest number: 01C9
Signing time: Fri 17 Apr 2026 15:01:09 +0000
Manifest this update: Fri 17 Apr 2026 15:01:09 +0000
Manifest next update: Sat 18 Apr 2026 15:01:09 +0000
Files and hashes: 1: EQxEyPQDuCTR078fV9h6v3Km5Cw.roa (hash: Lt5RUH9y8xxH2z3qvvXHmC8kiqcqvY/49BCxeZKNAOc=)
2: kI7SZXsDRI2ii8JIwvfsSXPabjs.crl (hash: Y3qGHw5goMR2WNDLWfJPyN2kKH507EH3Wd+4mFAyMp0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/d19549-31b8-4a1e-b6d5-6a17e21ca6c7/1/kI7SZXsDRI2ii8JIwvfsSXPabjs.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/d19549-31b8-4a1e-b6d5-6a17e21ca6c7/1/kI7SZXsDRI2ii8JIwvfsSXPabjs.mft
rsync://rpki.ripe.net/repository/DEFAULT/kI7SZXsDRI2ii8JIwvfsSXPabjs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:01:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:c9:95:60:25:fa:34:43:64:c5:97:df:8e:b0:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=908ed2657b03448da28bc248c2f7ec4973da6e3b
Validity
Not Before: Apr 17 15:01:09 2026 GMT
Not After : Apr 18 15:01:09 2026 GMT
Subject: CN=5150e30aa09e22417730832a62b65587e29223de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:85:4f:c0:a6:f3:e8:c5:13:e7:a7:55:1b:3c:
f1:b7:c3:78:77:f9:bc:8a:be:ea:e6:42:6a:5a:cd:
bc:ff:d4:98:21:5a:8a:78:ca:c3:11:8e:9b:12:3d:
fb:92:f6:e2:84:9d:11:1e:5c:7a:8a:a9:67:10:92:
73:c1:ba:09:24:44:d7:d2:65:e9:6c:71:b3:3d:c8:
ff:28:fb:84:d4:5a:c4:51:68:82:ae:37:18:81:70:
99:57:ad:a4:ed:b2:19:7f:69:6c:ba:34:c9:36:96:
d0:03:a4:27:8c:f7:6e:7c:cd:37:a8:21:92:bc:a7:
6f:72:76:09:79:02:b1:c1:97:1b:58:af:0e:1b:7d:
f6:46:4e:10:98:b4:e6:a5:4d:71:5c:bd:ab:a9:ef:
32:36:92:81:12:c3:bc:54:40:b6:52:04:57:1a:90:
41:f9:9c:dc:ff:30:f4:9b:b9:d5:62:6a:0c:b1:a6:
ea:d6:36:cb:61:46:af:ae:bc:6c:dc:40:5d:bd:ab:
8c:46:bc:f3:3c:70:fa:ce:54:e1:57:06:d8:df:e0:
f0:92:32:74:d6:b5:d8:42:22:d3:ac:36:a0:35:cf:
08:d7:83:60:b3:2b:b9:c4:ed:99:c1:30:fd:9b:1c:
04:9f:1e:de:bc:e1:f4:91:bb:8f:59:70:8f:52:64:
43:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:50:E3:0A:A0:9E:22:41:77:30:83:2A:62:B6:55:87:E2:92:23:DE
X509v3 Authority Key Identifier:
keyid:90:8E:D2:65:7B:03:44:8D:A2:8B:C2:48:C2:F7:EC:49:73:DA:6E:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kI7SZXsDRI2ii8JIwvfsSXPabjs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d19549-31b8-4a1e-b6d5-6a17e21ca6c7/1/kI7SZXsDRI2ii8JIwvfsSXPabjs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/d19549-31b8-4a1e-b6d5-6a17e21ca6c7/1/kI7SZXsDRI2ii8JIwvfsSXPabjs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:a2:d8:3a:e4:e3:71:2a:cf:c0:1a:45:11:82:55:8c:c2:4e:
85:6f:54:9c:5a:c1:aa:84:18:32:5f:d0:39:15:e4:d8:a9:bf:
53:9a:ce:56:30:91:6f:ce:0f:fd:33:59:bb:39:e9:05:69:cd:
0c:f3:bf:f5:cf:f8:93:c4:ba:22:24:04:4d:f8:fe:e6:25:ae:
26:00:3a:89:d1:76:23:82:f1:33:27:d1:74:2e:02:da:5d:eb:
24:da:b1:3b:85:32:df:f1:3e:b1:83:59:d8:34:e7:e8:4c:d8:
13:38:01:a6:0b:7d:00:6d:1e:7f:b4:2c:68:30:71:23:d1:63:
46:1c:36:df:bc:fd:b0:6b:92:75:6f:29:98:ef:ce:b9:dd:f4:
eb:71:d1:9c:72:8f:c8:05:d3:a9:df:cb:19:f4:27:de:29:f4:
9c:18:fb:61:9a:a1:b8:cb:26:84:6c:fa:ec:97:cf:f1:2f:d1:
15:cc:dc:1f:f3:e0:bc:7b:02:be:ad:79:d9:66:83:0e:74:56:
0d:94:f2:b4:c7:ed:d5:1d:f5:1e:55:8a:bd:6f:44:eb:3f:9a:
65:b5:e0:fe:9f:84:f6:62:7b:b6:3d:91:ed:19:10:39:aa:a8:
94:41:cf:d4:3c:4e:6d:9c:ef:1b:09:eb:86:89:ab:7d:9c:04:
8f:9d:f5:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:55:04 2026 by rpki-client