Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json)
Hash identifier: 2rHeU18xmadRuz3AotfeRM5DywgWhxwHJUjoJeFxAeE=
Subject key identifier: 39:B9:09:10:EF:12:CE:10:C4:CE:3F:A9:8D:CE:62:A9:11:29:E9:70
Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Certificate serial: 019CAD59CB4986B2E01E7270A250717D9A1D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
Manifest number: 10DC
Signing time: Mon 02 Mar 2026 07:01:08 +0000
Manifest this update: Mon 02 Mar 2026 07:01:08 +0000
Manifest next update: Tue 03 Mar 2026 07:01:08 +0000
Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: Mk04zPRsCBauamCCymWiEYRZB94XaDCh/RFQmwAUYzI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 07:01:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:59:cb:49:86:b2:e0:1e:72:70:a2:50:71:7d:9a:1d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Validity
Not Before: Mar 2 07:01:08 2026 GMT
Not After : Mar 3 07:01:08 2026 GMT
Subject: CN=39b90910ef12ce10c4ce3fa98dce62a91129e970
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:13:72:68:4e:44:24:a0:2f:cd:a1:10:83:db:
e2:bf:b9:c0:49:7e:96:e0:3b:2a:36:8c:c1:ae:5d:
6d:3c:a6:64:e2:b7:cc:0f:34:d5:35:2e:82:6c:60:
8c:62:27:d7:ac:6d:1b:77:49:28:28:3b:24:02:f9:
aa:4f:e3:54:0a:4e:e2:ed:fd:12:8e:3b:8c:d6:82:
15:dc:d5:f1:3a:f2:fe:ab:83:84:8f:3e:eb:0a:95:
c5:f4:93:2e:51:3b:1b:5f:fe:bb:64:47:aa:2e:4e:
77:12:25:6e:a5:86:84:f9:66:88:f6:24:9b:75:a0:
79:90:0a:48:6b:12:ff:72:cb:66:61:88:05:50:f2:
fe:b6:84:b2:ae:70:22:82:f8:0a:7c:9a:88:74:72:
63:a0:d3:17:a5:fe:91:4c:3e:6f:8f:db:2f:ef:2d:
cb:50:60:3a:70:55:eb:cc:cb:c2:09:a0:43:6b:23:
0f:df:f7:e4:ac:dd:55:85:ab:49:44:aa:98:ba:cf:
0f:81:b2:f0:aa:11:5e:9c:fb:44:51:ab:b5:65:66:
b2:8b:c7:a8:a0:e1:8d:db:92:88:dd:ca:0e:8b:b4:
6c:e3:62:dd:e0:69:40:c0:f8:e3:81:55:aa:21:43:
db:01:51:ed:3d:26:8b:02:cb:a4:85:42:e5:1c:23:
1d:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:B9:09:10:EF:12:CE:10:C4:CE:3F:A9:8D:CE:62:A9:11:29:E9:70
X509v3 Authority Key Identifier:
keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:5e:e5:36:4d:89:93:42:47:33:4e:9f:48:24:c7:f7:39:6d:
e6:db:14:16:40:9d:98:0b:0e:45:93:0a:bf:17:44:84:c2:4f:
f0:f7:96:c1:bd:68:3f:96:d4:4f:da:6a:94:ae:ec:cf:da:85:
a0:07:a1:6e:20:be:f3:98:98:ab:a3:da:4d:22:e4:9e:2b:49:
b4:2b:e6:57:5c:f0:9a:2d:7e:b7:e7:31:b6:8a:8c:14:62:d7:
18:b5:69:f4:ed:7e:c5:b1:a1:13:53:0d:6f:30:f8:34:86:b1:
c8:8d:75:af:44:b1:59:51:f2:20:3a:25:0c:06:e7:08:de:50:
17:73:65:fe:b8:7f:b5:64:b6:6b:78:36:52:00:8a:43:6d:cd:
79:fa:48:54:5f:9c:bf:2a:6f:aa:47:bc:a8:48:13:2d:10:7e:
6b:92:d8:83:90:a0:0d:13:90:4a:30:6d:b8:05:90:fb:74:fc:
3b:7d:e7:84:d1:2b:87:0b:06:c3:ee:60:17:0c:19:d4:0e:02:
36:f6:83:bc:bd:52:27:96:25:ca:0e:55:43:d0:a5:a3:f0:d6:
5f:ce:3a:2f:e5:84:12:aa:7e:ad:7a:f4:dc:ff:a5:7b:08:c1:
4f:63:a7:7b:93:db:b4:14:4d:7d:82:8b:74:26:4f:a5:d7:d7:
7c:aa:e4:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 12:26:36 2026 by rpki-client