Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
File: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft (raw, json)
Hash identifier: WnczSNIQBN3xhQGPmax8e4mnWGF29oeMlJmuWYhvfAw=
Subject key identifier: A5:AE:FF:B1:D8:53:B6:CE:A1:C8:30:3C:BA:9E:D2:5D:8C:1A:44:FD
Authority key identifier: AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
Certificate issuer: /CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Certificate serial: 019D9AE2A47D3C4A18AAEE6D50156FF9F0C8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
Manifest number: 1157
Signing time: Fri 17 Apr 2026 10:00:37 +0000
Manifest this update: Fri 17 Apr 2026 10:00:37 +0000
Manifest next update: Sat 18 Apr 2026 10:00:37 +0000
Files and hashes: 1: r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl (hash: O6QNldZyn7fCcXRKh8clL6hzGwbMAkC69EI9CiXFO48=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:a4:7d:3c:4a:18:aa:ee:6d:50:15:6f:f9:f0:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=af82a097a28a6b6a699d8d6abe4dcb95bb198330
Validity
Not Before: Apr 17 10:00:37 2026 GMT
Not After : Apr 18 10:00:37 2026 GMT
Subject: CN=a5aeffb1d853b6cea1c8303cba9ed25d8c1a44fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:09:aa:d3:8e:5f:4c:43:b0:80:5a:1e:f6:4c:
48:b4:1e:e3:c2:23:75:d5:9a:6c:19:e8:f0:36:8f:
cb:7c:cf:df:fd:0f:ad:2f:e5:17:39:02:88:52:48:
a9:86:0d:3d:3a:a1:13:b3:0e:9c:e6:d9:53:ba:2a:
3f:4f:12:bb:f9:f7:7f:25:9a:11:cb:41:02:a3:ad:
e1:28:5d:fa:36:b6:85:53:cb:aa:82:7b:4f:af:1e:
89:38:20:b8:a3:79:88:89:94:81:48:49:8e:64:fa:
a1:17:47:70:a3:ac:3b:51:6b:16:67:ab:56:f1:3e:
44:a9:2d:b1:51:93:82:e1:58:6a:13:b2:9b:0f:05:
f1:70:7b:c1:85:e3:eb:78:71:0c:5d:a5:0f:bc:0b:
e8:d9:76:1f:f0:0e:ae:c5:a4:cd:e4:42:41:26:a5:
0b:a6:e3:95:3c:7a:c2:c5:24:00:f4:5a:7b:35:00:
71:2a:02:25:5b:f4:36:8c:f6:5f:e5:66:d0:6d:f4:
02:41:cc:93:c5:c0:3f:95:a9:6e:66:32:5c:e8:2c:
5e:fc:d9:8f:98:68:ce:88:7e:53:61:69:54:8e:25:
db:36:e4:4f:ce:5d:3e:29:25:c2:a1:15:71:a6:ad:
02:66:6b:0c:b1:cc:11:78:6e:8e:50:33:4f:c6:fd:
d9:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:AE:FF:B1:D8:53:B6:CE:A1:C8:30:3C:BA:9E:D2:5D:8C:1A:44:FD
X509v3 Authority Key Identifier:
keyid:AF:82:A0:97:A2:8A:6B:6A:69:9D:8D:6A:BE:4D:CB:95:BB:19:83:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/75c57b-2786-47b9-981c-faa8b718b6cb/1/r4Kgl6KKa2ppnY1qvk3LlbsZgzA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:7a:9a:ef:33:4f:5c:92:98:92:a9:48:50:56:15:c7:e8:0f:
40:84:f3:9c:30:ec:e3:b9:c8:47:22:ae:41:37:29:00:94:0c:
3c:2a:2d:4e:0a:0a:3b:02:41:b1:0d:f8:b7:05:c7:fc:6a:5b:
ad:4a:c8:da:eb:43:1c:ac:1b:6a:91:85:fe:0a:ec:76:7e:f2:
37:e8:d8:eb:ac:3f:0b:fc:ca:55:f7:cc:bc:b3:7e:99:f3:40:
2d:c4:ba:b4:5b:25:8d:49:a9:2f:a5:fe:50:99:52:16:c5:cc:
6a:11:bb:79:cb:c3:92:55:5b:e3:3a:95:31:7c:3c:81:44:17:
9d:80:2d:e9:b9:f2:be:aa:7a:9a:dd:c0:69:bf:ce:e3:89:26:
c6:7c:c7:db:ed:06:d9:25:d0:66:96:92:80:e0:f4:f7:49:33:
12:89:16:e3:58:38:01:fc:b9:79:57:38:8e:75:82:fd:5f:49:
69:19:a1:1f:89:66:5e:13:c6:85:71:c5:c6:6b:fe:a8:5a:f7:
4a:60:c8:18:c6:b7:cf:c1:75:ca:6d:e4:96:64:ab:8c:c2:b8:
0f:91:ab:d1:b8:85:12:b4:e4:8a:d3:32:9b:ab:2f:5b:8e:1a:
0c:3a:fa:c6:96:e1:94:bc:de:78:06:e0:e0:e5:4e:44:d7:43:
7e:7f:93:3f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 19:44:02 2026 by rpki-client