Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
File: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft (raw, json)
Hash identifier: NQx5MfBektIauCwEtuKJGOF+yGTZ5Futu6h/mASb03k=
Subject key identifier: DE:D8:60:21:FC:22:B8:08:F7:68:FB:AE:6F:26:8E:1D:DF:B5:F5:E7
Authority key identifier: 90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
Certificate issuer: /CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Certificate serial: 019CAD5A2313A9410133C3CF53D0324771DC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
Manifest number: 0997
Signing time: Mon 02 Mar 2026 07:01:31 +0000
Manifest this update: Mon 02 Mar 2026 07:01:31 +0000
Manifest next update: Tue 03 Mar 2026 07:01:31 +0000
Files and hashes: 1: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl (hash: 1h1SzfVbLgUAihQF6r+8z6I+6l2IbbSYBbP3lE283X0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:5a:23:13:a9:41:01:33:c3:cf:53:d0:32:47:71:dc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Validity
Not Before: Mar 2 07:01:31 2026 GMT
Not After : Mar 3 07:01:31 2026 GMT
Subject: CN=ded86021fc22b808f768fbae6f268e1ddfb5f5e7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e7:8c:f6:9a:6f:a3:56:02:d8:a8:17:c8:ea:
94:29:7a:9e:b2:17:cf:2f:ec:e1:e3:7c:f8:29:43:
cd:3b:f0:d7:de:b0:7e:d8:30:59:16:8c:a0:fb:4b:
a5:29:8f:ae:8c:aa:b3:f2:65:20:5a:50:3b:8d:41:
95:bc:fb:49:96:9d:46:04:36:c9:7a:3f:ec:f3:6c:
b7:d4:a1:93:06:19:51:c6:66:7a:5d:6d:bc:7c:84:
a4:96:9a:a0:42:a0:2f:fe:ba:ee:a7:39:a7:a0:2a:
b8:0e:12:29:6d:06:5c:a4:32:8d:cc:ec:a3:3f:da:
36:82:f9:6d:a6:56:80:ea:f5:df:1c:5c:dd:3f:b0:
59:b0:64:4f:94:19:fb:90:54:7f:05:dc:78:0c:08:
8e:34:5f:d0:d0:1b:d0:71:61:31:9e:a6:67:91:5c:
c6:d7:4d:a6:35:08:fc:48:0f:24:46:19:0c:ce:be:
9c:68:18:2c:e6:60:7d:dc:e4:80:17:3b:41:4b:3c:
1f:83:8f:10:f6:a2:ed:2a:68:6e:0f:05:75:66:d0:
16:c1:9e:22:7b:5d:a9:d6:d4:f1:25:e7:e0:06:59:
10:e9:71:2c:86:aa:d5:29:5a:80:86:05:93:36:d5:
d4:0f:f9:05:d1:5b:34:a4:c8:c8:e5:71:72:04:da:
5b:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:D8:60:21:FC:22:B8:08:F7:68:FB:AE:6F:26:8E:1D:DF:B5:F5:E7
X509v3 Authority Key Identifier:
keyid:90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:6a:49:37:37:c8:88:18:ed:20:a5:c7:f9:5a:f3:1c:91:65:
af:03:de:b7:a0:6c:54:8e:d9:97:96:79:87:56:ef:49:d0:da:
e8:66:95:9e:39:e7:55:d9:4d:0b:3b:b8:d5:eb:71:6a:b1:a6:
e7:6a:80:f8:71:16:95:ed:2e:3d:82:44:ca:aa:e1:85:d0:ee:
63:b2:24:ef:ac:89:7e:8b:ee:f7:27:5a:00:8f:f5:a1:ab:b3:
bd:9b:dd:8f:be:f9:cd:03:b4:db:80:24:99:0e:39:50:d7:87:
05:06:05:e1:3d:8f:a9:b3:3e:40:b4:84:0c:ca:9f:9a:74:6e:
07:d5:b9:12:ca:8f:67:c4:87:9c:d9:93:46:2a:79:7f:8f:3e:
4a:c0:67:5f:e2:dd:e5:b6:d9:18:f1:bf:ba:c1:01:cd:20:f5:
4a:e3:ba:63:75:c8:2a:6b:8f:33:26:e0:10:b2:58:8d:4d:ce:
91:f6:79:46:f7:bb:d2:fc:b9:58:42:ec:cb:7d:d8:ab:07:46:
b8:19:7f:54:b2:8c:ce:95:f4:63:93:70:25:4b:a4:27:bd:ab:
56:33:a6:d5:19:2e:ba:75:2b:44:8d:2d:94:da:f4:61:83:bd:
79:50:77:77:05:a0:f5:a9:e8:70:43:40:6a:d4:6f:b5:65:b1:
48:55:ad:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 09:04:51 2026 by rpki-client