Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
File: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft (raw, json)
Hash identifier: wb/s3S/gMeY+6mlquOiC7BhCLeP+4UWsEGjdRc4tWfs=
Subject key identifier: 34:4A:3E:E9:BC:96:17:DE:97:9A:10:05:1E:3C:0E:E4:39:71:57:BF
Authority key identifier: 90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
Certificate issuer: /CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Certificate serial: 019DA29D041BC0A6A3E55A93661809A8B8F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
Manifest number: 0A16
Signing time: Sat 18 Apr 2026 22:01:32 +0000
Manifest this update: Sat 18 Apr 2026 22:01:32 +0000
Manifest next update: Sun 19 Apr 2026 22:01:32 +0000
Files and hashes: 1: kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl (hash: aB0sBMeDtNGVD2OTHvDqoV+PC43Y0nV9TW4HQAZSpsg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 22:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a2:9d:04:1b:c0:a6:a3:e5:5a:93:66:18:09:a8:b8:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f5928c752ad9a08cfeb1b88f463c3c0dd2e85d
Validity
Not Before: Apr 18 22:01:32 2026 GMT
Not After : Apr 19 22:01:32 2026 GMT
Subject: CN=344a3ee9bc9617de979a10051e3c0ee4397157bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:16:3e:5a:d6:f9:4c:6c:1b:61:91:6f:36:cb:
6f:d6:69:0d:c4:da:e9:d2:c5:13:5c:0b:92:cb:4b:
bc:3c:a2:d1:3e:64:16:91:00:99:f3:0e:c2:2a:bc:
5c:83:08:cc:f5:0f:b2:35:f8:8b:c0:fa:a9:ea:15:
00:b9:4e:e9:ad:31:1e:5c:48:71:0a:2f:08:e2:98:
6b:cc:83:d7:0c:b1:50:33:d2:ff:9c:85:b5:ad:6f:
7f:44:ae:73:f1:79:fe:e5:7f:30:55:d7:40:2e:77:
01:f1:a5:f4:e4:2b:f7:88:03:1e:79:69:f5:7e:bd:
2c:9a:7b:8a:f9:35:4e:f5:ac:b5:63:ae:56:40:a7:
ca:84:5e:47:d6:86:81:67:d3:2b:b0:07:22:78:a8:
a7:3c:23:d0:7d:d4:4d:08:03:8d:c8:f1:29:8a:09:
52:47:59:eb:f6:ca:ae:c9:5c:eb:a6:f4:bd:51:53:
c5:05:f2:ce:8d:af:cc:36:f2:ba:00:68:a3:32:ac:
8b:4b:c9:fd:43:c2:4f:94:7c:0a:7c:ac:ff:f1:8b:
69:a2:79:00:5a:90:58:76:87:8a:f2:f1:34:eb:a9:
3a:01:0d:54:f4:c1:71:73:8e:bd:00:72:74:32:83:
52:a9:fa:a6:a0:06:e3:17:c1:1d:d9:a7:99:41:74:
82:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:4A:3E:E9:BC:96:17:DE:97:9A:10:05:1E:3C:0E:E4:39:71:57:BF
X509v3 Authority Key Identifier:
keyid:90:F5:92:8C:75:2A:D9:A0:8C:FE:B1:B8:8F:46:3C:3C:0D:D2:E8:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/31a20a-77d0-4ac8-a09f-04a6cd816a03/1/kPWSjHUq2aCM_rG4j0Y8PA3S6F0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:bc:d0:b0:90:50:8d:fc:bc:5f:da:48:30:03:d1:a6:07:fb:
30:34:88:29:57:92:8b:68:4d:c1:8d:3d:38:c0:14:0a:12:ac:
2b:0f:f2:0c:d1:40:b1:ff:32:15:2d:20:92:b6:98:78:15:8b:
c3:d3:ac:09:c2:c2:5e:54:32:ab:5f:f2:05:38:fe:46:38:b3:
da:b0:20:05:cb:ed:35:53:40:5e:e9:5e:69:0b:69:19:98:11:
f8:91:52:79:f8:0a:53:a0:d9:d4:42:be:c6:de:ca:48:00:53:
a1:ce:52:98:03:3b:b9:02:29:04:c7:8d:1b:82:04:3d:80:bf:
68:d4:01:45:83:93:c8:4e:29:18:55:a4:2e:9b:b8:3c:88:9a:
ed:c7:8d:85:a9:70:97:32:09:9f:66:03:98:b0:bc:5a:d2:08:
af:aa:d0:58:ef:0c:26:a6:bc:2a:43:dc:86:87:d3:38:49:79:
38:3b:e9:4e:25:fd:81:c0:98:e1:46:ea:a9:95:d1:79:6a:79:
20:cc:60:0e:c7:98:6a:fb:3f:17:63:ef:e2:74:53:d4:ba:00:
39:b7:f6:0c:b4:8a:ea:ac:bd:99:df:7c:45:de:56:0f:a4:9c:
2e:89:38:7e:bf:17:9b:96:be:e0:92:a3:2a:dd:6b:e4:50:25:
bf:60:61:f4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:29:41 2026 by rpki-client