Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
File: KxlTcbTPcLiOdz4bgHyyORYyOFs.mft (raw, json)
Hash identifier: 9lMGY7a/gEKkoKow8anMuaSr4VQ0o5Q1n0o+aVablE4=
Subject key identifier: FB:27:4B:C2:CD:DE:AD:79:3A:42:F6:79:2A:59:8A:F3:3E:7A:3F:F7
Authority key identifier: 2B:19:53:71:B4:CF:70:B8:8E:77:3E:1B:80:7C:B2:39:16:32:38:5B
Certificate issuer: /CN=2b195371b4cf70b88e773e1b807cb2391632385b
Certificate serial: 019DA4F89E578CE0C43E5842C23733CA6871
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
Manifest number: 01A9
Signing time: Sun 19 Apr 2026 09:00:50 +0000
Manifest this update: Sun 19 Apr 2026 09:00:50 +0000
Manifest next update: Mon 20 Apr 2026 09:00:50 +0000
Files and hashes: 1: KxlTcbTPcLiOdz4bgHyyORYyOFs.crl (hash: 8ScSa1kBwOk8xJGefpHgDpcJwfwZh9n9uvMK7jLKNHI=)
2: zoysAnJ75pvxhA2S0m-6Zp0HLpE.roa (hash: kFXM7sahaxaI4pXMltbaQts/ViuuZYbtivX7x0d9V2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:f8:9e:57:8c:e0:c4:3e:58:42:c2:37:33:ca:68:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b195371b4cf70b88e773e1b807cb2391632385b
Validity
Not Before: Apr 19 09:00:50 2026 GMT
Not After : Apr 20 09:00:50 2026 GMT
Subject: CN=fb274bc2cddead793a42f6792a598af33e7a3ff7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:69:90:99:5a:36:e1:24:91:4a:43:d7:20:df:
9a:bc:53:6f:d7:4a:5d:85:54:78:21:14:2d:81:30:
7b:ed:d1:f7:e6:61:9b:09:2a:42:8b:4d:b9:ad:82:
8a:bd:5c:1b:d4:2d:ee:f8:89:30:b8:8c:41:fd:92:
31:e7:9b:6f:ce:29:39:c2:5b:d5:c5:93:a6:42:69:
1e:51:2f:8c:1f:ba:9e:2f:31:9a:86:96:fb:df:a0:
98:f3:d4:3f:8c:19:69:9d:1f:12:4e:a9:9a:8d:33:
6e:cd:2d:79:94:51:33:39:2c:b8:5a:9a:e9:22:82:
8c:72:81:1f:39:b8:e0:4b:cf:7f:f4:f3:d4:48:e8:
45:14:4e:92:4f:f0:ae:59:66:2f:a9:d9:ee:0f:63:
a6:d6:d1:0f:19:b8:c6:dc:da:1e:79:40:e1:4b:fa:
e5:80:04:c5:63:ed:82:97:32:56:3c:87:22:54:4b:
8d:a0:3d:b4:9c:4c:ad:71:d2:37:97:70:f5:08:49:
96:f5:db:8b:7e:e4:4a:3f:29:7a:f7:70:3e:5a:89:
24:bd:b3:e7:d4:62:8e:43:bf:ce:5c:f3:ce:55:29:
86:03:1f:8b:70:77:11:93:93:d5:6e:53:9b:1c:53:
03:b0:34:87:72:8e:f3:15:e4:90:b1:58:d0:18:fc:
9a:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:27:4B:C2:CD:DE:AD:79:3A:42:F6:79:2A:59:8A:F3:3E:7A:3F:F7
X509v3 Authority Key Identifier:
keyid:2B:19:53:71:B4:CF:70:B8:8E:77:3E:1B:80:7C:B2:39:16:32:38:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
50:b1:17:1c:f6:07:13:c5:fe:d1:df:a4:8c:b1:e7:7b:32:00:
9f:9d:e3:00:dd:44:68:49:0a:d5:41:d9:22:a6:71:b5:8c:1a:
88:6f:55:dc:f6:f4:43:dc:d4:91:8f:cf:b2:f8:60:01:ad:dd:
54:0e:34:01:55:aa:db:5c:a3:8d:1e:ff:39:e5:4a:80:14:74:
cc:ad:e6:0f:6c:ea:b8:37:1e:0a:d4:46:a2:5e:f6:82:ca:43:
cc:f8:38:eb:7d:8b:f0:6d:5b:30:28:89:ef:89:a7:b7:f5:03:
59:1b:49:8d:c9:84:35:1f:3f:75:ff:ec:55:ae:db:39:94:b3:
14:b0:12:a0:5a:ad:4d:8c:1e:06:59:3a:82:2d:5e:e7:ec:5d:
a3:29:2c:cf:c9:44:20:29:6b:69:79:1a:5c:ad:4a:e5:e6:ea:
36:4c:57:c8:a8:26:60:43:d2:ca:f8:c9:1c:ef:40:38:e2:24:
02:df:07:b8:12:4f:f9:d5:eb:83:7c:fa:54:8f:b8:72:6c:6e:
57:13:2e:24:d7:7f:4d:73:c9:c1:66:fc:79:9e:02:7b:71:0d:
4b:2d:8a:62:84:05:36:4a:fc:ed:af:45:01:fc:55:36:8b:b4:
73:8a:52:3b:49:7d:a8:b2:2d:c4:e1:1a:25:75:2c:b5:d9:73:
21:95:81:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:50:36 2026 by rpki-client