Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
File: KxlTcbTPcLiOdz4bgHyyORYyOFs.mft (raw, json)
Hash identifier: jMlmdUe/IBRgxD+/BRDqLUP8SdTuNguqvIs2pcGnfoo=
Subject key identifier: 9C:24:7F:1A:87:FF:80:59:71:4B:D0:F9:5F:61:2E:8B:E7:94:BE:54
Authority key identifier: 2B:19:53:71:B4:CF:70:B8:8E:77:3E:1B:80:7C:B2:39:16:32:38:5B
Certificate issuer: /CN=2b195371b4cf70b88e773e1b807cb2391632385b
Certificate serial: 019EC0DB5541378F1C3710CD9305008A132B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
Manifest number: 023C
Signing time: Sat 13 Jun 2026 12:00:59 +0000
Manifest this update: Sat 13 Jun 2026 12:00:59 +0000
Manifest next update: Sun 14 Jun 2026 12:00:59 +0000
Files and hashes: 1: KxlTcbTPcLiOdz4bgHyyORYyOFs.crl (hash: gwtbD7xewKavTddDCtcEBokU81tZYUmqY2MdarNS/o4=)
2: zoysAnJ75pvxhA2S0m-6Zp0HLpE.roa (hash: kFXM7sahaxaI4pXMltbaQts/ViuuZYbtivX7x0d9V2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:55:41:37:8f:1c:37:10:cd:93:05:00:8a:13:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b195371b4cf70b88e773e1b807cb2391632385b
Validity
Not Before: Jun 13 12:00:59 2026 GMT
Not After : Jun 14 12:00:59 2026 GMT
Subject: CN=9c247f1a87ff8059714bd0f95f612e8be794be54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:ee:2e:8d:65:d6:a3:9b:47:d9:02:66:17:c7:
f5:c3:27:83:b2:2a:7f:e0:3b:94:91:a7:21:39:04:
04:c5:96:57:30:47:66:ad:3b:f2:46:97:9e:de:ad:
56:db:5d:66:20:14:73:b3:44:4d:e6:c7:6d:2e:b7:
77:8f:e8:37:e7:8b:85:40:49:24:86:6e:18:80:eb:
ff:6b:cd:da:63:0a:12:3a:84:e1:12:6d:a6:b0:cf:
ef:53:1b:7c:01:ca:45:6f:bf:28:93:31:f6:b8:38:
c6:2e:39:ed:1f:42:98:52:c0:9a:25:b3:86:8f:04:
34:58:89:43:1b:19:ef:9b:5d:67:4f:e8:3a:38:83:
d0:94:77:78:c0:9c:42:cb:1c:04:65:51:05:44:df:
c8:1c:c9:ed:40:b2:76:8f:9a:89:8c:72:0e:df:b1:
ad:44:ba:73:ec:b7:f9:31:14:60:bc:3a:da:7e:57:
8a:78:46:58:da:b1:51:96:39:d2:1a:5e:c0:fd:6e:
86:35:49:53:83:c2:fe:fa:71:d3:c7:9e:9c:9a:46:
40:dc:52:be:ab:1a:a7:51:03:f7:31:db:22:7c:91:
40:fb:04:b9:cb:f1:ec:f1:0f:e0:1f:77:bc:a0:cc:
46:5f:b4:db:f0:d2:7e:0a:34:4e:6e:52:e4:ee:5d:
5e:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:24:7F:1A:87:FF:80:59:71:4B:D0:F9:5F:61:2E:8B:E7:94:BE:54
X509v3 Authority Key Identifier:
keyid:2B:19:53:71:B4:CF:70:B8:8E:77:3E:1B:80:7C:B2:39:16:32:38:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:01:27:c2:1c:70:04:1a:35:9f:e1:3f:c9:bd:c1:ad:5f:9e:
3f:4e:8f:55:b2:fa:a5:be:62:27:c8:92:f0:14:91:08:a2:06:
c4:62:c5:28:93:21:0e:2c:37:83:ec:cc:f8:66:17:a3:7d:2e:
1e:18:f9:a4:ef:81:16:cf:40:0c:d9:4b:ef:d0:9f:c7:7a:9c:
a4:57:52:87:83:fe:31:f1:2c:6d:d5:ad:f0:d8:9b:70:c9:af:
6f:f9:39:2d:45:ad:69:69:cc:99:be:e8:1c:7c:4d:73:94:72:
03:34:8e:bb:9e:61:24:15:4b:7d:79:82:70:40:da:55:fb:20:
65:fc:ee:70:ef:b5:4a:9f:3c:3c:d7:9a:b5:80:39:c7:8c:b9:
e0:c4:05:c8:77:39:c1:a3:68:b4:ee:56:4a:cc:5b:77:04:68:
bc:13:7c:f2:09:ce:9b:79:41:8b:54:52:af:fc:ef:34:03:5f:
33:e1:56:d0:af:8c:0f:ae:55:9a:5e:b5:ef:66:69:88:44:37:
90:4d:fc:7e:79:2b:76:ae:4e:83:52:2f:98:a3:d8:94:c0:b1:
bb:1e:2b:2d:02:8e:35:13:fe:a8:bd:e3:59:5c:31:7a:ae:3d:
02:e7:f2:75:d5:5e:5a:cf:5b:e3:07:5a:51:f9:56:eb:ca:85:
b2:0c:32:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 20:08:07 2026 by rpki-client