Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
File: kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json)
Hash identifier: hnTkYNqc22MzI39zVhdbkklaqCprccqEBxZjYeXrkt8=
Subject key identifier: EA:50:D4:E8:6F:E3:75:6A:73:85:5F:72:6C:22:F7:1E:FB:E6:20:5B
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial: 019D9998DB9CF608451F5547CD4C8C8519A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 04:00:24 +0000
Manifest this update: Fri 17 Apr 2026 04:00:24 +0000
Manifest next update: Sat 18 Apr 2026 04:00:24 +0000
Files and hashes: 1: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: Y9iVyU8CVezFt/7nLW+5G+cEV0n5+QMSOCrdtI3GnhA=)
2: qv3Ej32YD_b_UD9Nd2LLu7Onshs.roa (hash: QDsiGpgCL1OjBF1UVwY4OIbEFPuPDLsm5/b5USJqJRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 04:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:98:db:9c:f6:08:45:1f:55:47:cd:4c:8c:85:19:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Validity
Not Before: Apr 17 04:00:24 2026 GMT
Not After : Apr 18 04:00:24 2026 GMT
Subject: CN=ea50d4e86fe3756a73855f726c22f71efbe6205b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:d9:f8:6d:38:85:2a:3e:58:6b:00:d0:3b:12:
f2:db:3b:c1:84:59:0a:e4:ff:74:03:f7:a0:98:08:
39:e1:08:a9:35:dc:ae:52:e4:20:a5:84:11:df:77:
3d:4a:30:d0:b1:f0:0f:e7:fb:6e:7a:8f:d5:4f:33:
3f:d2:cb:6c:df:31:06:d5:45:14:8f:20:1a:5b:10:
ac:94:d1:60:7a:e6:c4:ed:2b:63:aa:78:91:fb:31:
e4:ae:08:85:28:18:19:fe:96:0b:40:64:17:86:6e:
4c:d8:9d:22:19:ac:1d:5d:09:86:20:5e:d6:a7:56:
3e:36:aa:cf:c1:ee:c3:7f:91:bf:2a:0d:e0:54:f8:
80:6f:5e:aa:b4:3a:fa:b8:dc:b4:9e:ef:8d:17:46:
bc:8d:af:f4:e9:ea:bf:a9:75:48:23:89:ad:ea:06:
b5:7f:a9:10:f7:2f:b9:ff:6e:71:d3:90:2e:9f:c9:
43:7e:54:40:7f:00:d2:3e:c2:e3:b8:00:97:ea:d9:
0c:53:44:fd:a6:66:20:17:0d:28:54:cf:8a:bd:8d:
5d:6a:fd:3c:d1:eb:81:fc:70:72:6b:7d:74:d5:91:
75:2f:5d:b9:4a:92:89:c6:7b:6f:2d:63:d0:8e:04:
d5:25:4b:9e:8e:13:e2:4a:af:f9:e6:9e:6f:76:69:
f9:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:50:D4:E8:6F:E3:75:6A:73:85:5F:72:6C:22:F7:1E:FB:E6:20:5B
X509v3 Authority Key Identifier:
keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:fe:b2:2b:d4:5e:2d:26:96:62:74:31:d5:0b:04:df:a7:09:
01:71:18:84:b7:da:41:55:40:79:6f:fc:c7:9c:4a:b2:2c:47:
b0:4d:de:0a:48:df:9d:f1:23:e2:22:46:8e:4d:b1:75:c9:82:
bd:61:ae:d4:1b:2e:27:89:ec:b3:26:5f:0e:14:8a:bd:5f:09:
b3:88:a3:8e:0a:dd:c7:ea:dc:7a:4f:4e:8d:29:64:8a:e7:3a:
ee:42:a6:61:09:9f:51:9f:01:0c:6f:1d:12:7a:c9:40:55:d7:
8d:d4:a1:96:f9:64:c2:5a:20:a9:af:cb:12:13:b5:b5:5e:58:
56:c0:f1:c6:c6:e9:d2:76:41:1e:bd:6e:ec:7f:d1:b0:83:2e:
39:10:e3:fb:28:dc:9e:67:50:bf:56:a0:82:12:7b:dc:b6:d5:
82:ec:d4:b7:be:ce:01:56:30:6b:b3:47:22:bb:f7:68:2c:1e:
14:9a:35:1d:cb:e2:52:5c:40:ec:67:c6:fd:28:34:30:ac:8c:
6c:d8:9a:8e:49:54:13:6a:ac:9e:8c:93:91:71:25:f4:4f:53:
b2:f1:ac:e6:eb:30:c8:f9:3a:dc:d9:2a:69:9c:75:18:2e:58:
b2:7a:6f:ac:52:0b:6d:9f:53:60:45:7e:f7:19:47:c9:83:a4:
13:6d:f6:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 13:06:12 2026 by rpki-client