Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
File: KL8ecjI3QqxNgTarbI6F33ujfus.mft (raw, json)
Hash identifier: 4qMpTZ2Pr6oI/yik4TeonOfRylyIq5iZ8RclM7VWMOs=
Subject key identifier: 13:2E:48:FF:06:D7:34:1D:E7:B6:3A:E8:74:45:57:64:8D:5E:81:EF
Authority key identifier: 28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
Certificate issuer: /CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Certificate serial: 019E20FF58552DDCC8030B7EAFFE559A67F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
Manifest number: 190A
Signing time: Wed 13 May 2026 11:01:05 +0000
Manifest this update: Wed 13 May 2026 11:01:05 +0000
Manifest next update: Thu 14 May 2026 11:01:05 +0000
Files and hashes: 1: JYwSyuAchjIXKqx-0j7gKo4P2VU.roa (hash: Ont+m3ZNydrhvmwI0GsT3aYVRki6QYVMqq1ZQxnAm0g=)
2: KL8ecjI3QqxNgTarbI6F33ujfus.crl (hash: +SS32BDK5wV5Y79zCF0HppO/z9wh+0M8dmHnrxc3V9s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:58:55:2d:dc:c8:03:0b:7e:af:fe:55:9a:67:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bf1e72323742ac4d8136ab6c8e85df7ba37eeb
Validity
Not Before: May 13 11:01:05 2026 GMT
Not After : May 14 11:01:05 2026 GMT
Subject: CN=132e48ff06d7341de7b63ae8744557648d5e81ef
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:98:ef:4e:8f:10:96:f1:cc:ff:9a:eb:90:0b:
0c:e7:0f:5c:2c:99:aa:d5:1c:40:8f:5c:e0:ae:6b:
35:0f:73:58:22:47:ff:43:00:c4:0f:17:58:2f:6d:
d8:2a:33:21:c0:b1:b8:b0:62:e1:2b:ad:11:f6:bd:
47:ba:0e:38:49:9d:17:51:43:17:43:0d:9b:a5:5a:
54:34:7f:bd:72:68:37:7b:8f:d5:0c:4b:4e:12:42:
77:f2:e5:31:aa:ae:4b:f1:f3:5a:6a:ee:7d:3c:59:
22:d3:fb:29:c0:2c:a7:4d:78:c2:74:cd:29:35:58:
d6:b9:93:39:35:f1:d2:5b:48:dc:cb:04:70:9f:bc:
73:a1:02:00:93:04:c8:cf:48:46:58:ef:5f:7a:57:
93:74:cd:04:28:98:5f:5c:5d:5d:55:ba:ca:ed:0b:
7c:af:f6:1f:50:34:da:f0:25:98:ed:09:54:19:7c:
9a:e5:b3:d7:c9:f5:34:26:f4:ff:2d:01:dc:5c:d2:
80:91:75:ec:23:d0:f6:20:53:5d:f1:57:3f:d8:f1:
2d:5c:cd:3f:46:36:8f:d1:e0:58:d5:4a:9b:49:47:
3b:0d:92:5d:4d:36:e1:ef:65:9b:31:08:df:f6:13:
71:3a:6e:33:9b:e4:e5:ce:ec:9a:99:45:bb:c8:8e:
67:97
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:2E:48:FF:06:D7:34:1D:E7:B6:3A:E8:74:45:57:64:8D:5E:81:EF
X509v3 Authority Key Identifier:
keyid:28:BF:1E:72:32:37:42:AC:4D:81:36:AB:6C:8E:85:DF:7B:A3:7E:EB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL8ecjI3QqxNgTarbI6F33ujfus.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/25/ba6df7-f325-4184-a54a-0c481f0ad20e/1/KL8ecjI3QqxNgTarbI6F33ujfus.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:2f:f4:67:b0:53:36:53:5a:0c:45:d7:5a:6b:17:15:89:4f:
65:2f:e2:fd:45:35:97:03:1f:ba:b0:22:a7:32:09:32:5a:07:
05:d2:a4:27:74:42:c7:60:d7:a3:63:fa:cb:20:5d:d1:7e:67:
4e:35:28:b0:ea:9e:27:5e:e1:b1:9c:c8:6d:f1:45:1c:56:85:
9a:46:ad:aa:a3:48:8b:ee:35:45:9b:3f:fc:87:54:41:2b:f2:
d5:6f:50:92:a9:47:ff:b6:7b:0c:47:20:9f:85:c5:aa:16:41:
68:c1:78:2b:ef:bf:34:ce:51:c5:a0:08:10:f1:d8:29:75:dc:
fd:aa:b7:d5:7f:8f:8f:59:6f:f2:c8:1e:1a:a3:40:50:6d:76:
d3:65:99:05:9b:f0:ca:55:c8:10:14:96:e1:c8:aa:b5:57:8c:
c0:a1:f7:49:0d:a1:f4:86:8e:12:3b:c3:1d:6f:ab:fe:9a:f8:
09:4c:81:34:fb:62:d1:e1:d5:f1:c2:5c:eb:9b:30:c6:1e:6f:
b2:d3:39:ad:34:0c:f0:3a:e0:d4:cd:92:8a:1a:99:4e:fb:73:
dc:e5:38:51:c6:90:1e:0d:66:7f:f7:67:09:36:cc:c9:0a:03:
a9:fb:e8:78:1b:ef:1d:1e:d7:f7:6e:e1:b9:ba:3b:08:30:88:
c8:ad:fd:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 14:38:33 2026 by rpki-client