Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json)
Hash identifier: OokjBi7xXok6fL1a+rdU/SdlsINsu9xSmik3KwwXcQk=
Subject key identifier: 16:8F:22:63:20:7C:22:18:95:8F:83:06:AC:9F:78:1E:0C:D3:F5:BC
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 019E2023E83C1AD36D125279C5FE7452F7DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
Manifest number: 0FB0
Signing time: Wed 13 May 2026 07:01:24 +0000
Manifest this update: Wed 13 May 2026 07:01:24 +0000
Manifest next update: Thu 14 May 2026 07:01:24 +0000
Files and hashes: 1: Hl-oGjMEXSHh22tv7GvQWauR6Ls.roa (hash: k0kjDMHyxNG6XHvsH8YWl0QTbYb+WeHWx5ruPE+qWhs=)
2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: +kbsxSRHhhiyU/MgxZTv1nzu0OBzLVPAxUn3dr/zrNg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 07:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:23:e8:3c:1a:d3:6d:12:52:79:c5:fe:74:52:f7:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: May 13 07:01:24 2026 GMT
Not After : May 14 07:01:24 2026 GMT
Subject: CN=168f2263207c2218958f8306ac9f781e0cd3f5bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:4e:7b:37:07:f2:02:26:0d:a6:2f:2a:65:cd:
23:a1:15:bd:d1:ae:a2:be:d7:49:f9:ea:74:be:2f:
33:8c:06:9f:e2:1c:34:1d:27:ca:a6:a7:79:fd:43:
c7:31:8e:6c:e9:db:9e:2e:90:60:eb:c9:45:a9:15:
77:a2:ca:59:a4:b9:2a:6b:45:8d:c2:82:14:17:47:
36:12:d6:0c:16:51:59:10:a5:98:f3:c7:d3:90:44:
d0:93:ba:0f:67:90:bf:cb:8f:3d:3b:b9:40:c4:5f:
de:8d:90:fe:11:80:8b:b3:11:e2:8e:e3:9d:d6:7c:
e5:c5:47:fc:ff:77:aa:e3:ea:06:dd:04:e4:e4:d1:
7b:ad:68:6e:7b:ce:40:e3:a1:94:c5:75:fd:1e:01:
71:2d:ed:69:0d:1a:d5:fb:ec:10:88:7e:43:f6:9d:
96:36:4a:d6:5c:53:17:58:55:ea:b7:fe:d1:a2:3d:
0a:62:69:cc:5e:e3:2d:f9:9f:28:fd:39:83:93:ff:
b8:af:77:55:8a:2f:69:fd:88:6b:24:9b:ab:99:2a:
63:5d:21:ee:f9:86:f2:97:ae:37:a8:a5:a9:95:59:
46:85:dd:bc:fe:9e:9b:01:bb:f7:0d:b8:36:68:c8:
f0:b2:2b:42:42:47:db:0e:5e:e1:a2:23:24:a3:3f:
49:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:8F:22:63:20:7C:22:18:95:8F:83:06:AC:9F:78:1E:0C:D3:F5:BC
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:f8:a3:5e:97:b7:fa:7b:93:b3:97:bf:a3:11:e4:12:e1:e1:
30:a2:41:2e:09:f9:ce:e7:16:79:88:58:69:c1:1b:bc:b4:1a:
93:d7:4f:04:60:28:e8:7c:42:0e:5b:21:dc:15:9b:6e:1c:f5:
d2:4c:80:73:5e:d7:a7:c0:e8:1b:86:63:13:0d:c3:bb:23:de:
44:8e:26:20:7c:37:b4:49:11:f9:a3:24:75:84:f3:62:0d:45:
34:17:da:ed:04:c2:0a:64:ae:9b:9f:70:34:0a:67:01:05:fb:
26:bb:cf:0b:14:d0:c4:91:d5:fa:f0:4d:6c:b7:43:6e:42:41:
5f:e8:d8:a3:fe:f9:5c:45:af:6d:50:37:c4:28:a5:d8:24:8f:
38:62:f7:c3:9d:69:c8:9f:09:31:90:d8:c5:25:a3:ac:81:52:
41:d1:02:08:af:6e:c5:af:70:48:d9:14:8c:0d:39:04:0e:10:
5a:e9:a3:06:bd:3c:9a:43:cf:a1:06:27:b8:5c:c5:db:41:73:
b5:19:dd:ab:0c:cd:70:89:da:c7:62:f1:92:e4:17:8a:66:69:
df:f5:4e:1b:35:13:b1:31:28:0b:27:9a:68:1c:cc:47:8a:81:
db:53:19:b9:8f:a6:e6:7d:a4:c4:a0:8b:ab:73:71:48:09:15:
5a:2c:8c:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:34:36 2026 by rpki-client