Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: zrTLwzyAPWkBYf2e96KcwGt+w3Vyz+1bgM52cUyzw/o=
Subject key identifier: 62:B6:46:38:98:BE:C2:65:8B:44:7A:6D:92:3D:02:10:56:E7:DE:DC
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 019E1C4794218A05449FEBCC8E25DB49EB36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 1450
Signing time: Tue 12 May 2026 13:01:53 +0000
Manifest this update: Tue 12 May 2026 13:01:53 +0000
Manifest next update: Wed 13 May 2026 13:01:53 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: vJcmm1cNgMqymOPQBPXq94Vm5kE2GHE77asfuJYbPZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 13:01:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:47:94:21:8a:05:44:9f:eb:cc:8e:25:db:49:eb:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: May 12 13:01:53 2026 GMT
Not After : May 13 13:01:53 2026 GMT
Subject: CN=62b6463898bec2658b447a6d923d021056e7dedc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:2d:3d:ce:06:3c:8f:29:a0:4d:6b:73:9d:a8:
47:c8:bf:7e:f7:f6:ca:89:fe:b7:e0:1a:5e:e7:aa:
43:3e:19:c1:f5:97:34:37:10:b0:a6:3b:53:68:86:
e7:ef:d3:bd:54:68:08:4a:4a:2f:17:ac:83:3b:e0:
e0:ee:c6:23:bc:62:68:78:78:52:25:7c:04:14:12:
bb:da:21:1e:02:4d:29:3e:ef:a5:f9:57:70:cb:1e:
63:21:e2:c2:29:87:dd:ab:ba:8b:b8:25:12:95:10:
e0:09:a0:f1:66:1e:f1:69:d9:e0:46:7e:30:9e:af:
39:34:34:56:16:8c:97:5b:bd:5a:a6:34:de:d2:08:
b9:cd:52:fd:5b:8c:7a:80:9b:fc:a1:f1:86:9e:93:
35:28:3c:01:6b:cf:a7:55:05:1f:22:55:b5:af:1e:
d3:49:c5:c2:f9:ed:12:ed:2d:54:3b:bf:fe:ee:1c:
98:0c:0f:f0:e1:74:08:98:8d:5a:23:a1:01:c5:1e:
30:6f:68:9a:30:85:4b:81:8e:74:b6:89:d7:53:41:
14:05:1b:82:79:6a:ff:24:45:78:e8:37:75:b5:15:
64:66:5f:27:51:10:a8:2c:f3:84:9d:de:77:99:d4:
bf:1e:1e:5a:13:e9:41:ff:7d:7c:39:b0:8d:e1:9c:
2c:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B6:46:38:98:BE:C2:65:8B:44:7A:6D:92:3D:02:10:56:E7:DE:DC
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:cd:00:01:a7:45:f0:2b:7f:c5:bb:c6:9a:1a:94:80:01:f8:
2e:02:c2:7a:e9:67:84:b6:77:77:f9:81:09:f3:37:64:7b:79:
3d:c0:7a:ae:66:96:4b:a2:97:50:6f:b0:25:e1:07:e4:cb:c4:
fe:ff:7c:57:0b:2f:50:95:46:9c:2d:ad:e4:15:27:5c:5a:d2:
cb:5c:c7:67:07:7d:49:03:5e:5d:05:77:fd:0b:a3:5d:06:e0:
67:d9:58:59:c9:e2:d4:9a:bc:a6:5c:2d:87:52:85:f6:91:ce:
9a:f8:6d:15:3a:b8:af:d9:fa:bd:3b:bc:1b:99:15:c0:ac:39:
75:4c:5e:9d:16:96:ad:80:fe:c0:48:72:57:6d:ad:79:9c:07:
63:d8:a5:0d:e7:99:e6:78:8a:94:f6:50:19:b6:3d:7c:1f:86:
fb:7f:02:e9:d7:67:81:04:bf:e1:f9:0a:cd:77:57:ab:c2:de:
0c:83:76:19:d3:78:79:4c:9a:24:98:6e:63:77:f9:1a:5a:cb:
31:49:89:48:f7:a0:5e:87:58:16:d2:55:79:40:65:62:1d:60:
5e:51:51:e0:01:41:1d:6f:59:4f:c4:b1:66:07:41:c5:7b:df:
23:0f:f0:82:ab:90:3a:1c:99:78:8e:68:26:41:6e:14:e2:2d:
df:7e:ef:56
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:23:25 2026 by rpki-client