Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
File: 0kvL9emk_kMp8iPBFFBykFOPnMI.mft (raw, json)
Hash identifier: Dwn1BoqrU3OTl0/dwBGZq5nb7+0rqeMLr0RIsYgDysU=
Subject key identifier: 68:B2:75:53:D5:4D:0F:EB:2B:8D:16:61:C2:F4:B2:33:EB:D4:19:8A
Authority key identifier: D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
Certificate issuer: /CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Certificate serial: 019D27048E41809F03D6F4C1A11DE022F893
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
Manifest number: 13D1
Signing time: Wed 25 Mar 2026 22:01:43 +0000
Manifest this update: Wed 25 Mar 2026 22:01:43 +0000
Manifest next update: Thu 26 Mar 2026 22:01:43 +0000
Files and hashes: 1: 0kvL9emk_kMp8iPBFFBykFOPnMI.crl (hash: 0cuUX70qTfCIEIQDk6Oy9iozO4oaFaWFfril+Ojo0iQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:8e:41:80:9f:03:d6:f4:c1:a1:1d:e0:22:f8:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24bcbf5e9a4fe4329f223c114507290538f9cc2
Validity
Not Before: Mar 25 22:01:43 2026 GMT
Not After : Mar 26 22:01:43 2026 GMT
Subject: CN=68b27553d54d0feb2b8d1661c2f4b233ebd4198a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:5c:96:3b:ab:67:bc:e7:1f:7d:d8:2a:b3:a3:
ac:4a:d2:9a:60:99:80:78:30:04:aa:10:59:29:37:
0e:0b:2b:c4:fb:f8:05:0a:e6:08:25:b9:f5:65:f0:
4f:23:fb:5f:8a:0c:b2:07:78:09:fa:a8:f5:92:6a:
2b:4a:c4:f6:ab:85:9b:a6:18:33:cd:23:ee:5e:67:
93:35:3b:82:20:04:f2:4e:e2:1c:09:86:2d:73:5c:
a3:70:4e:fc:d0:02:ce:04:c0:df:34:fd:99:1f:ba:
ef:35:aa:2e:e6:b5:a4:57:ea:7a:0d:0e:b0:2d:69:
e9:97:38:2f:a3:4c:d5:84:63:fd:11:48:93:6c:31:
c1:6b:48:73:4f:a3:dc:7f:ba:c1:23:80:8d:06:56:
17:7e:2a:2f:85:8e:9c:31:fb:da:c1:39:88:bb:1e:
5a:7e:7b:08:e9:00:03:63:a7:41:7f:59:16:af:c2:
9e:0d:61:99:b4:2e:8b:24:d6:bf:fb:42:8f:0b:f9:
7e:4d:90:cc:d9:10:70:6a:21:9e:76:6f:95:37:59:
51:91:29:4d:09:e8:68:87:ba:cd:e5:0e:82:cd:ed:
54:1b:81:e5:27:ab:6e:84:31:fc:4c:71:f9:d0:32:
b0:88:6f:d8:03:70:1b:6f:72:40:1b:30:a5:3d:ff:
e0:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:B2:75:53:D5:4D:0F:EB:2B:8D:16:61:C2:F4:B2:33:EB:D4:19:8A
X509v3 Authority Key Identifier:
keyid:D2:4B:CB:F5:E9:A4:FE:43:29:F2:23:C1:14:50:72:90:53:8F:9C:C2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kvL9emk_kMp8iPBFFBykFOPnMI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/bc41a4-fc91-496f-a225-2e6e5e5f5d9b/1/0kvL9emk_kMp8iPBFFBykFOPnMI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:3c:57:00:48:a8:e5:44:72:ef:47:80:e6:8a:94:67:64:a3:
88:f5:4f:91:bd:4c:20:7f:03:12:9f:c1:1f:c1:46:41:36:23:
22:45:14:0e:0c:58:ee:c2:e7:29:08:e4:6f:1f:8a:25:b5:a9:
06:f3:ca:d4:09:a5:21:2e:ea:6d:cf:6b:d9:d1:f3:bb:bc:e8:
ca:ad:85:f2:32:e1:65:e2:4f:16:57:b1:ff:93:0c:3d:2a:d3:
89:2b:bc:ee:9a:1f:66:82:01:1e:1c:61:ff:2f:48:37:bc:5b:
49:aa:db:46:52:0d:6a:c1:9e:0d:11:18:7c:bd:1e:a1:92:62:
ae:ea:5e:1a:0a:7e:71:c4:df:44:e8:7b:bf:2e:d3:5f:a1:87:
d2:3c:08:16:5c:0d:02:cf:cc:1d:18:2e:2a:e0:c7:f4:de:c9:
ce:08:c3:53:3d:cf:8f:89:b8:8d:bf:9a:aa:c2:a0:53:6e:f8:
02:d6:39:5b:84:f5:06:77:2b:86:9b:18:b3:82:fe:c1:63:49:
76:be:6d:da:1b:dd:b5:2f:92:fe:3f:e5:b1:83:cd:cd:3a:9b:
01:c4:ea:44:dd:4e:da:93:81:0e:cd:ec:25:2b:83:0b:14:4b:
de:e3:d7:19:7a:3d:90:4e:0a:85:28:af:9a:51:4d:ed:e2:3d:
78:ce:8f:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:44:55 2026 by rpki-client