Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
File: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft (raw, json)
Hash identifier: TM7RyL956GHFAnO73vI+U6acKjrLQipgWK2N+UbxqB0=
Subject key identifier: F1:09:D9:F5:9A:C6:FD:C2:23:72:E9:66:12:CF:8D:20:D0:B5:28:33
Authority key identifier: 91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
Certificate issuer: /CN=91d338370e10627a4cd631e3fde186e194898c81
Certificate serial: 019D2AE14FA375F8C368353AFFBD8B51A77E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
Manifest number: 0E73
Signing time: Thu 26 Mar 2026 16:01:42 +0000
Manifest this update: Thu 26 Mar 2026 16:01:42 +0000
Manifest next update: Fri 27 Mar 2026 16:01:42 +0000
Files and hashes: 1: kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl (hash: fJOCyJrqMrb9EvKWCR8/QqMAgeOs4siz+QyHeGC9LE4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:e1:4f:a3:75:f8:c3:68:35:3a:ff:bd:8b:51:a7:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d338370e10627a4cd631e3fde186e194898c81
Validity
Not Before: Mar 26 16:01:42 2026 GMT
Not After : Mar 27 16:01:42 2026 GMT
Subject: CN=f109d9f59ac6fdc22372e96612cf8d20d0b52833
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:78:8b:df:0a:fa:ed:79:8d:9c:15:70:1e:30:
98:8d:6f:10:2e:91:1f:d2:49:6f:18:32:f2:30:b5:
ce:c5:fb:43:4f:74:30:87:33:84:c7:aa:51:3e:8e:
6b:a2:bb:dc:8c:73:4e:38:31:87:5f:98:e4:5e:05:
8a:d1:57:d7:9a:79:93:c0:5e:2b:b8:0a:4a:76:2a:
11:79:a1:56:1c:58:66:1e:11:3e:a9:a1:d9:bb:eb:
2d:03:dc:44:72:2e:74:34:61:68:82:7f:58:78:87:
31:e3:01:ec:2d:27:48:b8:c8:5e:34:2c:3a:33:37:
6f:7e:03:d0:3a:d0:32:c9:7c:09:84:0f:68:e3:7a:
8b:27:62:6c:90:5f:52:8f:4a:f2:04:9b:7a:fb:b9:
95:86:7b:c4:93:94:32:37:15:fb:2d:29:c0:67:b1:
ba:ed:f7:99:dc:5f:02:07:cd:95:55:b1:da:d7:fa:
83:64:64:1b:98:71:0d:6b:1b:cf:c7:8b:ac:ad:25:
4e:eb:4c:35:4a:d5:4a:eb:f8:80:6b:7d:c4:53:c6:
a0:9d:7f:31:a2:a5:0a:15:23:f3:cb:2c:11:7e:f2:
d4:ac:12:2b:6b:d6:b8:e0:ec:66:0a:ce:d4:3a:5a:
0f:31:92:22:64:fe:6e:d7:7d:0c:05:62:b0:ea:4d:
06:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:09:D9:F5:9A:C6:FD:C2:23:72:E9:66:12:CF:8D:20:D0:B5:28:33
X509v3 Authority Key Identifier:
keyid:91:D3:38:37:0E:10:62:7A:4C:D6:31:E3:FD:E1:86:E1:94:89:8C:81
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/990fda-5905-4e49-a630-15357cd5ece4/1/kdM4Nw4QYnpM1jHj_eGG4ZSJjIE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:7e:5e:a8:19:fa:bf:28:13:c3:b1:cb:f4:d5:56:4c:6b:fc:
29:b5:dd:ed:50:56:79:7a:3d:e3:37:2a:86:c0:3a:89:af:96:
2c:45:82:19:93:f4:c1:e8:ab:66:ef:21:18:e9:0f:fd:b9:07:
ff:9d:f6:5f:a8:6f:e5:d7:8a:b5:b4:90:c8:a4:3d:5b:b5:60:
86:5a:c0:d2:e6:d1:64:88:11:f3:18:dd:f0:9e:da:f6:8f:83:
fa:66:4b:25:5f:8a:b2:3a:b2:87:f3:aa:f4:fc:16:fe:e7:52:
ca:47:7c:44:27:75:8a:60:8b:16:b3:26:12:10:18:f9:c1:d9:
98:3b:75:45:c6:fd:98:88:e2:30:e2:4a:70:44:e1:4d:cd:73:
c2:6c:42:b9:ef:d5:ef:d6:18:bc:d3:53:1e:9a:6d:b5:68:a6:
36:a2:c9:8e:25:5c:09:da:d0:5b:66:b4:4f:1d:61:6f:4f:dd:
6c:06:ef:a2:15:5d:b2:2b:15:68:21:e2:ef:03:b4:53:bb:b7:
4f:f5:a0:3e:c3:19:97:29:00:d3:e4:c8:47:c0:72:8d:28:aa:
9a:9b:59:28:a0:0d:d0:97:6f:fc:27:1b:a6:6b:09:ca:f5:f1:
23:09:b9:07:cb:a9:7b:b2:94:03:b0:e1:a7:bf:6c:09:3f:6c:
aa:2b:d4:0d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 19:14:37 2026 by rpki-client