Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: P8IYyph2mKL7XL+AT9GB2jST36Go/Rkrrw/3SKfpUp0=
Subject key identifier: 28:07:9F:95:2C:49:28:01:D7:53:9D:20:91:47:32:42:4B:30:18:D0
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 019D273B1F1F56AFF4A93B266A122C9D7F72
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 1204
Signing time: Wed 25 Mar 2026 23:01:19 +0000
Manifest this update: Wed 25 Mar 2026 23:01:19 +0000
Manifest next update: Thu 26 Mar 2026 23:01:19 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: NzZIP13zy823tKEBkBL0oqSP5OsrYq4vbJeRFo4HX4I=)
2: NNW9fBL9fFAJGVwGGKC0u4xaMBk.roa (hash: QeuasZLkGWjhmBmI2lmaeg2T0aIzvZFSj+N457z3Xik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:1f:1f:56:af:f4:a9:3b:26:6a:12:2c:9d:7f:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Mar 25 23:01:19 2026 GMT
Not After : Mar 26 23:01:19 2026 GMT
Subject: CN=28079f952c492801d7539d20914732424b3018d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:76:fa:fe:fc:a4:5e:87:0e:2d:ec:32:55:52:
ef:af:8b:05:02:1e:b7:d1:13:a8:2d:9b:e1:08:da:
48:82:63:aa:b3:30:a7:d8:91:73:d1:d7:70:7b:26:
d6:f0:69:af:2d:8f:cc:dd:0a:d7:d4:a7:0a:58:2d:
f8:a9:64:56:b8:60:79:db:91:45:3d:2c:3a:c5:2e:
6e:c1:e3:cf:c6:2f:63:d3:4f:0c:ea:2a:f8:20:e4:
b6:0d:03:94:5c:66:75:9c:16:24:bb:84:f0:0d:f4:
e0:40:2e:22:54:3a:05:48:7f:99:d3:67:53:fd:08:
99:00:af:0d:f7:9f:80:25:8f:77:d0:e7:f2:d7:b6:
8f:ac:42:cf:c2:b2:88:ae:cf:8f:9b:3e:60:5c:71:
b5:5b:ab:cb:0a:29:d3:d5:da:8d:e9:fa:5c:0d:00:
46:1c:0b:a2:b9:59:1c:5e:f2:36:ba:f6:e0:c0:15:
d2:b2:87:d0:5f:4b:d7:ed:df:f4:65:45:8a:3c:bf:
0b:22:c5:ee:9d:fe:d4:d9:9b:c9:c7:0d:88:3d:53:
ce:b6:d0:a6:d2:ae:03:4f:6e:2b:ac:9e:61:ca:d0:
41:2c:a5:17:84:b5:a2:a9:b6:3b:00:6f:c0:47:51:
fc:04:b9:c8:6d:be:50:3f:54:6d:e2:df:33:b6:58:
87:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:07:9F:95:2C:49:28:01:D7:53:9D:20:91:47:32:42:4B:30:18:D0
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:65:58:35:a0:f1:f2:56:5f:f6:9c:47:cf:03:9b:87:67:e6:
d7:94:f8:bb:ea:f0:12:2f:e1:02:18:66:61:f7:0a:ea:3d:9a:
83:88:fd:c2:e8:f0:04:b2:53:41:d6:cc:df:b4:a6:3b:91:f0:
e1:c6:68:13:43:f0:59:50:b6:8a:87:ed:22:db:03:3c:24:38:
c4:2e:7a:fa:4d:dc:b1:4b:09:b5:57:92:b4:20:81:1f:c2:66:
b1:52:d9:05:58:62:30:79:64:5c:e2:44:2d:01:51:0b:15:93:
1d:14:a5:93:ff:8b:36:66:37:0e:bf:80:c0:4d:06:40:78:b8:
fa:28:2d:da:54:2a:f8:c5:f5:a7:5a:54:cb:24:bf:62:00:ae:
ae:90:46:57:c5:16:f8:55:58:e5:ed:a6:00:a0:50:01:e1:ba:
d8:37:a9:71:0f:46:98:36:fe:ce:db:85:f8:0e:64:ab:db:aa:
b6:e3:23:7e:9f:0d:3c:8d:06:a3:52:8d:3f:47:af:c3:f7:42:
24:81:29:ad:bb:fe:56:78:34:92:ac:fb:af:a7:64:98:31:3d:
c4:dc:9d:68:d9:73:d4:17:34:28:f7:df:3f:6d:d7:bb:5b:b8:
8e:9a:5b:98:f5:14:49:50:c2:32:d9:ad:7e:f0:da:0f:9b:40:
e8:e6:bc:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:52:22 2026 by rpki-client