Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: U1ZovAHN5OA/O6vuNYwxaO/6B/ldIDazWVT3S1uW4h8=
Subject key identifier: E1:20:D2:DF:C9:F6:D1:4B:88:E3:68:F4:C1:12:E6:47:85:D5:3D:21
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 019E1CB4B142A487F9D44F02A478D64A6A0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 1909
Signing time: Tue 12 May 2026 15:01:04 +0000
Manifest this update: Tue 12 May 2026 15:01:04 +0000
Manifest next update: Wed 13 May 2026 15:01:04 +0000
Files and hashes: 1: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: bZNtrYPFTEPx+eBKH7BwzjNw5q8wJglNTkLVuWW8Kls=)
2: r2staIGPnAB2fC8C0axIG4AKOBk.roa (hash: uFZHYgrj8p1JmsefAGSYoXv3EhDU7aOqOew1OyVD1rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:b1:42:a4:87:f9:d4:4f:02:a4:78:d6:4a:6a:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: May 12 15:01:04 2026 GMT
Not After : May 13 15:01:04 2026 GMT
Subject: CN=e120d2dfc9f6d14b88e368f4c112e64785d53d21
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e6:8d:a6:79:10:ee:02:54:35:21:b5:57:a7:
08:4c:cb:7d:75:39:80:3d:2e:bf:05:c2:ed:3d:b9:
f3:63:f5:27:60:4a:5e:47:fe:68:0e:74:74:12:5f:
e1:0a:6c:da:1b:e9:4f:15:3c:02:75:db:a8:d3:2c:
0b:66:80:49:5f:4b:14:49:53:dd:7b:3a:ba:81:c5:
6a:5b:1f:33:29:13:c3:ed:a0:77:ab:f0:59:70:5b:
1b:c8:95:a5:a9:e8:30:3b:3c:b2:ec:69:3e:e9:ce:
be:19:fc:14:93:5f:97:a9:ce:fe:22:25:74:2b:78:
e5:55:50:a2:5c:16:f4:cf:c0:f8:71:be:c8:f2:af:
65:9c:dc:4f:c9:a1:47:65:12:5b:65:cf:15:c0:25:
84:bb:78:45:37:47:e4:b5:70:d3:3f:f5:5f:71:5f:
31:99:f3:c6:e8:32:b2:9f:05:3f:9f:8a:f9:77:be:
ac:5e:e9:33:a0:6a:6a:5f:a5:25:ec:e0:ee:23:f3:
37:55:44:74:51:93:49:a9:09:e1:4f:e3:bd:f6:48:
85:5d:b6:c7:07:ee:43:0e:7e:1a:d2:12:b8:8a:8b:
83:d3:81:bb:0b:d6:21:75:d1:97:4a:c1:47:d4:46:
da:c4:0a:87:cc:f0:65:dd:42:b6:c5:85:29:bf:da:
19:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:20:D2:DF:C9:F6:D1:4B:88:E3:68:F4:C1:12:E6:47:85:D5:3D:21
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:b7:e3:b7:1f:3c:bc:b8:75:7e:16:f6:cd:98:f4:7e:63:f0:
0d:0e:e9:1e:dd:ca:8c:75:eb:4e:fe:85:21:4b:10:5a:11:0b:
8f:e4:93:35:36:00:cb:f4:35:ea:06:17:07:84:b5:67:a8:2a:
f6:c6:fd:20:1b:df:9c:c2:9f:0f:f7:fe:11:70:8a:7f:b7:2d:
be:6f:ce:8a:3c:7c:d1:8a:ce:7b:93:06:6a:54:cc:43:76:5f:
30:0d:f7:24:3a:74:7c:df:f2:43:7b:7c:cb:d5:18:9f:9c:8a:
46:93:b4:81:08:f1:d9:98:49:4f:32:52:c7:2f:b0:b2:17:42:
87:0a:99:fa:44:0c:12:6a:de:9a:75:7e:3f:26:87:ec:43:58:
cf:10:32:eb:c8:23:dd:18:a6:7f:52:97:46:38:70:2c:a2:13:
1c:12:d4:22:07:2f:ab:1b:bb:5d:c8:e7:60:a1:b2:6f:de:a3:
63:36:9d:a9:04:00:57:c9:a6:8e:50:f1:27:c5:37:3d:d2:c7:
a9:37:48:aa:6e:58:6f:ef:06:18:b1:8e:03:19:1d:78:b4:98:
49:b4:d2:fd:d4:86:c7:ad:26:09:8b:df:ce:e6:c9:0d:15:6f:
55:86:89:51:d9:27:dc:dc:b3:41:bb:69:ab:8d:84:e8:e7:22:
36:16:47:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:15:01 2026 by rpki-client