Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: mSFGp5vb+VVqllw0h72mlqvdcpBb7zGAdw1j3opskY0=
Subject key identifier: DD:ED:05:C8:3B:2B:54:CD:9C:A0:48:12:59:EE:88:D4:4A:2A:33:85
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 019E1D90876261204B0A2216F226ABE896A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 19:01:11 +0000
Manifest this update: Tue 12 May 2026 19:01:11 +0000
Manifest next update: Wed 13 May 2026 19:01:11 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: fA9iPmqQ3Yr5tnW6xhguSIMqF6UUt/lhlix1YF6iLq8=)
2: dMl0CEajkrxcgLNcfpnLA8OuL7A.roa (hash: CYX2WX+QfrhOpGiBFy1DWZkIM2JKpSw/oiXkQ7UpKFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:87:62:61:20:4b:0a:22:16:f2:26:ab:e8:96:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: May 12 19:01:11 2026 GMT
Not After : May 13 19:01:11 2026 GMT
Subject: CN=dded05c83b2b54cd9ca0481259ee88d44a2a3385
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:50:54:66:9a:5e:ba:ca:73:c0:59:c7:b6:0b:
a9:fb:f8:84:17:c2:e9:62:10:f2:52:dc:41:d6:0d:
f4:eb:f1:e4:c9:9c:c1:9d:c7:51:af:34:8b:99:73:
52:d1:bf:55:29:c9:88:d6:b3:51:59:f3:e4:46:14:
d7:4b:b2:96:21:25:6d:88:2f:88:91:79:c1:a1:71:
7c:ee:1f:83:52:ab:26:a8:fb:c7:44:64:6e:d2:1e:
3d:c6:fe:75:b3:a4:9a:f8:a7:c0:75:11:d4:5f:88:
dd:b6:c0:51:b4:29:46:0d:f4:c1:70:c2:35:05:90:
67:21:7d:49:a9:d6:4c:ec:76:e0:e0:7d:ad:47:8e:
b9:1f:e7:18:f0:0c:6a:99:11:98:b6:b8:fd:23:7c:
4c:ec:4b:f5:10:22:ad:ce:54:20:37:b1:46:a4:96:
f7:ab:ca:9a:b5:25:9b:80:6f:5c:c7:77:1a:60:07:
e6:98:65:b1:ef:b1:d5:56:5a:45:5e:58:e2:f0:be:
45:13:7d:b4:dd:74:09:36:bf:d0:c2:cb:3b:c1:2e:
7d:15:de:64:6e:b8:f3:c0:6c:35:aa:f1:ce:ee:e3:
f6:22:2c:66:ce:b9:3f:ee:ec:c7:3a:95:10:64:32:
a9:17:d9:5d:6c:76:7b:ab:ca:41:ab:1f:04:cb:b7:
5a:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DD:ED:05:C8:3B:2B:54:CD:9C:A0:48:12:59:EE:88:D4:4A:2A:33:85
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:63:81:a6:3d:ad:c5:05:f4:d1:d0:48:11:88:54:79:53:7f:
29:ff:00:41:9b:2b:27:7b:89:e3:9f:e5:29:00:0d:de:29:1e:
3e:e7:75:2c:73:26:fa:60:f9:66:7c:12:0b:e3:8b:fd:50:ae:
6b:2e:b3:5a:91:7a:e9:ae:98:08:d5:4a:91:b2:46:a8:1c:47:
c9:a1:77:00:35:b3:b2:12:64:41:24:3f:10:84:90:8f:b3:cd:
0e:2c:d7:6b:34:d2:69:0a:87:f3:71:aa:91:bf:73:70:01:27:
ad:cf:9a:c8:94:60:34:47:dd:d8:85:b3:d6:53:5c:ee:c9:c1:
60:5f:c6:90:40:dc:3e:ba:4d:5d:f7:0a:a0:92:0a:cd:b6:dc:
77:b6:6a:e6:18:63:8f:32:dd:e1:e2:26:54:8b:93:e0:ed:3b:
07:b2:a7:79:0e:7d:53:bb:4a:5e:aa:61:22:c2:1b:cb:b9:c4:
82:c0:32:98:7f:59:9c:99:e7:84:9e:81:ba:54:d1:9b:f1:d6:
b4:9b:10:90:72:47:fc:6e:d3:43:2c:dc:3a:17:f8:31:54:b5:
35:6d:b7:7d:0d:da:b5:53:4b:15:aa:9e:93:17:60:ff:bf:e4:
ef:78:6d:ae:a6:8e:10:2b:c8:13:35:52:b7:af:bb:59:20:c5:
57:e6:35:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:40:10 2026 by rpki-client