Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
File: KrmiSem1jILhRV6yM5RVsDHn3d8.mft (raw, json)
Hash identifier: oLnwOVFceH3oJsx0aAQBXg08UKYfno0WK884rYicqBM=
Subject key identifier: BE:14:C8:6B:CD:FC:EF:3C:66:51:71:27:FF:5E:DF:77:93:BD:8C:CD
Authority key identifier: 2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF
Certificate issuer: /CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf
Certificate serial: 019D27729944715D4FE7A34981EC1059B32F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
Manifest number: 1883
Signing time: Thu 26 Mar 2026 00:01:54 +0000
Manifest this update: Thu 26 Mar 2026 00:01:54 +0000
Manifest next update: Fri 27 Mar 2026 00:01:54 +0000
Files and hashes: 1: KrmiSem1jILhRV6yM5RVsDHn3d8.crl (hash: ZD4AEb6ArgDA7huIb0gBBJdTVgtKi6L84VPNaflFWTE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:72:99:44:71:5d:4f:e7:a3:49:81:ec:10:59:b3:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ab9a249e9b58c82e1455eb2339455b031e7dddf
Validity
Not Before: Mar 26 00:01:54 2026 GMT
Not After : Mar 27 00:01:54 2026 GMT
Subject: CN=be14c86bcdfcef3c66517127ff5edf7793bd8ccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:1f:33:f1:c0:84:c4:e0:fa:74:9d:4c:0f:50:
1d:af:dc:18:d3:08:49:d3:8e:a2:d1:ba:8d:59:a2:
71:3b:7a:28:ae:67:f5:18:70:ea:f1:5c:19:4a:52:
85:35:c4:52:2c:88:17:bc:d0:49:9c:de:d3:7d:23:
a6:49:e9:59:16:9e:88:e1:bc:d7:48:b6:02:cf:10:
6e:a3:9c:b3:97:97:89:15:ca:a5:8f:ad:66:f7:1e:
dc:ee:df:c6:2f:fd:77:39:8f:86:c0:3d:03:8d:a8:
83:b5:cc:1a:04:7e:ee:2a:90:ad:a1:6e:33:7a:e3:
0a:65:59:5b:13:e9:05:74:3e:02:51:f3:8c:ce:c9:
e4:f3:35:95:18:03:f6:a4:ac:d5:85:71:c6:7e:7c:
b3:cb:53:f6:50:14:6a:80:6c:07:a5:df:0e:8d:1c:
80:c1:0d:85:3b:22:2e:fb:3c:a9:57:6f:74:f1:53:
32:50:d7:fc:50:e1:72:51:f1:7e:08:f9:6b:2d:4b:
07:04:1e:2c:07:80:eb:f4:bb:db:61:06:7b:8b:8a:
41:01:f3:37:47:f8:72:6a:9b:82:fe:35:f2:9c:70:
0d:a1:ce:c9:fe:f2:a9:c1:06:1e:fc:1f:bb:6f:6a:
17:ed:81:7e:3f:f2:8a:5e:1e:02:8d:0e:48:71:7f:
79:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:14:C8:6B:CD:FC:EF:3C:66:51:71:27:FF:5E:DF:77:93:BD:8C:CD
X509v3 Authority Key Identifier:
keyid:2A:B9:A2:49:E9:B5:8C:82:E1:45:5E:B2:33:94:55:B0:31:E7:DD:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KrmiSem1jILhRV6yM5RVsDHn3d8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/9eab6d-6b35-4a5a-afb1-251f22093d04/1/KrmiSem1jILhRV6yM5RVsDHn3d8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
dc:a5:2c:97:08:29:90:dc:04:b1:6c:ac:a6:56:5a:6e:4f:da:
ae:87:42:7f:0e:4f:b7:c3:b3:6b:33:30:75:26:c1:d7:46:9d:
d1:aa:48:8f:ae:93:4d:19:42:ab:10:e3:bd:f6:73:2f:21:18:
23:fe:45:03:61:01:13:39:23:68:4e:cb:bb:49:b6:2e:6a:0d:
de:a1:cd:53:b7:70:e1:8a:71:d2:d1:8e:62:59:a4:55:b4:2f:
73:a1:b8:a7:65:3c:b5:ce:6e:41:d6:05:b7:e7:d2:1a:0a:77:
bd:c9:5a:0d:d8:d0:ad:93:25:ef:35:81:1e:c8:8f:b4:a5:ed:
61:14:50:94:bc:17:9c:07:00:b2:34:a4:db:5c:dd:73:cf:f1:
f5:24:dd:c6:fd:38:b5:f4:47:c9:dd:72:01:2b:56:4b:26:10:
4c:e8:3c:00:26:e8:76:19:f3:45:1c:c5:56:fc:81:c2:6c:9d:
32:1f:a3:9f:9e:b1:c3:fe:df:10:ca:59:11:9f:f6:cb:82:08:
05:e4:37:6b:a7:6f:12:15:9d:f8:94:89:f2:2c:fd:51:f5:25:
c3:e4:33:7c:95:84:ed:9f:26:fd:31:b1:a5:24:b7:98:d5:13:
cb:70:2d:7f:69:ef:9d:22:38:08:71:7d:29:d9:98:30:c2:c3:
19:80:74:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:55:25 2026 by rpki-client