Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: pudVHSyycJKS6D3dH5NLekceQg8PkId2/NHdIQP3nZA=
Subject key identifier: B0:D3:E1:97:71:50:51:07:3F:1C:F4:5A:25:92:3A:98:D5:00:2B:48
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 019D26CCFC61AEF53CA307FEA2FB97FEC508
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 1887
Signing time: Wed 25 Mar 2026 21:01:01 +0000
Manifest this update: Wed 25 Mar 2026 21:01:01 +0000
Manifest next update: Thu 26 Mar 2026 21:01:01 +0000
Files and hashes: 1: T6aVPmNcqE5HPe1U1bzT5Q4XHzY.roa (hash: 8+A3ZIl9Wsa+nE0z7P+iEM6IdzJ3gW89vJMfXzNpKrc=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: Tp+ZYAoYZC6vS26hFC+UjIkZOiKPVi9vxjqk7BSZDhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cc:fc:61:ae:f5:3c:a3:07:fe:a2:fb:97:fe:c5:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Mar 25 21:01:01 2026 GMT
Not After : Mar 26 21:01:01 2026 GMT
Subject: CN=b0d3e197715051073f1cf45a25923a98d5002b48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:5d:0d:34:01:07:0c:5f:81:d1:2b:57:16:9b:
fe:20:99:ac:34:d3:fb:78:0d:a9:be:a5:2b:b0:29:
a9:f6:78:b2:9c:73:4b:22:0a:db:ba:4a:a8:e2:3d:
83:9c:75:bd:33:92:18:90:e1:22:5d:f1:61:be:04:
a6:ab:dd:64:8e:d5:c9:82:a2:de:18:5c:5a:a5:41:
d2:9f:0f:ab:f4:4d:4e:4c:be:bf:9a:a5:71:a7:59:
8c:17:6e:44:d8:46:42:19:e0:67:bb:cd:c6:dc:66:
82:08:98:c0:b5:1c:c6:43:91:60:99:d7:d7:cc:c9:
c6:e1:c4:cd:52:75:1b:d6:06:05:72:8b:5c:35:74:
87:a7:8c:05:27:af:39:f2:07:26:ab:1c:d8:5f:f8:
b0:9a:29:44:d4:e2:ce:8e:fc:b4:8f:57:6f:8b:a8:
56:fe:d2:5e:6b:68:5e:8d:97:f0:61:71:cc:f4:73:
13:cc:4c:d8:3c:c5:00:8d:98:39:61:ec:ff:cb:42:
9c:83:b2:23:a9:19:52:d7:77:81:01:0d:67:76:af:
8c:7b:ed:9b:1f:e2:2b:f5:8d:cb:06:f4:9a:51:51:
4d:19:37:db:7e:58:6c:dd:ab:df:04:da:96:65:35:
a5:83:55:08:10:d7:4d:6a:42:b3:b9:e1:16:b5:fc:
0f:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:D3:E1:97:71:50:51:07:3F:1C:F4:5A:25:92:3A:98:D5:00:2B:48
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:25:7a:51:5c:aa:fe:dc:4e:a4:79:9c:61:f4:0e:1c:64:89:
3f:fe:b5:ca:26:35:db:bd:38:f3:82:a3:c7:c8:54:83:73:9d:
64:52:94:06:19:e2:d8:ba:bb:80:ed:f6:ec:fc:e0:ab:28:4e:
17:80:4d:e1:a7:cb:3e:7a:8c:6c:10:41:90:36:04:a0:a6:b9:
2f:3c:ee:90:c8:ad:27:c8:ae:14:1a:40:d3:58:f3:58:fe:a9:
72:85:0b:48:8b:3d:22:78:f7:17:a3:d7:1e:84:e7:46:b5:9a:
0a:9c:fc:0b:96:f7:40:59:e3:a2:3c:ed:17:69:dd:67:7d:4f:
00:09:13:4a:69:b7:57:64:b2:73:3f:2a:3c:71:a5:02:1c:65:
31:62:70:ae:cd:a7:1b:f7:69:76:ff:11:75:f4:64:47:2e:c9:
b5:0c:37:d7:87:ff:36:17:de:70:69:13:73:0f:19:11:cf:0c:
b7:a2:af:de:83:58:c1:f8:ac:11:1c:ab:15:b5:09:09:f6:2c:
76:8a:36:1c:7d:fa:5f:49:f8:68:21:b6:ff:c3:f2:21:92:a5:
bb:55:d5:9e:2c:e7:25:39:ac:19:d5:14:d4:25:a3:68:7b:76:
0b:dd:3f:8b:84:6a:4a:ce:0a:8e:51:b5:68:41:ca:bd:92:59:
23:47:d7:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:41:12 2026 by rpki-client