Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
File: K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft (raw, json)
Hash identifier: lrDe1sqPMrb2NdUFuZZlpb64+mRgR1BBIL+15EhS2Zg=
Subject key identifier: A7:27:C5:1E:A4:37:00:3F:C2:E7:7D:6B:EC:DB:17:77:0E:F6:20:89
Authority key identifier: 2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
Certificate issuer: /CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Certificate serial: 019D27A8B906798ADF0879C1C7760AB96F42
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
Manifest number: 0A53
Signing time: Thu 26 Mar 2026 01:01:01 +0000
Manifest this update: Thu 26 Mar 2026 01:01:01 +0000
Manifest next update: Fri 27 Mar 2026 01:01:01 +0000
Files and hashes: 1: K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl (hash: C4kpn+HWhAK9Rwy8sE8QkS8cI1BXhtQY9vcfbauOHm0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:b9:06:79:8a:df:08:79:c1:c7:76:0a:b9:6f:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bb2d02341c11949a8c87153f866c0f68f1bbd73
Validity
Not Before: Mar 26 01:01:01 2026 GMT
Not After : Mar 27 01:01:01 2026 GMT
Subject: CN=a727c51ea437003fc2e77d6becdb17770ef62089
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:37:e0:9b:8a:32:aa:70:87:15:8b:0d:b0:df:
8b:4c:10:81:ee:3c:f4:4d:3f:eb:43:30:1e:18:df:
1c:06:16:7e:4d:b1:7e:12:54:c8:ef:29:21:93:3a:
66:17:3e:40:ee:94:7c:02:d0:81:24:c2:ea:f2:fb:
d0:1e:dc:b0:7f:2f:b7:72:21:03:87:df:ef:9d:5f:
50:8f:e6:d8:59:32:9a:28:48:a8:83:d2:a6:87:6a:
23:41:31:c5:18:dc:80:9e:53:95:50:da:12:21:52:
63:fb:e9:ef:69:8c:74:88:bc:5e:45:45:b3:71:11:
79:ff:1e:49:b7:5f:7a:c9:d0:d2:90:ed:fb:ec:01:
b6:65:ba:a5:14:3b:43:34:ae:69:be:47:61:ed:e4:
1c:0a:1f:e8:81:20:e4:fc:b5:25:ae:8c:22:8d:ef:
45:9d:59:7f:9e:cc:0a:f0:84:a2:cc:95:ce:4a:53:
37:93:41:de:8b:f1:77:bc:42:44:79:46:b2:e4:0b:
dd:27:58:0b:f2:14:db:88:9d:b1:39:15:fe:97:cb:
ed:c5:8b:88:a1:e6:d5:68:4d:0b:27:18:cd:a4:19:
68:e8:a3:b1:b6:7b:5b:c6:16:69:4e:1d:a4:55:aa:
5f:5f:f8:1e:cf:0b:04:9c:5c:30:37:e7:76:a8:9c:
7f:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:27:C5:1E:A4:37:00:3F:C2:E7:7D:6B:EC:DB:17:77:0E:F6:20:89
X509v3 Authority Key Identifier:
keyid:2B:B2:D0:23:41:C1:19:49:A8:C8:71:53:F8:66:C0:F6:8F:1B:BD:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K7LQI0HBGUmoyHFT-GbA9o8bvXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d7a794-5e38-4e84-8156-460656fe3ab5/1/K7LQI0HBGUmoyHFT-GbA9o8bvXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:c6:8c:0a:c6:6c:6c:fd:e8:40:ab:ba:c1:c7:5f:e9:32:0c:
27:39:bb:ed:72:20:e8:7e:7c:21:86:bd:12:34:cc:2f:ec:05:
b3:85:a6:3a:cf:4d:55:d6:a9:7d:e4:b2:fb:d8:4d:ae:16:7c:
2f:1a:3f:64:c9:a8:2d:c4:2a:21:b2:28:9b:8f:ec:cc:76:60:
d6:0f:09:3c:5f:c3:2d:0c:4a:fd:ba:99:c2:26:4d:bf:34:dc:
b6:bb:7c:70:c1:ec:07:37:44:21:83:84:2a:a6:f8:a9:e8:c5:
5f:89:45:78:cf:02:84:8a:d6:3e:3f:30:a8:dd:e8:b4:7e:cb:
d7:ff:e1:b4:39:fa:37:e9:52:bb:d5:d0:d0:bc:22:2c:fb:f0:
ed:2b:3a:28:57:4a:96:57:46:f7:a2:a7:0e:d2:41:ee:d2:74:
d4:44:c4:78:77:86:0b:db:48:68:08:d0:65:c3:9e:ea:e2:8d:
d7:29:a6:4a:06:e3:4a:13:69:e8:1a:8c:6c:05:f2:b8:3d:e6:
a9:3f:eb:53:e9:e5:02:85:25:37:02:c5:60:25:e8:44:27:8e:
36:ee:64:5b:9a:4a:56:4e:86:0b:e1:b9:15:6d:a4:9f:05:2f:
32:92:67:37:86:df:df:10:82:93:94:84:83:fd:ec:be:3d:a6:
7e:d0:a9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 04:58:48 2026 by rpki-client