Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
File: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft (raw, json)
Hash identifier: yyggxGeclOjNrZfDsPDP7UuBrWkSU8v6xYjd2n4mqe0=
Subject key identifier: 6E:03:27:48:71:5C:13:E4:5E:A5:52:98:DD:FE:1A:08:85:68:C9:E1
Authority key identifier: 29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
Certificate issuer: /CN=29da6411a13264dc6de0f101108540ef741ed19a
Certificate serial: 019D28BB94708F3121BA8DDE427CA399C05E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
Manifest number: 14A4
Signing time: Thu 26 Mar 2026 06:01:14 +0000
Manifest this update: Thu 26 Mar 2026 06:01:14 +0000
Manifest next update: Fri 27 Mar 2026 06:01:14 +0000
Files and hashes: 1: KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl (hash: gPsJ8eDglJYraoXiMLING9OCISa4RZ6WChvGYiApBHE=)
2: VYFRuXlvwBdryFQTt5OTENfApaY.roa (hash: rnOyzeUtaX8vu4gXdx5Hk1vLfU4MWIMFx4e4U3jLOpM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:94:70:8f:31:21:ba:8d:de:42:7c:a3:99:c0:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29da6411a13264dc6de0f101108540ef741ed19a
Validity
Not Before: Mar 26 06:01:14 2026 GMT
Not After : Mar 27 06:01:14 2026 GMT
Subject: CN=6e032748715c13e45ea55298ddfe1a088568c9e1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:05:53:98:a9:e8:4c:69:ac:6d:0d:fa:af:a2:
b6:28:53:66:bd:2a:8f:4c:0d:92:9b:dc:b0:48:f6:
73:36:61:92:15:2d:f7:30:70:9e:f8:30:fb:6f:15:
45:b8:62:96:4f:c4:0a:4f:c7:17:4f:82:e5:9f:5c:
e6:ea:0f:3f:62:9a:b1:0b:b1:5e:5f:54:d0:16:ec:
8a:72:58:46:b6:12:58:8b:c8:bd:fa:3a:cf:74:93:
26:03:ad:02:76:68:3f:a7:d4:96:3b:21:13:b1:aa:
7c:22:bd:85:3a:d2:ed:7c:3f:11:b5:92:e6:bc:1f:
5d:b0:cf:56:f5:7e:6b:38:4a:34:d4:0e:e5:ea:ab:
1b:34:f4:ed:3c:24:df:48:a8:df:f0:79:bb:6e:24:
75:4f:d0:13:f4:bf:a5:71:fa:a1:34:ec:38:ce:c2:
a7:17:ae:88:47:b2:7b:74:dc:a1:82:0a:15:ec:f4:
3f:df:cb:f4:32:f7:71:7f:b1:22:26:8c:33:84:95:
01:1f:59:39:87:87:71:c3:03:b6:6a:0d:c4:ac:37:
03:3f:03:a2:ca:ef:94:82:2a:f2:ce:10:32:e1:60:
21:52:42:f6:39:c3:b1:bc:36:8c:b5:03:01:ea:e2:
b8:87:4a:63:7c:b7:56:57:26:33:94:32:e3:85:79:
56:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:03:27:48:71:5C:13:E4:5E:A5:52:98:DD:FE:1A:08:85:68:C9:E1
X509v3 Authority Key Identifier:
keyid:29:DA:64:11:A1:32:64:DC:6D:E0:F1:01:10:85:40:EF:74:1E:D1:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/a56c12-db7a-4220-9b15-1c2b842d22be/1/KdpkEaEyZNxt4PEBEIVA73Qe0Zo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:0b:4b:2d:e6:5d:48:83:00:aa:8b:c5:b7:8a:4f:92:c1:98:
80:6a:39:55:b7:d6:2a:dc:27:5f:3b:27:2e:5c:9c:bd:d1:3e:
e3:46:32:2d:e2:45:0d:f0:00:80:95:88:7a:eb:64:9c:a1:56:
79:53:a1:1b:0a:11:d7:da:2a:5a:10:f0:40:f4:dc:30:23:6b:
4e:10:9f:4a:3e:95:ec:53:2d:38:8f:b4:96:06:8e:4b:eb:ec:
f4:d7:c2:86:76:7a:bb:49:a2:ea:34:5b:63:86:7d:43:5d:15:
db:1f:da:fe:7f:c3:15:d2:e2:d3:9f:44:7f:23:60:78:24:39:
d8:61:c6:b4:f2:2a:c7:f4:30:fa:85:a0:82:6b:9b:8c:eb:fe:
40:8e:25:75:d5:34:b1:7d:33:eb:cb:28:7a:ec:ff:59:d9:7c:
9e:cc:b5:6c:99:66:7b:b9:86:3a:fa:81:2b:34:f8:79:71:c4:
a1:a7:be:b0:7b:ba:ce:fb:8b:99:a2:76:57:38:07:6f:bd:86:
41:ef:9e:5f:65:33:db:f9:b1:a9:3d:a1:f5:6f:0c:4e:59:c4:
3c:ae:59:ce:45:03:33:d5:4e:dc:ce:2b:eb:6f:96:6f:34:21:
8a:ea:52:47:4a:69:c7:74:24:d9:30:a5:cb:58:5b:94:b4:20:
86:26:65:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:49:07 2026 by rpki-client