Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: Kkqjm3N1i+VgMcifv7Nnk3DskMbGBTThty9/RmMXDlk=
Subject key identifier: 96:E4:A4:4F:3D:52:62:C4:FB:0C:62:13:62:61:7A:CD:DA:46:F8:0C
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 019E1EDA0BB139F0D0C078A8C99E5A768681
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 1273
Signing time: Wed 13 May 2026 01:01:06 +0000
Manifest this update: Wed 13 May 2026 01:01:06 +0000
Manifest next update: Thu 14 May 2026 01:01:06 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: HNxxVKpK6/q47TUYmW7cPjUHfC90jSDDutsR7v0vGmE=)
2: KT302nZV2Y2p4WDMTwVmIhKydvc.roa (hash: RA/+n+j+c+JYu9hIIUbQQ1FyM1sNRqfioO7K+YA4lYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 01:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:da:0b:b1:39:f0:d0:c0:78:a8:c9:9e:5a:76:86:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: May 13 01:01:06 2026 GMT
Not After : May 14 01:01:06 2026 GMT
Subject: CN=96e4a44f3d5262c4fb0c621362617acdda46f80c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:f2:8b:ab:5f:1a:5b:f5:ed:3b:0e:49:90:5c:
94:23:20:16:83:94:17:68:b5:ae:7b:35:38:80:98:
8b:51:3e:f7:2a:9e:50:aa:5f:8b:a0:62:4f:16:d2:
5b:20:1a:61:73:34:a7:3b:44:ec:50:4f:22:59:99:
84:77:79:66:1b:01:99:9c:4b:8f:33:c1:6d:a7:ba:
92:34:9f:c9:b6:dc:31:0b:b6:dd:61:d0:0d:89:12:
72:55:f8:8e:6f:22:cf:11:27:38:aa:05:e9:85:5a:
d5:3c:53:f7:38:6c:12:db:cb:db:c7:68:9f:66:8b:
c3:81:98:a6:c6:6e:6b:2f:1b:93:08:9f:46:d0:45:
0b:31:79:e9:dd:d6:98:40:37:3a:20:f7:20:ec:b9:
e2:d9:db:01:d2:6a:52:ef:16:12:53:0b:1c:d3:b7:
6a:8e:25:6c:47:a8:6d:cd:e0:31:76:f9:2d:a5:2f:
6f:cb:99:ee:67:6b:26:72:37:a2:bc:0c:e1:b2:65:
0d:b4:4a:90:51:89:bc:66:7f:d7:a4:1e:24:7b:d3:
af:58:a5:74:71:be:f5:5a:78:83:01:de:e9:ea:db:
7e:b2:6a:9e:86:5f:33:8e:89:b8:18:eb:88:ab:6a:
90:15:97:b6:a9:9e:77:81:54:ee:6f:02:f3:51:ae:
c3:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:E4:A4:4F:3D:52:62:C4:FB:0C:62:13:62:61:7A:CD:DA:46:F8:0C
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
59:7f:8a:6d:4e:78:90:16:6d:b5:96:79:35:67:89:f7:0d:a4:
66:e7:39:ea:36:27:be:a9:49:68:f3:98:78:c7:7d:c6:f5:f6:
e6:63:4d:68:a1:3e:d2:33:44:bf:c6:55:5a:02:7a:54:94:4b:
c7:2b:f2:31:f2:c2:6b:d8:c8:98:64:1d:62:31:df:53:33:ba:
5b:6d:f8:f7:ef:45:9f:30:fa:a7:6f:50:78:64:72:ef:a2:98:
5e:b8:ea:01:de:84:25:fc:85:12:b9:d5:f1:5e:08:b9:a1:5a:
3b:b8:bc:bb:b6:77:42:dd:be:64:53:62:3a:3a:be:c2:d8:2c:
01:a1:99:64:2f:5c:b1:e4:44:85:fc:eb:fc:a2:5f:e0:12:9b:
db:61:dd:4b:a5:d7:bc:46:75:24:a3:8a:00:dc:54:95:20:28:
a0:c1:cb:d4:1e:e0:22:79:2d:3d:f2:99:28:4e:af:15:b4:08:
21:42:cb:ac:3a:cb:f8:4d:a0:1e:3f:a9:0f:ec:fe:09:d9:43:
83:af:22:d2:aa:78:be:9a:aa:a6:da:79:dd:fa:e0:88:9c:90:
8f:e1:91:18:17:40:a1:54:2c:42:1c:cf:d9:ae:53:84:3f:89:
02:17:97:e8:0d:c0:d6:6a:13:85:a9:e6:de:9e:db:42:0e:76:
d3:0f:74:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 10:52:12 2026 by rpki-client