Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
File: KPev7E0_BvgNaHKm1iRs0B5z1qY.mft (raw, json)
Hash identifier: Mo/ffqpOr9wQQHS6LrD46JlpDXmMUxuJmrR8By9mEIw=
Subject key identifier: 57:62:AD:68:64:A2:12:21:14:92:4B:0B:03:F7:7F:98:BA:83:C4:BD
Authority key identifier: 28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6
Certificate issuer: /CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6
Certificate serial: 019D3A1CB8DDF5406A2E0D6D3BC0C167553B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
Manifest number: 188C
Signing time: Sun 29 Mar 2026 15:00:53 +0000
Manifest this update: Sun 29 Mar 2026 15:00:53 +0000
Manifest next update: Mon 30 Mar 2026 15:00:53 +0000
Files and hashes: 1: KPev7E0_BvgNaHKm1iRs0B5z1qY.crl (hash: y+BZgsFRfWNgVWkrerHcz8InkEJDWfIXBYK+QU+Afig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:b8:dd:f5:40:6a:2e:0d:6d:3b:c0:c1:67:55:3b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f7afec4d3f06f80d6872a6d6246cd01e73d6a6
Validity
Not Before: Mar 29 15:00:53 2026 GMT
Not After : Mar 30 15:00:53 2026 GMT
Subject: CN=5762ad6864a2122114924b0b03f77f98ba83c4bd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:14:a1:b9:d5:10:8d:99:8c:b1:fc:4d:7b:8c:
4c:7f:99:3a:de:c5:c1:68:6e:7e:78:5f:60:ea:94:
a5:ae:fc:b7:d5:e8:3f:60:3d:c5:17:0c:78:5a:55:
67:87:7a:5d:4f:16:d9:8f:aa:e5:8e:15:e6:7f:4f:
9e:c2:7e:56:e2:da:c8:4e:65:36:20:05:fd:b5:40:
a0:52:80:cc:35:89:4b:36:ec:29:e4:5f:8a:f5:66:
75:9b:1e:28:6c:7f:eb:33:f1:b4:6a:74:bb:70:64:
f7:7e:34:66:10:3c:03:1e:8e:1c:83:ab:d3:50:1f:
cf:54:3e:e1:19:5c:47:97:d3:ba:6e:a6:4f:b2:d2:
8c:7a:87:c3:76:d0:8c:5f:80:e6:1d:54:1a:51:69:
86:81:cc:38:18:75:10:41:eb:c5:2b:00:aa:97:db:
ab:9e:6c:f2:61:ed:a4:6a:a5:37:53:be:4e:59:7b:
2a:d3:6b:36:4d:28:3f:fe:e6:c9:6a:da:35:56:a6:
fe:cc:8a:69:8f:f6:da:48:6a:e7:dc:8b:57:37:21:
57:48:c0:28:3e:25:17:22:84:59:20:eb:2a:0c:9e:
93:30:3e:25:8b:0f:2b:dc:4c:09:de:d4:6d:dd:a8:
23:07:db:07:2b:c4:c3:73:d7:16:26:86:15:a5:24:
ac:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:62:AD:68:64:A2:12:21:14:92:4B:0B:03:F7:7F:98:BA:83:C4:BD
X509v3 Authority Key Identifier:
keyid:28:F7:AF:EC:4D:3F:06:F8:0D:68:72:A6:D6:24:6C:D0:1E:73:D6:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPev7E0_BvgNaHKm1iRs0B5z1qY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/217a30-8ee1-4913-a127-576d403c918f/1/KPev7E0_BvgNaHKm1iRs0B5z1qY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0a:aa:5e:0e:18:43:27:8a:4e:c0:64:12:79:73:a4:b2:b9:47:
c1:d7:cf:d2:14:91:55:f3:16:62:70:6c:5c:3c:50:18:ce:83:
bc:5f:e1:9b:17:23:b5:7f:59:91:57:63:2c:c9:7c:8f:a3:c9:
88:2e:37:1b:ce:52:d5:2d:93:51:ba:12:4b:76:49:de:9b:f9:
41:18:06:b9:3b:f8:56:9a:5e:24:88:79:62:e0:15:a2:2f:0b:
b0:83:e8:4b:1b:ad:16:2f:06:40:5a:67:32:30:06:14:d2:26:
fe:07:de:a5:a0:79:f0:68:89:7f:6b:49:19:57:d9:49:ef:3a:
30:b1:d7:45:d3:46:6e:e9:52:a3:9b:48:63:84:c8:fd:7c:91:
6a:c2:07:33:4a:a1:0a:60:5f:49:ac:40:9c:b2:f1:70:ea:b5:
06:a7:0d:2d:ae:f5:01:a0:bd:65:b3:65:69:c9:a2:52:9d:4e:
0f:6c:64:4d:08:6c:1a:74:9f:f2:0e:af:97:56:13:2f:00:ee:
a3:8a:0a:16:ce:7d:ec:81:6a:6b:5c:2b:61:5c:8b:33:5b:b0:
df:c4:8e:cb:2a:d9:5a:2a:c1:ee:ab:1c:20:40:00:aa:43:28:
11:fe:a7:9b:b6:03:05:fa:de:56:9e:f7:8d:b1:7a:0c:28:d9:
db:d3:a2:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:22:17 2026 by rpki-client