Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
File: kERLB53wCKfHy-KPy6Xb4GIOjhc.mft (raw, json)
Hash identifier: 5rPAl97428MMOuk+5e8MaNJR9I3PuaCuP7jEtpphF5k=
Subject key identifier: BF:36:F1:24:DF:EF:7F:36:8E:75:48:20:E8:75:24:7F:F8:76:CB:E0
Authority key identifier: 90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
Certificate issuer: /CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Certificate serial: 019E9C9815F75F754C3B7ABB9D64A062992C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
Manifest number: 17BB
Signing time: Sat 06 Jun 2026 11:01:13 +0000
Manifest this update: Sat 06 Jun 2026 11:01:13 +0000
Manifest next update: Sun 07 Jun 2026 11:01:13 +0000
Files and hashes: 1: kERLB53wCKfHy-KPy6Xb4GIOjhc.crl (hash: HouNinyUEcBweTxwwO2lIYjdVNhEuK+mrvW+NOoC9DU=)
2: qh7XZDst8WsBCGjKLPzTSR00_9w.roa (hash: 91hvylgfnm1S7Q889lgwTcLMuKxZDx/xX3dO/XE0rko=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 04:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:98:15:f7:5f:75:4c:3b:7a:bb:9d:64:a0:62:99:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90444b079df008a7c7cbe28fcba5dbe0620e8e17
Validity
Not Before: Jun 6 11:01:13 2026 GMT
Not After : Jun 7 11:01:13 2026 GMT
Subject: CN=bf36f124dfef7f368e754820e875247ff876cbe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:45:8d:a2:28:4a:e6:2e:e9:28:68:7c:fa:ef:
83:4f:5b:28:35:21:e2:8c:fa:73:c6:c0:7c:cc:9b:
98:3f:93:dd:90:d7:c2:5a:9b:3a:05:16:2f:56:bd:
8e:57:52:95:5c:5d:94:c7:47:eb:5c:4a:4f:7a:3a:
bd:53:70:f7:aa:08:3e:be:b8:ba:58:ed:e7:72:70:
d0:43:07:11:2e:4c:2c:f0:da:f2:68:aa:35:2e:92:
c6:5e:c4:47:9e:10:f7:a1:63:e2:2d:9a:8a:fd:66:
86:17:45:91:88:13:d6:2d:c2:20:3f:85:e8:f5:ea:
25:48:d9:97:12:65:d4:f4:77:bc:24:b0:4f:de:5d:
60:6a:e7:fc:a7:df:d7:5d:8a:52:7e:5d:fb:76:5f:
5b:5b:51:32:58:f6:bf:b2:00:2f:ba:d3:3b:32:da:
b8:88:35:fd:8d:ba:fb:35:f7:bd:fa:8a:ef:0e:cc:
57:89:58:8b:3b:6e:15:74:90:49:1e:b8:67:ed:2c:
09:00:dc:86:96:52:73:3a:b3:5b:47:de:7b:14:db:
71:0e:91:2b:7b:5d:ac:46:15:fc:82:29:95:78:74:
ca:b8:57:63:30:14:59:1b:d7:54:a6:91:45:51:79:
17:c6:41:3a:12:55:74:9a:41:fd:67:61:10:db:5c:
df:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:36:F1:24:DF:EF:7F:36:8E:75:48:20:E8:75:24:7F:F8:76:CB:E0
X509v3 Authority Key Identifier:
keyid:90:44:4B:07:9D:F0:08:A7:C7:CB:E2:8F:CB:A5:DB:E0:62:0E:8E:17
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kERLB53wCKfHy-KPy6Xb4GIOjhc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0e/24ec8e-1cc6-45e3-9063-99149867dbf7/1/kERLB53wCKfHy-KPy6Xb4GIOjhc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:4f:ac:d8:e5:3b:ae:15:2c:9f:4c:9f:ed:b3:84:50:84:22:
2b:11:da:fc:c3:3f:37:0b:86:94:b2:9f:5a:f6:76:28:78:f4:
b0:b2:54:dc:99:aa:bb:fe:6b:72:0d:15:02:54:8f:5c:59:1f:
0f:d9:d2:21:ab:f7:c2:26:17:5b:88:29:31:3c:c8:c3:54:84:
73:0c:da:a1:c6:6d:2e:5c:90:c0:e3:22:8c:fa:00:03:2f:fa:
94:51:83:d5:8a:8b:a2:63:43:2f:1a:68:e6:70:7a:f9:8e:02:
4e:f2:a7:68:6d:09:6b:9a:af:36:22:37:69:dd:9c:92:2d:6c:
cc:01:fb:be:a5:15:7a:9d:a0:df:79:a1:a0:12:9a:c0:20:45:
70:27:bc:d5:e3:ef:65:47:6d:1e:f9:03:bc:1c:c1:65:39:33:
d0:44:85:01:ad:ce:17:4c:7e:b1:4d:ba:83:52:83:00:0e:49:
fd:4d:7e:23:bf:be:ea:24:b4:27:3f:b4:6f:4c:4b:c4:e6:76:
29:6a:1a:4d:32:74:fc:b7:26:b4:f4:68:84:67:09:90:b4:f9:
44:f2:ff:44:35:f4:19:15:0a:1b:37:13:fa:9c:a7:ac:55:9a:
90:23:18:a8:65:83:e7:da:92:5b:6a:a8:15:90:f3:cb:c8:97:
24:71:95:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 13:19:10 2026 by rpki-client