Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: H7WKT2DP3gQBqAOQGDWudrHATD4Q0dDyjqEZQbkLzhI=
Subject key identifier: 4F:24:C9:53:4C:3B:22:37:B5:D1:4E:F1:F4:61:36:F6:AE:F1:67:F6
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 019E9C2952B7FF7FD883CEA5CBA17B2784DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 0AEF
Signing time: Sat 06 Jun 2026 09:00:14 +0000
Manifest this update: Sat 06 Jun 2026 09:00:14 +0000
Manifest next update: Sun 07 Jun 2026 09:00:14 +0000
Files and hashes: 1: PvUHe-pn4nnaOYWtjIpbbOjrGvo.roa (hash: 24ateHwuMk5CGZJvNYulALkvFpYFOYXvbKO8p0Z7NPQ=)
2: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: Za9X5SYoIs6pT5iD/pT0hjneZJ/5oFJX7EK9KxAhK2o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 09:00:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9c:29:52:b7:ff:7f:d8:83:ce:a5:cb:a1:7b:27:84:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Jun 6 09:00:14 2026 GMT
Not After : Jun 7 09:00:14 2026 GMT
Subject: CN=4f24c9534c3b2237b5d14ef1f46136f6aef167f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:14:90:57:ac:16:fd:18:9a:14:7c:66:dc:83:
71:0b:b8:0b:4c:13:9e:a9:87:36:00:1f:ea:49:01:
73:be:55:cb:c5:69:25:b4:2e:4c:d9:f5:37:26:df:
3b:74:7f:22:78:18:8c:81:6c:77:25:a0:7d:20:51:
38:81:00:3b:e2:24:3f:29:62:11:d1:30:2f:50:f5:
7c:e2:d1:97:8a:e7:64:d0:9f:c6:f6:d3:59:04:02:
6f:01:14:52:13:a9:32:53:7a:d5:8c:78:db:2c:8d:
fe:5d:65:21:be:c5:e9:e6:52:c8:14:a3:16:9c:6b:
aa:68:88:bb:3b:ca:b4:46:72:1d:bf:31:c2:e3:50:
40:49:51:b8:37:b7:ee:ca:d0:ca:48:62:30:8d:98:
df:7a:87:29:56:fc:9b:a1:1f:29:3f:f8:ec:83:ca:
92:69:f9:59:6d:36:46:4c:6e:cf:96:64:d2:ea:68:
ba:6c:94:d7:9f:74:19:c7:3b:e0:f7:cb:e7:7d:86:
33:a3:79:4d:a9:bc:b6:b2:62:1f:47:38:40:fe:5c:
f8:23:06:99:e9:88:41:5e:64:b5:d0:93:ed:41:ea:
2e:f1:9c:fd:39:af:dc:12:da:a9:74:3e:b4:a6:78:
f9:ec:dd:49:25:41:42:13:8d:43:11:24:51:ca:83:
e0:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:24:C9:53:4C:3B:22:37:B5:D1:4E:F1:F4:61:36:F6:AE:F1:67:F6
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:43:6b:06:60:d7:ff:12:f7:98:47:3c:23:5f:66:59:fd:d9:
27:3b:95:47:b5:18:11:95:21:b1:be:9f:ba:5a:86:03:a5:cb:
a4:5d:64:01:59:fb:d8:a4:59:82:10:90:02:9f:d1:86:2a:c2:
9d:4a:89:15:cf:79:45:0c:43:b4:8c:36:3e:a5:69:a3:c7:68:
cc:28:52:91:13:3a:5a:93:17:cb:40:2c:26:2b:28:24:49:96:
d5:f2:a5:13:06:9d:c9:64:8f:ae:92:b7:53:98:77:e7:b5:4d:
9a:99:0d:c4:46:a9:e1:97:40:f0:1c:0b:c3:ff:1d:e0:98:51:
96:5e:6e:c2:ef:c8:88:66:d9:fb:f0:bf:35:55:9d:0a:60:a8:
de:eb:10:38:ee:eb:59:2b:69:15:c1:f2:00:c6:ee:c8:07:2e:
46:88:93:69:ce:e5:c5:fa:03:a6:59:d9:bd:42:8a:b7:93:6b:
f0:94:71:23:a3:bf:6b:78:ca:d8:f0:dd:39:3e:f5:ac:22:48:
9e:e6:56:a0:36:ef:86:eb:68:19:17:f8:07:92:19:08:9a:da:
cd:0d:ca:f2:8c:b3:bf:a3:3b:9b:7d:1a:a3:c2:84:ec:a6:f0:
52:ed:e5:ac:cf:1f:96:c6:24:ae:67:e5:ef:ad:45:b6:26:f9:
20:98:b8:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 19:28:20 2026 by rpki-client