Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: ouG2QhYsYRgT9mm3zHkjjdKapoBUPKypIhbp7bKIrnc=
Subject key identifier: 90:F2:A8:41:1B:2F:80:D5:4E:99:0D:B8:40:F5:8A:32:48:EC:39:90
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 019DB27DF820E616A2199F47FE975CE098DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 0A76
Signing time: Wed 22 Apr 2026 00:01:33 +0000
Manifest this update: Wed 22 Apr 2026 00:01:33 +0000
Manifest next update: Thu 23 Apr 2026 00:01:33 +0000
Files and hashes: 1: PvUHe-pn4nnaOYWtjIpbbOjrGvo.roa (hash: 24ateHwuMk5CGZJvNYulALkvFpYFOYXvbKO8p0Z7NPQ=)
2: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: 0GDZ6Nb6UnHQRvAFhBqI94R2wORH0GyeehVxXUlrl1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 23 Apr 2026 00:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:b2:7d:f8:20:e6:16:a2:19:9f:47:fe:97:5c:e0:98:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Apr 22 00:01:33 2026 GMT
Not After : Apr 23 00:01:33 2026 GMT
Subject: CN=90f2a8411b2f80d54e990db840f58a3248ec3990
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:11:c7:4b:c2:bc:dd:d1:c6:d1:46:b4:f9:bc:
91:23:69:1f:56:00:c3:b0:28:6e:bb:b2:30:3c:08:
37:ba:f9:1c:66:5e:bd:39:d8:55:64:8c:a8:88:66:
5a:2e:5c:8a:b3:3d:68:9a:75:4e:47:8e:89:5f:f0:
c0:c1:c6:d3:dd:ab:3b:29:23:81:8c:6a:85:22:e0:
94:fe:b4:57:82:84:4e:5f:39:2c:64:cf:1f:28:d0:
88:f7:8b:8f:b4:81:6d:9d:01:a7:41:60:2f:ce:f3:
3a:33:f9:47:44:39:84:95:04:fa:d5:b0:34:6b:bd:
32:a8:f5:dd:2f:be:83:62:47:01:15:85:e2:3f:b9:
9b:d8:3b:f3:57:ee:d4:c4:5c:7e:c2:e0:e6:1d:a9:
33:75:6d:04:69:48:cd:a2:93:f9:dc:8e:0a:75:89:
ae:71:e3:50:d2:44:8a:15:49:e2:e8:5a:df:83:6a:
01:ca:5d:ca:ce:53:01:01:cd:e7:d2:1c:5f:a0:aa:
27:d4:41:50:82:b7:3e:a5:8a:84:62:11:d0:e4:81:
ca:02:67:3a:79:d4:3a:84:7b:79:12:ce:17:20:e0:
a8:6b:d4:c2:63:6d:26:88:8a:c7:ac:d4:f4:a8:4c:
f6:3c:96:05:43:b2:6b:24:69:7a:b4:d7:8e:c2:de:
c7:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:F2:A8:41:1B:2F:80:D5:4E:99:0D:B8:40:F5:8A:32:48:EC:39:90
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:5e:90:64:20:21:d7:5c:1a:92:65:45:be:46:c1:0a:3f:d2:
96:ad:b5:53:e5:1a:6a:b0:d6:c5:64:99:88:c5:00:f4:c3:54:
04:52:1f:93:9c:b5:be:9f:ab:2a:d8:ff:28:b9:fe:e9:3b:e4:
41:83:cf:cd:42:26:59:d8:f9:ae:64:ad:3e:aa:55:5c:0d:7f:
19:d4:c9:34:9a:01:60:52:5e:4e:09:eb:8c:82:45:1b:9a:8e:
00:3d:10:fa:90:b4:58:b6:9c:ce:08:bf:3d:5a:a4:4a:8c:c5:
c0:61:9b:e7:61:9c:e0:20:d4:1e:c5:42:e6:d4:82:b9:63:63:
65:d1:9a:64:1e:67:d6:23:46:04:d0:a8:b1:5c:61:fa:ca:36:
d0:13:a2:61:6e:85:09:90:62:45:24:8d:b6:d4:b1:b3:01:d9:
38:99:55:80:e8:c3:c0:cd:3a:66:7e:86:aa:a0:3f:96:bd:1e:
f7:82:b8:dc:92:88:18:90:3d:19:cd:eb:c7:73:88:56:13:ac:
ff:e9:a8:16:0e:ac:6c:7a:51:c0:7f:d5:70:aa:ed:6e:aa:06:
c0:89:33:34:bc:d0:0d:59:8e:12:24:b3:fb:40:31:2c:49:5f:
98:f2:85:84:07:1c:67:bf:40:40:8d:0a:60:f4:f2:76:3d:2f:
3a:f3:94:f6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 10:58:53 2026 by rpki-client