Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
File: _KrlFMX5lAORQ1YU15QEvuEgmzs.mft (raw, json)
Hash identifier: 1Hqbsm2vMXJClP6mt6GATb6AQiiyzcuQol4RJeFjYs0=
Subject key identifier: A2:EA:5A:B3:9A:30:84:34:79:8A:49:44:B0:87:C8:F4:A8:F4:BC:46
Authority key identifier: FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
Certificate issuer: /CN=fcaae514c5f9940391435614d79404bee1209b3b
Certificate serial: 019E9E17BF0261DECFB22B94914DD23DA9C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
Manifest number: 0AF0
Signing time: Sat 06 Jun 2026 18:00:16 +0000
Manifest this update: Sat 06 Jun 2026 18:00:16 +0000
Manifest next update: Sun 07 Jun 2026 18:00:16 +0000
Files and hashes: 1: PvUHe-pn4nnaOYWtjIpbbOjrGvo.roa (hash: 24ateHwuMk5CGZJvNYulALkvFpYFOYXvbKO8p0Z7NPQ=)
2: _KrlFMX5lAORQ1YU15QEvuEgmzs.crl (hash: OmpBwT0ihiJO0NQhWn2xhiqgl/3WzMpX56JYoo/wohk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 07 Jun 2026 13:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:9e:17:bf:02:61:de:cf:b2:2b:94:91:4d:d2:3d:a9:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fcaae514c5f9940391435614d79404bee1209b3b
Validity
Not Before: Jun 6 18:00:16 2026 GMT
Not After : Jun 7 18:00:16 2026 GMT
Subject: CN=a2ea5ab39a308434798a4944b087c8f4a8f4bc46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:19:ff:7a:2f:3c:9c:6e:55:a6:32:36:51:b4:
a3:55:fe:18:e3:d8:af:31:46:91:6b:a4:ab:9f:1d:
b3:84:62:23:bb:ab:04:82:6d:7d:c5:01:ba:bd:e8:
fe:e8:d3:2b:48:9e:5a:91:1f:ca:c8:99:75:5b:31:
83:74:82:80:f7:62:ec:de:6f:52:03:69:aa:ca:bb:
e1:3c:dd:d4:1b:8a:e3:f0:79:13:2f:16:bb:3a:8c:
a1:64:29:49:78:c9:2d:17:0a:55:08:b4:09:d3:43:
8d:a2:91:96:04:65:44:3d:0a:06:5c:90:81:8b:34:
93:98:09:49:7a:f9:12:33:c9:f4:d8:f5:71:bb:ad:
96:0e:4a:50:ce:db:7f:59:ac:22:4d:2d:d1:31:4d:
09:9e:d0:da:63:6a:91:39:4f:f0:3b:f0:08:90:64:
e7:86:9a:02:56:13:9e:63:32:6e:91:6a:7b:42:ab:
18:f5:5d:37:d7:84:c7:51:b1:e4:41:68:b7:30:ee:
c4:db:0a:e3:d6:9e:63:11:30:3d:d9:4c:13:c6:6f:
ae:ac:9f:ca:28:2b:e4:45:1b:cd:95:b3:22:77:03:
8b:d0:ea:e4:bb:03:31:5c:84:ec:49:7b:1e:e4:8c:
2b:6a:89:92:8d:cc:d9:88:32:3c:c3:2b:3f:b0:89:
cd:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:EA:5A:B3:9A:30:84:34:79:8A:49:44:B0:87:C8:F4:A8:F4:BC:46
X509v3 Authority Key Identifier:
keyid:FC:AA:E5:14:C5:F9:94:03:91:43:56:14:D7:94:04:BE:E1:20:9B:3B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_KrlFMX5lAORQ1YU15QEvuEgmzs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/562e1d-952a-4fea-9e4a-67a98e256cc7/1/_KrlFMX5lAORQ1YU15QEvuEgmzs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:09:2d:23:b7:91:be:fb:d8:f1:cd:4f:75:60:80:84:30:09:
ed:09:34:67:27:06:8b:08:b2:db:9e:79:59:d6:83:a5:44:59:
3f:2f:ec:e9:d7:0e:ec:a2:5a:cf:79:dd:ca:7a:3c:82:e9:e0:
42:03:b6:3e:49:64:a7:18:53:db:75:28:a6:9a:82:ca:08:f4:
0a:e5:6e:31:b8:f0:3e:6b:3e:e1:ff:b6:47:e9:29:4e:2b:db:
da:70:d3:87:c1:b3:a0:ba:c1:12:fb:1b:8a:44:e0:34:5e:2f:
09:03:10:97:f8:14:a7:55:55:ba:4c:34:3c:db:b3:af:aa:d3:
2f:e3:a4:e7:53:91:89:cd:2e:6f:f8:b6:77:af:fa:99:3c:97:
be:e0:79:f8:04:d2:a2:34:dc:36:d1:ef:4d:7c:34:00:90:c7:
8f:60:c9:2e:30:5e:d1:f4:3b:08:f5:bb:7f:dc:40:ab:21:e4:
d4:e8:0c:f6:d5:06:bf:b8:63:7a:e4:3b:70:09:74:65:f1:a6:
27:a2:69:40:a3:e0:81:0c:58:01:bf:5f:c4:79:00:cd:9c:9d:
9e:6e:8f:29:7a:36:ae:e8:20:90:75:8b:53:2b:f7:a1:b8:82:
c9:64:c7:f9:6d:7f:bf:40:fd:20:17:66:d1:1f:f5:4c:e0:77:
fa:12:d1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 6 20:41:09 2026 by rpki-client