Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: gmgOSfpiFDGI+bqpxyIN54AT70wIEJ8u6vptsIadhlQ=
Subject key identifier: 03:CA:5B:68:0C:0D:3A:74:8D:01:B6:36:3C:62:DC:B1:24:18:1F:06
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 019CC2CEEE845723D0EA063DC05C433213EC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 11D0
Signing time: Fri 06 Mar 2026 11:01:07 +0000
Manifest this update: Fri 06 Mar 2026 11:01:07 +0000
Manifest next update: Sat 07 Mar 2026 11:01:07 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: bZQOcRFajBvnOiIVmsppPf3wUtYRkH4PWAzpv7tnSW4=)
2: NNW9fBL9fFAJGVwGGKC0u4xaMBk.roa (hash: QeuasZLkGWjhmBmI2lmaeg2T0aIzvZFSj+N457z3Xik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Mar 2026 10:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:c2:ce:ee:84:57:23:d0:ea:06:3d:c0:5c:43:32:13:ec
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Mar 6 11:01:07 2026 GMT
Not After : Mar 7 11:01:07 2026 GMT
Subject: CN=03ca5b680c0d3a748d01b6363c62dcb124181f06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:40:1f:1a:65:f2:33:c1:73:ae:16:23:00:21:
02:c6:c8:16:f7:4f:37:d1:7b:07:16:f6:af:a5:b9:
6f:6c:28:41:a1:8a:b8:1e:7a:c1:09:71:a8:c3:49:
cb:27:99:7a:9b:44:b5:c5:63:93:50:0f:65:bf:2f:
c7:d5:26:a8:5c:7e:71:ba:9a:38:0a:95:89:46:c5:
b2:21:0d:ab:9f:dd:76:cd:3c:94:ee:e4:0b:75:bd:
b6:a4:87:0e:3b:16:cd:3f:52:d9:ee:65:36:d8:65:
e6:e9:ae:1f:f2:64:c5:f0:17:ad:40:d9:2b:6a:ae:
14:d2:02:f4:4d:1f:df:a2:06:04:6d:67:8c:1e:70:
e1:ef:85:d0:6e:2f:d2:14:d6:0b:3e:52:e2:8c:3f:
db:fe:41:a8:29:10:45:85:04:0f:05:70:38:17:68:
6f:9b:44:76:13:ba:df:98:82:4b:62:c5:7a:6b:6c:
7b:a7:af:f5:e4:06:35:81:a8:82:08:70:8d:6a:2d:
fd:e5:1a:71:55:cb:d3:da:7a:4b:d9:95:26:9e:31:
f5:ed:9f:6a:f2:eb:7f:1c:de:73:99:53:cd:35:e3:
1c:ef:93:96:22:21:b2:4e:74:71:fd:ca:c0:96:02:
4c:a8:2a:95:27:40:74:f5:4e:50:9e:55:e0:a4:79:
c7:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:CA:5B:68:0C:0D:3A:74:8D:01:B6:36:3C:62:DC:B1:24:18:1F:06
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:ed:31:76:96:51:79:1c:55:e5:ee:c5:ac:60:aa:e0:77:30:
11:16:17:e2:8e:71:fc:49:25:b1:33:01:97:9f:6b:19:ca:33:
75:fb:bf:0d:8e:90:2d:37:4d:47:4b:84:3f:d2:60:7d:a2:44:
f2:3c:42:d8:d4:58:17:17:fc:82:b3:18:8b:0d:b3:c4:33:82:
0f:e5:19:3b:8e:c1:dc:a4:d1:17:02:34:bd:b7:8e:df:d6:7d:
b5:a1:51:a2:e1:ce:fa:89:c6:18:8d:c6:35:ce:8c:55:8e:41:
4f:c6:fe:bc:4d:17:b6:f0:cb:f1:f2:27:71:7e:20:83:1d:e1:
aa:43:a2:5b:1e:e2:c1:a7:f2:63:ac:8c:84:e0:33:1e:f7:32:
73:46:a9:26:1a:01:25:03:f0:6a:33:94:2e:d4:6c:15:d9:01:
7f:f1:7c:08:cb:cb:43:db:eb:f0:a4:d7:ae:f7:f9:58:dc:fa:
e4:f8:86:ca:b8:83:5c:fe:e7:58:c7:e9:44:df:e5:44:08:64:
3b:fc:e6:f2:f9:d0:c3:93:17:0e:ec:3a:bc:86:51:fa:bd:0b:
14:bf:66:da:88:6f:71:6a:dd:76:44:dc:ba:60:05:60:7d:97:
7b:03:15:2b:fc:50:a2:30:91:61:56:c0:8d:f5:de:23:bb:0b:
34:58:fb:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 6 20:19:17 2026 by rpki-client