Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
File: KL69RlhhhHPtTIN2fFHejiM8MpI.mft (raw, json)
Hash identifier: el8H13Xwut7Fy0G6bqm0TB9Qh46yoUzYrhBFORxqF6Y=
Subject key identifier: A3:40:8D:CF:61:4B:83:94:E8:C1:C5:73:2B:1C:83:99:1B:88:E0:F5
Authority key identifier: 28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
Certificate issuer: /CN=28bebd4658618473ed4c83767c51de8e233c3292
Certificate serial: 019E924AECF641F94F3DBA0E7AD88518E7F1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
Manifest number: 12C0
Signing time: Thu 04 Jun 2026 11:00:44 +0000
Manifest this update: Thu 04 Jun 2026 11:00:44 +0000
Manifest next update: Fri 05 Jun 2026 11:00:44 +0000
Files and hashes: 1: KL69RlhhhHPtTIN2fFHejiM8MpI.crl (hash: d8MJlwdKFC3X5ZAMj7UmDftTAajhktIR4Yrn7l06wxc=)
2: NNW9fBL9fFAJGVwGGKC0u4xaMBk.roa (hash: QeuasZLkGWjhmBmI2lmaeg2T0aIzvZFSj+N457z3Xik=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 05 Jun 2026 07:00:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:92:4a:ec:f6:41:f9:4f:3d:ba:0e:7a:d8:85:18:e7:f1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28bebd4658618473ed4c83767c51de8e233c3292
Validity
Not Before: Jun 4 11:00:44 2026 GMT
Not After : Jun 5 11:00:44 2026 GMT
Subject: CN=a3408dcf614b8394e8c1c5732b1c83991b88e0f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:ca:ea:d9:76:90:c6:ad:bd:60:ea:74:6f:d4:
b2:73:7e:b9:45:36:ed:46:11:be:ab:57:b3:d3:70:
ec:af:8b:6e:c8:2b:2a:ec:9f:2e:2b:13:49:97:ca:
10:18:61:41:fc:a6:f2:bf:22:5a:41:2b:1a:a9:40:
79:0c:e2:7f:0d:36:dd:0f:e8:c7:5c:ca:b4:09:7a:
23:f2:91:65:b7:98:ba:e5:c5:2f:19:a2:f1:77:cb:
a5:5b:cd:e3:eb:6f:e4:ed:33:f1:6a:1a:61:a0:dd:
6d:98:d1:7c:3b:75:64:d0:d8:d7:51:21:27:e4:f9:
d4:32:d5:d5:3a:e0:98:ef:da:b2:b2:1b:ff:7b:85:
fd:2b:fe:39:19:a7:f0:21:eb:8e:7d:8e:8e:d7:55:
db:e7:0c:31:b6:e0:c4:dc:af:27:ca:69:55:fc:3a:
f6:bc:f2:5f:7d:71:99:cc:a7:35:1b:c4:56:06:dd:
76:9a:ae:7d:d1:32:39:c1:e2:34:56:de:8c:f4:45:
0b:c1:1b:b7:b5:40:c9:a4:93:63:1b:94:09:19:20:
0b:02:d1:22:76:a6:6f:b8:83:a5:20:9c:8b:9a:56:
b3:f2:4d:87:c0:cf:cc:31:91:83:45:7d:2f:f9:97:
3c:35:c1:91:17:c4:84:17:5d:2a:a4:a5:ce:26:ad:
87:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:40:8D:CF:61:4B:83:94:E8:C1:C5:73:2B:1C:83:99:1B:88:E0:F5
X509v3 Authority Key Identifier:
keyid:28:BE:BD:46:58:61:84:73:ED:4C:83:76:7C:51:DE:8E:23:3C:32:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KL69RlhhhHPtTIN2fFHejiM8MpI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/aa975c-b9b5-4651-bc5b-ba7956b0f2dd/1/KL69RlhhhHPtTIN2fFHejiM8MpI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:2b:7c:0f:59:9c:7f:d5:83:95:dc:89:63:ab:bf:27:9a:f9:
36:ba:92:35:05:50:df:61:de:c8:a6:e3:6f:cc:6d:a1:2a:7b:
f2:d9:d6:34:1f:ed:dd:4a:be:ca:ee:87:0b:b5:01:17:9e:6f:
f6:2f:99:84:45:40:e7:fc:f6:76:cb:9e:c8:06:8d:cd:6b:84:
e4:3b:f4:e3:ac:58:92:c0:1e:08:4c:8e:7d:fb:46:f5:27:20:
e5:00:03:da:d3:dc:4a:9b:9d:82:47:b4:11:f8:60:7c:f8:09:
de:11:7f:ff:d0:a4:71:3b:dc:d8:fc:db:74:cc:e3:b7:d8:77:
14:0f:50:bb:e7:0a:bc:23:4b:6e:33:a4:8f:63:50:cf:40:38:
29:ef:cb:8d:df:81:24:25:00:67:eb:a8:a3:7d:0e:9d:d6:22:
e5:49:b1:05:18:53:49:39:a9:00:1a:3a:1e:8d:68:13:99:80:
5b:0b:72:a6:8d:00:12:7d:51:34:93:81:fd:76:3d:e8:42:35:
dc:2e:c9:12:76:ea:b9:7d:72:55:d0:40:0a:94:07:4b:e4:56:
52:27:2c:dc:7e:1e:e8:42:f9:11:c1:7c:b0:e8:8f:f4:54:14:
9c:85:d4:c5:3b:de:6e:b7:79:86:2c:96:bb:00:91:ac:71:a3:
a5:d2:bd:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 16:00:57 2026 by rpki-client