Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
File: rKKhlS5xiUSkBDSg6-__2iv-7V8.mft (raw, json)
Hash identifier: A7koL6yTAFMy0vUWtppmbbCHacruP90z73mzkWh1Z+k=
Subject key identifier: DC:25:5D:97:F7:D6:8F:97:0C:84:F6:65:75:04:2F:D0:00:59:1F:1F
Authority key identifier: AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
Certificate issuer: /CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Certificate serial: 019D37899DE2F818E58B3D6CD3A82428FA36
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
Manifest number: 154C
Signing time: Sun 29 Mar 2026 03:00:58 +0000
Manifest this update: Sun 29 Mar 2026 03:00:58 +0000
Manifest next update: Mon 30 Mar 2026 03:00:58 +0000
Files and hashes: 1: qtM2kctXnuJchmGpZkBYifDuRYk.roa (hash: ZfaEZVb7iupk65U466u1KICKWagoC63beOYY7AuNp38=)
2: rKKhlS5xiUSkBDSg6-__2iv-7V8.crl (hash: O97jjklyPve1L9rHz1xW4Sjd/QRrfmLOaF/Hx9+iMB8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:9d:e2:f8:18:e5:8b:3d:6c:d3:a8:24:28:fa:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca2a1952e718944a40434a0ebefffda2bfeed5f
Validity
Not Before: Mar 29 03:00:58 2026 GMT
Not After : Mar 30 03:00:58 2026 GMT
Subject: CN=dc255d97f7d68f970c84f66575042fd000591f1f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:b6:5e:25:dc:ad:56:62:90:0b:cf:b3:9d:68:
d0:5d:08:21:9b:a5:b0:4f:f0:ad:82:e8:61:5a:b1:
30:9d:38:de:a4:6e:4f:71:38:a2:d3:cc:86:6f:47:
ea:a9:fc:6e:6a:af:04:2c:50:74:63:91:12:64:12:
cb:97:40:10:30:39:2b:d3:d1:10:47:e4:d1:14:92:
d8:06:1b:4d:4b:29:83:9e:15:2c:b4:c0:d7:e9:8d:
b4:dd:f0:a1:0a:3f:09:12:0d:46:e8:4e:ac:b6:f6:
14:7a:12:0e:a4:31:b6:7f:8b:5b:43:25:6f:6f:7e:
e1:cc:7a:24:84:00:c2:b8:c9:db:a7:0c:29:4e:15:
95:d2:e3:55:dc:0c:9c:2b:db:55:88:84:3f:50:93:
75:ea:74:fb:aa:15:3b:91:ae:bd:f0:c4:34:0d:42:
b7:08:c7:a9:77:0c:33:68:2d:63:d5:b0:6f:cd:2f:
a9:55:ca:47:2c:d8:88:58:99:9c:14:72:2b:3b:43:
8c:5c:9b:23:9d:54:3d:6b:80:96:18:4f:cc:b5:3b:
8b:2f:bb:4f:48:b9:43:d4:1e:41:9a:e1:6c:fe:f5:
04:fc:db:16:30:03:cc:c9:a3:80:1f:d6:01:e3:b1:
d5:a8:6d:81:08:25:0b:c4:1d:99:bd:e8:f3:ec:9a:
8b:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:25:5D:97:F7:D6:8F:97:0C:84:F6:65:75:04:2F:D0:00:59:1F:1F
X509v3 Authority Key Identifier:
keyid:AC:A2:A1:95:2E:71:89:44:A4:04:34:A0:EB:EF:FF:DA:2B:FE:ED:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKKhlS5xiUSkBDSg6-__2iv-7V8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/a264a8-a666-4c87-851c-ada24ef310ca/1/rKKhlS5xiUSkBDSg6-__2iv-7V8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:5d:50:e2:d1:ca:48:2f:c8:82:f4:d5:85:0d:51:6b:4f:d0:
6a:0c:5e:e3:12:d1:82:2d:e8:34:2f:5c:bc:0a:f8:83:d5:00:
6b:af:0c:f5:49:d9:5c:72:0e:9b:56:4b:88:42:63:51:78:97:
4d:21:3d:0a:cf:30:af:e2:3b:e9:14:fa:72:d5:2b:a3:a3:21:
74:4e:63:9e:1e:33:92:49:fc:8f:77:40:84:9d:53:98:0b:40:
d6:4f:b5:57:93:e3:65:bd:23:37:8a:89:37:00:c8:b2:d1:52:
bc:3b:f9:51:c0:8f:5d:63:6e:56:10:9f:9a:15:9e:da:5e:8c:
79:eb:e5:2d:98:6a:72:bb:b4:21:68:aa:1b:64:c6:3e:a1:90:
10:c7:1b:84:b3:ba:5f:31:62:e6:24:6c:ce:1e:b0:a1:d1:1e:
3d:ce:ca:d2:a9:a4:b1:1e:48:3a:5a:7b:06:42:b6:8e:6f:7c:
c4:58:88:7e:79:2f:2f:bd:a8:7a:07:ce:bd:72:ed:60:a8:3e:
b4:12:17:f8:74:a7:30:8a:ed:18:f9:ca:62:ac:6e:8a:01:e1:
42:21:5e:57:0d:09:78:d4:bd:ad:79:5e:d4:ee:3d:91:99:39:
1d:36:fd:c1:a9:e3:4e:eb:e2:df:9d:73:df:d3:84:af:a9:6f:
19:eb:dc:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:01:09 2026 by rpki-client