Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
File: CKkhe9gwYnyz5lfAuQY8giNN28s.mft (raw, json)
Hash identifier: an02Y4ou7VE0GL/jcqb+sL5dwolKH7VvnoZw5WAPh1s=
Subject key identifier: 54:51:31:7C:99:E0:68:DD:7F:89:0F:12:4D:CF:CF:04:76:3E:22:72
Authority key identifier: 08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
Certificate issuer: /CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Certificate serial: 019E2A390A0F3E9749557E2B5B237B25DC8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
Manifest number: 1910
Signing time: Fri 15 May 2026 06:00:41 +0000
Manifest this update: Fri 15 May 2026 06:00:41 +0000
Manifest next update: Sat 16 May 2026 06:00:41 +0000
Files and hashes: 1: CKkhe9gwYnyz5lfAuQY8giNN28s.crl (hash: nVi7EYv9IKkphYCaBkLQ4xKIqPYquc1Gvxy2jP6+9Ok=)
2: r2staIGPnAB2fC8C0axIG4AKOBk.roa (hash: uFZHYgrj8p1JmsefAGSYoXv3EhDU7aOqOew1OyVD1rc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:39:0a:0f:3e:97:49:55:7e:2b:5b:23:7b:25:dc:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a9217bd830627cb3e657c0b9063c82234ddbcb
Validity
Not Before: May 15 06:00:41 2026 GMT
Not After : May 16 06:00:41 2026 GMT
Subject: CN=5451317c99e068dd7f890f124dcfcf04763e2272
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:df:c6:33:77:08:27:2e:00:a6:2d:9c:2e:c2:05:
6c:8b:57:08:a0:2a:80:35:a3:46:5e:94:6d:d1:6d:
5c:49:ce:97:55:7d:86:eb:f2:1d:a0:ce:0a:73:ce:
c5:73:7e:e3:40:12:1d:d1:0c:86:5e:cb:d9:47:23:
d4:65:d4:4b:6f:63:0f:e2:8f:95:66:d3:37:9f:5b:
26:31:04:b5:5c:60:f5:21:cb:fb:35:16:90:39:7f:
eb:59:32:4d:f2:72:ae:23:7d:14:9b:b1:ab:69:ae:
f3:f0:82:ef:80:bc:43:32:e9:63:73:92:82:f9:ac:
7e:79:e3:c0:a9:71:b6:1b:ca:ad:21:45:40:72:1c:
00:a5:bd:b3:6b:e7:80:f6:ab:e1:21:8d:90:ed:2a:
04:d2:0e:e5:ee:dc:ef:b4:99:d3:9d:26:bb:dd:b5:
cf:21:34:9b:9c:5b:fb:b3:df:21:03:c6:29:a5:fb:
d0:3e:39:81:95:46:ce:34:df:10:fe:49:ff:af:b8:
89:f9:6d:54:fa:d2:2b:30:54:e5:91:83:de:b9:d6:
83:7c:74:71:06:7c:6a:9e:28:8b:fd:a2:9d:6a:98:
60:eb:da:b9:5f:6d:50:e0:39:2e:41:19:b7:ff:8c:
2e:70:a7:4a:73:b2:e7:87:8d:3d:ed:b6:09:d1:75:
bb:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:51:31:7C:99:E0:68:DD:7F:89:0F:12:4D:CF:CF:04:76:3E:22:72
X509v3 Authority Key Identifier:
keyid:08:A9:21:7B:D8:30:62:7C:B3:E6:57:C0:B9:06:3C:82:23:4D:DB:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKkhe9gwYnyz5lfAuQY8giNN28s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/7dde44-d7b5-48da-bc68-2c5bac35c344/1/CKkhe9gwYnyz5lfAuQY8giNN28s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:b7:53:25:92:bd:d8:cd:da:1b:d5:7c:09:7d:08:56:81:25:
7b:c8:8c:76:e1:4a:69:32:5d:c5:a2:08:18:7f:46:f4:b7:db:
07:51:c0:9c:ed:e9:b0:e2:a7:1c:a2:ab:9a:90:c9:b4:a0:56:
88:73:73:48:bf:2a:de:d8:39:21:59:66:fe:80:0a:21:fe:58:
d0:9d:e6:eb:3d:a4:a5:05:07:ab:b2:35:cf:51:9c:f5:95:2f:
16:ec:db:0f:4e:b9:3e:2d:e5:62:d3:50:8d:b4:bc:65:78:9e:
c8:1e:bd:77:d1:7d:25:d4:d5:f7:f2:56:28:6f:65:18:4e:30:
7a:c3:20:fc:ed:f7:4a:0d:b5:bc:82:c5:6b:5b:dd:4a:ec:c0:
50:33:99:9d:d0:98:29:f8:bc:80:9c:f6:7b:49:5f:95:17:cf:
a4:e8:dd:0d:22:5a:70:49:0f:5b:a1:2c:8a:6d:0a:38:59:24:
f3:9e:f5:c6:c0:cd:4e:6c:da:ff:7b:70:88:57:90:2e:d2:d7:
7f:ea:e8:b5:79:bb:78:8f:2f:53:05:3c:92:3d:96:75:69:1c:
40:5d:36:2b:1d:6e:d6:2d:ce:b4:75:8a:46:2a:b2:6e:a4:8b:
6f:b2:14:b3:7e:f1:21:08:61:e9:dd:82:f2:b2:55:e0:6c:0f:
a7:c1:36:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 10:15:50 2026 by rpki-client