Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: ST7z4j9X+fU9fbXm22NN3MRxpIu5knv58NKYE0oXYdY=
Subject key identifier: C9:5B:13:7A:F4:FA:B1:14:F1:63:04:8E:62:D3:17:6E:68:27:2B:F2
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 019E30E000E350DB9E112B8A67041999F9F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 190F
Signing time: Sat 16 May 2026 13:00:47 +0000
Manifest this update: Sat 16 May 2026 13:00:47 +0000
Manifest next update: Sun 17 May 2026 13:00:47 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: k3nGK8NehLoCTfHT7qqKPRHLRrSXdp8jWnlqSjDJSSc=)
2: dMl0CEajkrxcgLNcfpnLA8OuL7A.roa (hash: CYX2WX+QfrhOpGiBFy1DWZkIM2JKpSw/oiXkQ7UpKFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:00:e3:50:db:9e:11:2b:8a:67:04:19:99:f9:f7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: May 16 13:00:47 2026 GMT
Not After : May 17 13:00:47 2026 GMT
Subject: CN=c95b137af4fab114f163048e62d3176e68272bf2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:2b:85:c7:48:14:e2:28:e5:a4:1c:fb:ba:4a:
11:93:94:12:85:b0:dc:aa:cd:5f:32:46:03:3c:fe:
5d:79:f2:97:5e:5f:72:d2:b9:b8:1b:7c:ff:08:09:
23:76:d4:38:80:66:78:8d:fd:43:5d:50:04:51:f0:
43:61:15:40:0b:71:96:22:51:b3:1b:dd:5a:e6:16:
bb:e3:0e:8e:92:a5:79:68:56:3b:bf:94:b4:84:f7:
a8:c8:b4:21:9f:25:eb:bd:35:85:1e:4e:cf:a9:e5:
e6:1b:03:18:f9:51:b1:ad:0e:90:aa:ad:30:f2:47:
c1:fb:27:5e:01:b4:99:10:ee:95:2b:90:70:7f:1d:
fa:ef:fd:8f:27:fe:fd:12:f2:e8:7c:d3:3d:b9:ac:
61:e3:a4:63:7b:2d:8a:98:7d:de:c2:31:70:41:e1:
d2:b8:1f:73:55:55:cd:d3:2b:aa:86:28:0e:a3:78:
c8:f3:5e:12:6d:b1:d4:07:f0:79:e4:e8:15:64:5c:
f4:7e:76:4b:c9:48:e1:53:e4:1f:5d:74:e9:5e:12:
70:9f:4d:a0:15:5a:b9:1f:1d:a4:6c:9d:ca:ed:24:
03:e5:2a:08:b4:72:35:b2:78:f4:35:79:47:e8:64:
c4:53:fa:4a:58:44:99:ba:30:68:c1:73:78:21:4b:
5e:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:5B:13:7A:F4:FA:B1:14:F1:63:04:8E:62:D3:17:6E:68:27:2B:F2
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:88:6c:c3:d7:1c:e3:c5:2e:e6:85:8c:bd:60:d9:c6:da:50:
98:38:97:58:2f:8f:bb:de:a9:f3:54:73:a2:90:b6:d4:74:2d:
41:8f:00:20:53:2a:8a:fa:72:99:e6:3e:76:1c:59:f3:66:95:
66:4c:41:f4:7b:ff:07:19:9f:25:d2:ac:15:e2:18:f7:5f:67:
96:2d:ca:6e:a5:93:7d:65:c7:0e:d0:45:0a:29:d1:db:7d:07:
5f:b9:dd:8a:74:0e:f1:e5:69:43:57:17:d4:78:ed:93:94:5e:
1a:af:ad:48:0b:ab:3e:83:40:ef:de:d4:92:7a:bd:8c:c5:a0:
eb:b2:e1:21:ca:fb:c1:bf:f1:2a:0c:56:12:be:90:30:a3:70:
e0:75:61:74:c2:3f:3e:7e:34:eb:b7:52:1e:bb:4e:05:03:9b:
09:ea:3c:7a:c8:24:0e:da:3d:36:e9:05:c9:f7:7a:e1:23:9f:
44:01:7f:d1:a5:4f:02:ec:da:80:a9:04:32:a2:d1:42:dc:92:
c7:6e:b7:a9:fb:18:1a:61:93:47:3c:5e:52:ac:33:63:25:3e:
de:6b:12:65:46:cf:81:93:a5:a2:28:6f:87:41:a8:28:18:f0:
db:2a:d7:fb:58:62:4e:23:8c:14:8c:ac:d3:e1:b7:71:35:dd:
04:72:1c:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 15:38:05 2026 by rpki-client