Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: Ag67Ml+FdhgrOkVXiR250ZBwogjVcJyES/P2UvG2RYY=
Subject key identifier: 71:19:74:8D:18:5D:1F:C7:AE:D0:E2:24:19:6C:6C:91:F4:BF:F4:B0
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 019D37C0E8745216F2E5C92947C27B311DA0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 04:01:22 +0000
Manifest this update: Sun 29 Mar 2026 04:01:22 +0000
Manifest next update: Mon 30 Mar 2026 04:01:22 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: iOylq2pjkEO5N24hmnpdwMs4Ak7Ruwq2R4R3aHT0pNc=)
2: dMl0CEajkrxcgLNcfpnLA8OuL7A.roa (hash: CYX2WX+QfrhOpGiBFy1DWZkIM2JKpSw/oiXkQ7UpKFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:e8:74:52:16:f2:e5:c9:29:47:c2:7b:31:1d:a0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: Mar 29 04:01:22 2026 GMT
Not After : Mar 30 04:01:22 2026 GMT
Subject: CN=7119748d185d1fc7aed0e224196c6c91f4bff4b0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:c7:ba:5c:d5:e1:84:16:8b:ea:5e:3d:03:2c:
82:ba:b3:4e:dd:6d:aa:96:b9:94:4f:6e:0f:5f:3a:
eb:01:5f:af:46:43:1c:f7:38:32:81:dd:0f:02:4d:
be:5f:00:e3:95:74:9e:53:af:44:fd:bc:96:1f:89:
8f:9b:f8:be:47:76:c7:d4:3f:4c:fc:b0:6b:d1:08:
dc:65:82:17:ab:b9:80:08:9f:99:de:00:96:e9:1b:
f2:12:e7:d9:6d:63:be:bc:3f:cd:be:a2:95:60:4b:
bb:89:14:4b:f7:1f:65:e1:33:3f:1d:99:67:58:35:
8c:dc:32:33:dd:87:b4:08:65:84:f9:dd:f3:e7:19:
f3:b3:f1:50:79:fe:b5:90:85:ed:76:d6:7e:9b:0f:
36:56:f2:62:ed:ce:ba:71:a3:f1:9a:6b:6d:2c:75:
e0:42:ae:9c:22:1b:3f:75:1f:b6:2a:f3:28:78:39:
b9:ef:6f:9d:32:1d:99:a0:6d:3d:fc:44:26:a6:90:
6a:9c:98:7c:1d:da:43:54:93:bc:4f:c1:bf:c6:9d:
5a:65:6a:8e:5c:1f:d2:48:fb:a9:17:7a:2a:68:4a:
72:b7:7b:28:96:13:e2:e2:1f:47:75:98:2c:0f:ad:
b1:68:92:69:be:07:f6:db:bb:ce:1f:0e:79:83:e3:
ef:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:19:74:8D:18:5D:1F:C7:AE:D0:E2:24:19:6C:6C:91:F4:BF:F4:B0
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:5f:67:73:38:3a:81:89:1a:d5:5b:99:9d:df:79:d7:cb:8a:
e9:01:05:5a:ae:3f:c2:b6:38:d4:7e:27:ef:50:53:97:c9:93:
9a:81:7e:ef:02:ae:af:77:90:fa:f1:5f:c2:39:de:de:c0:d7:
d0:82:1e:92:38:1d:b4:e6:3b:40:14:40:70:2f:a2:0c:a3:5c:
6c:fe:d7:fb:6b:25:56:e6:cf:36:9c:61:2e:ef:b1:f3:2c:d1:
6c:88:95:31:c6:49:ac:b8:23:10:e4:5a:c1:0c:6f:bb:33:d4:
57:f5:cd:d8:83:56:22:13:0d:7c:32:09:71:1c:eb:f2:4a:3b:
0a:a1:b0:b7:b5:14:1d:c8:bc:49:58:35:3c:1c:6e:8f:41:e3:
10:fa:9c:9f:87:b2:1e:31:c7:74:5b:5b:6e:18:63:48:4e:b0:
e8:93:8b:c9:2d:e8:eb:19:5c:a6:7c:7e:b9:81:16:bb:3a:c2:
d1:fc:82:5a:c7:2a:3f:61:33:71:02:1a:9f:91:cd:2a:ab:d7:
bb:7f:79:bc:fd:26:2a:b2:60:87:92:6c:5e:25:b7:e6:16:d5:
67:95:0e:1f:b9:14:02:c0:3e:e0:dd:08:19:f6:d4:92:4e:ed:
1c:22:11:5a:4a:e1:76:9a:2f:49:3c:9e:1d:55:7f:b3:75:79:
30:0f:15:61
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:54:32 2026 by rpki-client