Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: /joXRwoS/WrCk+O1T86pLB4q2y6lxVFF0rutiOm+T6A=
Subject key identifier: 6C:17:8A:5E:9F:03:F4:2E:D5:19:FF:2B:AD:AB:83:FE:C2:46:78:23
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 019DCDBE28592DE6D205827C701CD9F7DC37
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 1572
Signing time: Mon 27 Apr 2026 07:01:24 +0000
Manifest this update: Mon 27 Apr 2026 07:01:24 +0000
Manifest next update: Tue 28 Apr 2026 07:01:24 +0000
Files and hashes: 1: B6o8w4JwncV5UpdSgcO7ItJ2vOY.roa (hash: fNh1jUU0AZ9h8EIANivzzlh97Xsidf9NN1/ISCBJySU=)
2: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: nhmZPfbYlbdI5Vr9WfFQWe5ElDFwi73fiZIZ98iI/IY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 07:01:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:be:28:59:2d:e6:d2:05:82:7c:70:1c:d9:f7:dc:37
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Apr 27 07:01:24 2026 GMT
Not After : Apr 28 07:01:24 2026 GMT
Subject: CN=6c178a5e9f03f42ed519ff2badab83fec2467823
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:58:07:38:62:43:a8:30:ff:46:82:69:f0:ca:
34:b2:17:30:ac:10:dc:b5:cd:16:55:ad:75:6a:4b:
17:5e:6f:d4:09:1c:0d:11:fe:cc:66:6a:16:4d:31:
9c:bd:2e:e3:40:d0:c7:33:9b:cc:c0:e3:62:31:db:
b1:f7:ae:e4:2e:c4:d2:9a:7d:1d:a9:af:54:6d:30:
5b:bf:46:4b:d7:18:5a:4c:84:4f:d0:19:ad:2a:b4:
d0:6a:3e:05:65:dc:88:f4:43:7b:43:ab:35:4f:67:
3c:99:29:29:66:2f:63:f0:51:ad:c3:ef:57:0d:1a:
5a:67:2a:4a:cb:55:10:13:77:16:d0:40:6e:3d:c4:
fd:b2:dd:84:b6:af:e4:27:1a:b9:fa:9d:55:95:16:
b1:dc:99:af:5f:47:00:8b:bd:17:99:4a:62:34:de:
dc:0d:dd:d2:3b:ee:06:b5:82:32:ba:b8:14:5f:d4:
0e:84:72:2f:61:e5:83:d4:31:b4:b2:50:7d:82:81:
5a:d8:8e:7f:34:b8:a3:6d:7b:67:79:f8:97:df:e2:
9c:97:76:99:66:73:13:38:33:5d:f1:05:c1:c3:0e:
64:88:d3:f3:65:c2:cc:ca:27:b8:d7:90:48:b3:0f:
38:fa:97:b4:10:86:64:6d:70:37:78:2a:75:9d:87:
2c:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:17:8A:5E:9F:03:F4:2E:D5:19:FF:2B:AD:AB:83:FE:C2:46:78:23
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:2e:9b:52:b7:b3:9f:eb:46:1d:be:b7:b7:29:0f:01:e6:50:
a0:bc:39:c9:03:0e:9c:bc:c8:b7:04:33:de:88:73:c6:56:05:
82:cc:f0:2c:80:75:7c:48:9f:f5:ea:fa:48:31:83:6e:95:d8:
a4:cc:65:96:90:25:e5:5c:21:f6:b6:33:1b:80:d6:b2:16:62:
10:6e:e1:4a:d3:61:c9:91:57:4e:a4:56:78:f6:fb:7b:de:07:
76:d3:ea:f8:9c:5e:44:85:45:19:23:ee:93:a7:88:e0:b2:c6:
b6:30:fa:0b:b2:cd:3d:af:be:21:47:0a:0c:a7:fb:09:e2:6b:
4b:fb:1f:97:eb:79:97:6d:4d:ea:54:2a:eb:b7:d8:83:d2:f7:
49:07:8a:f4:37:d3:95:d0:3d:91:6c:f7:cd:7f:9c:ce:55:18:
52:de:27:7c:b9:69:b9:e0:ab:cf:95:96:66:5e:a4:2e:17:48:
0f:ed:36:e0:c3:22:bd:4a:4d:00:99:62:60:2f:32:8a:54:b7:
21:eb:e2:af:ed:42:ad:b6:65:21:37:c5:b9:d5:ac:be:59:ac:
9f:c7:f3:99:46:bd:15:cb:16:b6:2d:17:8f:bb:3c:d4:58:ea:
ae:2e:2c:9b:cf:8d:9c:ee:75:91:aa:35:30:9b:39:09:0f:ec:
31:e0:e1:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 16:10:25 2026 by rpki-client