Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: k1yeN6nv/m7jePnKOeP8PVbfDbQEJ49v/F0ywhEF53c=
Subject key identifier: F7:A2:69:41:BB:E4:3E:5C:AC:FD:0A:16:70:76:9D:1B:C9:20:61:48
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 019DDA305E606520C14ED32A6679F366290C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 18E8
Signing time: Wed 29 Apr 2026 17:01:36 +0000
Manifest this update: Wed 29 Apr 2026 17:01:36 +0000
Manifest next update: Thu 30 Apr 2026 17:01:36 +0000
Files and hashes: 1: JL_bv1rE4SOiwiRn1jc2s_87lQQ.roa (hash: dWOsdKuE7dNLYI4NP8+n+WEeun5in1SyaWv26Okq8QI=)
2: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: rsBL0pM49kKm1Fgud8Ltg0WfXP2zWwhPvGXfmce0XYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 30 Apr 2026 13:39:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:da:30:5e:60:65:20:c1:4e:d3:2a:66:79:f3:66:29:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Apr 29 17:01:36 2026 GMT
Not After : Apr 30 17:01:36 2026 GMT
Subject: CN=f7a26941bbe43e5cacfd0a1670769d1bc9206148
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:32:d7:a0:5b:ec:48:18:e4:15:12:38:8b:bd:
31:b6:b0:e9:59:46:01:e1:9c:fc:1e:d8:8d:0b:af:
ed:de:9f:5f:30:01:d8:74:63:84:bf:ad:09:f6:54:
d1:42:73:fe:49:2c:f4:ee:ad:0e:5c:57:f2:a3:4a:
c5:aa:f0:c1:aa:8c:aa:cd:9e:5f:2c:8f:6e:da:33:
21:9f:bd:56:49:33:a1:b3:09:cf:93:25:48:52:b7:
4b:6d:6f:d1:3e:c3:c5:25:10:d7:7d:fa:fe:22:ac:
b3:d8:d0:9e:75:5e:b1:c4:96:5f:86:e9:98:f6:a9:
ab:68:f5:36:33:54:c0:49:aa:3c:20:b1:49:8f:0e:
1a:90:72:b9:78:09:8a:18:49:10:34:71:9b:6d:e8:
ba:18:a6:af:19:0d:17:ca:72:29:5e:2a:18:46:a4:
40:92:b5:a4:19:8b:5d:7a:7c:3c:46:c8:79:8d:2d:
ac:62:ef:a2:2d:52:64:86:3f:c9:33:59:d2:cb:56:
94:3b:68:15:4a:b2:53:37:a4:26:67:09:38:cf:7f:
5b:82:15:30:b1:8c:0c:1d:fa:fe:66:e6:4f:97:22:
bd:8c:0a:fd:9c:54:11:5b:ec:9c:2e:e8:46:73:b8:
23:6b:96:d0:df:4a:48:5a:23:cd:39:61:86:a7:26:
b7:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:A2:69:41:BB:E4:3E:5C:AC:FD:0A:16:70:76:9D:1B:C9:20:61:48
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:84:a8:50:74:84:aa:6e:cc:11:de:fb:7f:d6:84:16:17:7b:
3f:b8:f5:3e:93:9e:0a:3b:40:64:b3:d4:f2:0a:57:b7:3b:ff:
b8:3e:37:56:e3:36:3e:8d:61:94:75:18:0b:a9:da:d6:75:7f:
d8:f5:57:25:5b:ef:6e:1e:06:c8:4e:e6:bf:5c:95:b8:22:73:
a8:81:2a:1e:26:13:82:da:60:c5:7b:4a:d8:eb:e8:7a:b3:b9:
64:81:e9:c5:1e:93:8a:1d:7d:c7:6e:d3:e2:56:11:62:51:5f:
4b:13:4f:d5:09:cd:55:18:74:25:58:81:31:60:df:3a:cf:6d:
c9:a6:7c:8e:bc:fa:d4:f1:5b:7e:6a:27:49:c8:91:4e:9b:a3:
05:d7:df:66:9a:7b:c0:11:ad:17:48:5b:76:79:95:a4:5b:8d:
2a:80:78:21:2d:ee:f5:86:8a:02:55:de:8d:ac:98:2a:25:74:
30:79:f6:1c:8a:7e:17:d1:d6:0d:31:f8:e2:46:d0:22:91:16:
aa:3f:16:70:da:5d:68:8f:5c:d8:fe:27:a1:f6:76:3a:b2:36:
d3:be:79:6e:5a:73:e1:d1:38:71:9c:c4:1e:28:69:c0:33:35:
a3:19:ec:17:18:06:dc:0c:53:f4:43:30:0e:06:64:0e:8b:1e:
59:3c:39:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 29 21:14:57 2026 by rpki-client