Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
File: KMvNlssXsh1iT9IXD9DXCBY68j0.mft (raw, json)
Hash identifier: 1Tb6qA/+WXfzM5LllD6Ojt4VojOAwxdUMbAfEqfSk2M=
Subject key identifier: 93:2E:5A:D8:8E:A8:0E:F2:84:59:F3:1A:40:4E:CB:97:C8:8C:C6:9D
Authority key identifier: 28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
Certificate issuer: /CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Certificate serial: 019D3A542218D5A705E7DA8579FB7EBBB914
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
Manifest number: 11B8
Signing time: Sun 29 Mar 2026 16:01:25 +0000
Manifest this update: Sun 29 Mar 2026 16:01:25 +0000
Manifest next update: Mon 30 Mar 2026 16:01:25 +0000
Files and hashes: 1: KMvNlssXsh1iT9IXD9DXCBY68j0.crl (hash: LuZs/dKuc+qbIHs0GrfGb4siCNGhXigw//pQlc6vb9o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:54:22:18:d5:a7:05:e7:da:85:79:fb:7e:bb:b9:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cbcd96cb17b21d624fd2170fd0d708163af23d
Validity
Not Before: Mar 29 16:01:25 2026 GMT
Not After : Mar 30 16:01:25 2026 GMT
Subject: CN=932e5ad88ea80ef28459f31a404ecb97c88cc69d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7a:c0:97:a6:7b:e7:7e:b7:23:5d:5c:05:73:
4b:55:38:98:35:06:a8:6d:72:57:8e:f3:50:b3:ad:
e6:63:d8:24:21:52:11:fa:f4:08:7e:50:f7:c1:bd:
88:33:ed:de:2b:74:ab:02:7b:2a:1d:1a:8f:78:57:
f0:01:5a:58:02:af:8b:b2:b4:bb:eb:ea:d4:8e:49:
be:1b:aa:bb:d8:db:e8:fe:31:6b:3e:34:88:5b:d1:
ce:2f:77:4f:ff:61:74:59:41:a5:3e:12:9d:3f:9d:
ee:45:a0:59:79:1e:cf:3b:f4:bd:1d:34:98:0e:6e:
d4:db:6b:c5:35:8d:9d:e9:c0:e3:f8:37:2a:01:7a:
9d:c3:4b:bb:8b:b9:22:53:db:d2:ce:cd:6f:3f:92:
0e:5d:5b:9a:3b:1a:0f:8c:75:04:58:90:fd:1a:a1:
2f:fc:01:3b:ef:c3:03:e7:9c:fa:16:62:5f:38:b8:
3f:c7:fd:0d:11:82:42:c5:be:90:6c:4a:be:3b:8c:
84:82:58:e1:27:8f:aa:1b:25:08:7f:2b:ad:43:a0:
cc:60:a9:c5:84:df:d1:38:88:19:5e:1f:96:78:12:
5d:27:b3:f4:c5:3d:df:b3:6f:4e:c3:ea:c5:bc:ec:
a5:ae:00:23:33:04:2d:95:0e:45:0d:78:8a:97:0d:
51:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:2E:5A:D8:8E:A8:0E:F2:84:59:F3:1A:40:4E:CB:97:C8:8C:C6:9D
X509v3 Authority Key Identifier:
keyid:28:CB:CD:96:CB:17:B2:1D:62:4F:D2:17:0F:D0:D7:08:16:3A:F2:3D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMvNlssXsh1iT9IXD9DXCBY68j0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/6e40ee-7935-41a9-8ee7-f9a69449d5fa/1/KMvNlssXsh1iT9IXD9DXCBY68j0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:4f:4e:0d:5e:f1:18:0f:3d:bc:b9:b3:19:8a:eb:db:ed:89:
d1:92:59:f3:5e:ca:9c:a2:f3:ee:6e:fb:3d:39:52:66:17:bd:
06:46:e3:b2:a6:33:e0:6c:ed:45:ca:d9:70:77:5b:8f:1b:1e:
86:ce:cc:e2:e8:34:3c:fa:b4:6d:f7:cf:80:88:63:ec:b8:2b:
b7:3e:8c:14:24:64:db:65:ef:71:a8:a0:3e:2f:dc:c1:4e:ea:
18:66:00:c5:fe:3d:e7:b0:ab:bb:00:07:c1:b5:d5:28:e5:25:
e4:eb:07:d5:76:4a:17:1e:16:8d:65:97:33:17:7c:df:a0:06:
53:c7:17:b5:74:5a:a5:fa:eb:a2:0a:e0:dd:8b:17:bd:8b:8a:
1f:6e:f3:18:42:1e:16:1b:b2:11:e9:5c:fa:ba:e0:f8:98:df:
a8:80:ff:5e:09:0b:6d:c4:55:7c:69:6f:cb:49:b3:03:7d:fe:
34:43:23:92:02:3e:dc:a3:e5:30:e2:88:dd:1f:17:ac:6e:36:
7f:4d:a6:4b:a2:1c:f0:3f:0a:fa:e5:c0:8f:df:89:09:16:85:
cd:57:48:7b:86:57:8f:d0:9a:29:bc:95:77:18:e0:d1:5c:f2:
2b:8e:b0:d5:82:26:b2:f9:53:ba:98:15:f0:4e:0c:a4:9e:98:
ce:0a:80:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:25 2026 by rpki-client