Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: qS14yisgerVa6TsrHqS8XOlnUfUayEhXGbuAoYzXg44=
Subject key identifier: 50:A5:40:21:45:C8:22:0F:F7:64:46:B7:DE:65:2B:FC:01:F9:84:86
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 019CE447B71855F44EECA8A4E72F38EC128B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 0369
Signing time: Thu 12 Mar 2026 23:00:30 +0000
Manifest this update: Thu 12 Mar 2026 23:00:30 +0000
Manifest next update: Fri 13 Mar 2026 23:00:30 +0000
Files and hashes: 1: 8KaJwIuZexyBoZjYRmZrjQf9lJQ.roa (hash: LrRg49gpH/+ELMxEyexBUIqT8W2t/5VIfE4dXyblhxM=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: Fv5v4ptyMjM3LRCIgNrQ6iN20Stp5bWArLo91O+xemg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:47:b7:18:55:f4:4e:ec:a8:a4:e7:2f:38:ec:12:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Mar 12 23:00:30 2026 GMT
Not After : Mar 13 23:00:30 2026 GMT
Subject: CN=50a5402145c8220ff76446b7de652bfc01f98486
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:b4:8c:b6:b7:c1:2d:71:43:9a:33:b5:46:09:
8d:31:50:af:a5:1d:89:f5:5c:26:2a:77:34:d8:3b:
b3:07:ff:3a:54:e5:0a:49:ee:b1:ab:c8:27:f3:05:
af:a0:cf:bd:db:34:54:5a:65:eb:ec:2b:64:21:fc:
2c:33:11:fc:b5:36:25:f8:6f:5e:1f:6a:e8:3e:96:
e5:be:71:f9:09:1a:63:ea:f1:5f:77:94:7a:29:83:
89:ce:3b:e1:b8:23:3c:4a:55:c7:49:49:98:64:8e:
b7:b6:27:a7:73:f4:16:28:69:d5:cb:16:1d:f3:f3:
3d:f7:c7:1c:99:92:1e:45:45:6b:83:e4:ff:e6:20:
39:a0:0d:d8:61:14:3d:7f:07:8e:59:a7:45:01:4e:
d8:d0:ba:a9:8c:89:cd:6c:af:7e:29:5f:a2:82:8a:
af:5a:9b:11:49:4b:91:e8:1e:8e:21:da:ea:65:e8:
9f:fa:38:ff:c9:59:89:04:55:70:d4:f8:1a:26:26:
a4:70:52:2e:03:dd:6f:13:d5:91:04:bb:8a:9d:a2:
84:f7:21:9d:ba:29:1e:73:6d:e6:2c:09:04:66:2a:
35:99:06:07:3b:38:b7:19:a2:42:56:79:60:d3:45:
57:c5:60:18:4a:8a:08:a7:08:e7:a8:41:02:36:61:
60:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A5:40:21:45:C8:22:0F:F7:64:46:B7:DE:65:2B:FC:01:F9:84:86
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c9:ee:b9:4a:7a:2b:22:85:57:29:22:22:ca:6f:7e:3e:26:a2:
65:33:de:e8:f5:15:11:0c:7d:76:f1:1d:f2:90:ee:89:42:dc:
67:36:18:5b:ba:c0:36:20:41:05:6d:c3:a6:e1:d5:ca:ae:46:
59:8f:f3:1c:d5:70:89:87:98:0d:6d:e3:3f:c0:81:e1:4b:61:
08:7d:90:57:4a:7e:c1:17:18:70:22:85:c1:24:38:d5:84:f4:
81:b1:1f:28:38:03:5a:6f:3c:d8:22:e1:7e:4a:19:0b:cd:6b:
17:1a:05:3a:b3:fe:67:f1:45:c8:f6:ea:57:a6:58:57:46:99:
31:7a:55:4b:88:ab:30:08:39:41:17:a3:51:2a:67:ba:25:7b:
9b:1a:5f:5f:5f:09:09:f2:d2:19:e4:64:e4:83:38:b8:56:f2:
e1:25:f8:9f:c4:a8:95:15:9e:97:ef:a1:55:ad:11:34:fb:b0:
90:2a:cd:f5:6e:7a:51:8d:7b:11:58:f0:ee:d9:90:a7:aa:e1:
49:cb:d2:65:a7:23:48:2a:c1:d8:79:3c:04:68:9c:88:23:fe:
96:5e:48:06:5d:02:de:0f:a5:50:ce:2e:34:26:a2:ee:df:42:
c6:79:55:41:62:89:73:35:2d:8a:1c:d8:f4:37:f4:17:fd:89:
b6:3f:4c:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 05:54:42 2026 by rpki-client