Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
File: ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft (raw, json)
Hash identifier: U55loC2qXCe0oxyCf4/LYZaJ/DlH/50YS4eH0sIW6TQ=
Subject key identifier: 74:DC:96:8D:FF:D1:EE:55:04:15:C4:F7:A9:CB:E6:4F:89:3C:CB:10
Authority key identifier: 72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
Certificate issuer: /CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Certificate serial: 019D3A1C836426012EE57CD0BF5955434042
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 15:00:40 +0000
Manifest this update: Sun 29 Mar 2026 15:00:40 +0000
Manifest next update: Mon 30 Mar 2026 15:00:40 +0000
Files and hashes: 1: T6aVPmNcqE5HPe1U1bzT5Q4XHzY.roa (hash: 8+A3ZIl9Wsa+nE0z7P+iEM6IdzJ3gW89vJMfXzNpKrc=)
2: ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl (hash: kH2UDrPiSHRbkw3je0DcnhaRqsHRDxDbUZZxldgWywk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:83:64:26:01:2e:e5:7c:d0:bf:59:55:43:40:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7242a13715fc5578cdc05aaaa68c6a413cdbc9f5
Validity
Not Before: Mar 29 15:00:40 2026 GMT
Not After : Mar 30 15:00:40 2026 GMT
Subject: CN=74dc968dffd1ee550415c4f7a9cbe64f893ccb10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:32:9e:c9:66:19:1f:b7:5c:1b:e5:de:da:2d:
3b:b4:ab:9d:a7:39:16:29:16:7c:b6:a2:71:be:08:
4a:26:2f:38:26:52:16:d2:4e:fe:9f:a8:4e:93:bf:
c4:9c:35:fd:bf:77:bc:6b:6b:84:f2:5e:7d:5e:a7:
e0:34:32:25:f6:17:df:c1:a7:17:e4:a5:30:46:1f:
e7:43:99:f4:ff:dc:d2:e9:e9:61:52:6b:3e:45:da:
d8:4d:08:ab:50:50:d0:33:6c:74:66:20:04:19:38:
2d:8a:3e:19:4e:dd:be:ec:a6:72:50:6f:ed:23:f3:
4f:97:3d:d3:72:82:3c:99:a7:fa:a8:d0:98:6e:20:
96:26:f6:52:f1:fb:1d:52:74:fd:58:86:1b:4b:0c:
04:4d:44:18:ab:4a:ec:61:18:b1:77:c3:f1:45:68:
e4:24:be:ac:8a:63:b6:f0:df:b3:92:e9:af:20:8e:
a7:92:bf:62:83:ce:4f:3f:4c:df:ae:66:57:41:95:
11:8a:50:11:32:48:57:a7:22:ad:fc:fe:d6:cf:8a:
76:35:ef:2c:69:73:97:9e:a0:1d:5e:2d:23:62:30:
69:24:a4:99:11:c8:2b:1d:ff:7b:80:18:ce:82:e3:
a8:e3:f2:e4:c7:cb:dd:0b:24:45:3f:2b:7a:ca:f5:
d2:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:DC:96:8D:FF:D1:EE:55:04:15:C4:F7:A9:CB:E6:4F:89:3C:CB:10
X509v3 Authority Key Identifier:
keyid:72:42:A1:37:15:FC:55:78:CD:C0:5A:AA:A6:8C:6A:41:3C:DB:C9:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ckKhNxX8VXjNwFqqpoxqQTzbyfU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/90aa1e-0098-4fda-9829-a15ccf5b413e/1/ckKhNxX8VXjNwFqqpoxqQTzbyfU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4f:da:51:7f:2d:69:85:b0:80:90:6f:a8:dc:b0:e3:48:b3:8a:
47:29:61:1e:9a:81:f7:57:88:cc:1d:71:a9:80:5b:73:f4:a9:
3e:23:7f:0e:a7:c2:1c:b1:3c:8e:e1:c6:4a:8f:e6:c8:47:7a:
b7:a1:3a:55:30:6d:05:7c:56:0d:df:eb:56:a6:66:72:7e:5c:
39:19:82:a2:b2:d7:f1:de:40:5f:73:ef:ee:fb:9a:d2:b5:a0:
92:74:55:13:a8:f3:f4:08:41:d6:87:65:70:01:46:b6:53:0f:
35:73:b4:d1:2a:4b:27:a5:fe:2e:6b:62:1f:7f:5e:1a:7a:3b:
29:f0:96:16:28:b2:c6:6b:bd:c8:5f:c6:0e:3b:f1:12:5b:5d:
9d:02:20:f2:88:ae:ad:6a:8a:06:39:3d:2f:0b:39:84:31:71:
af:07:04:ca:b6:29:8d:51:93:19:8d:00:3a:c5:a4:c4:9e:04:
8e:6f:af:18:e6:c7:3e:13:90:28:96:0f:29:0a:9d:14:1b:30:
fc:c7:57:98:30:e1:88:20:d3:41:d8:0d:9b:9e:a4:96:3b:c3:
6a:81:b9:cc:a1:d1:35:48:58:60:25:7b:8a:c1:53:8e:69:07:
c3:aa:73:00:cb:d6:3c:4c:60:db:b2:8d:50:55:65:8e:e4:c3:
44:fe:cf:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 17:00:57 2026 by rpki-client