Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
File: 1-kak8RQ6vjrfxLaDX6E0498srDQ.mft (raw, json)
Hash identifier: 8cYnL9Etd3IYM7/ZNqWLPKBv5qdKnssaeor5eWfblgs=
Subject key identifier: 1E:62:70:C8:3C:E1:C3:28:A8:BB:AC:BD:78:17:4A:CD:4E:74:86:94
Authority key identifier: FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
Certificate issuer: /CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Certificate serial: 019D38D2C7EA82A1992F624F9C781FF65336
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 09:00:30 +0000
Manifest this update: Sun 29 Mar 2026 09:00:30 +0000
Manifest next update: Mon 30 Mar 2026 09:00:30 +0000
Files and hashes: 1: 1-kak8RQ6vjrfxLaDX6E0498srDQ.crl (hash: w7uW4z8mwTRoX/FquisGbM/VPyGdGdFXmbyYkPMp9cM=)
2: EwSHe_xf-jqepkCFLSHCwEgr_AI.roa (hash: RC+AV7VwTqdY5tCu6Twk85UOef4oSKz04Y5st23WBE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d2:c7:ea:82:a1:99:2f:62:4f:9c:78:1f:f6:53:36
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Validity
Not Before: Mar 29 09:00:30 2026 GMT
Not After : Mar 30 09:00:30 2026 GMT
Subject: CN=1e6270c83ce1c328a8bbacbd78174acd4e748694
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fd:d0:c5:59:1a:99:3a:0f:1e:84:7c:97:95:57:
d1:1e:6d:c6:e5:d3:63:52:5e:a7:18:ce:f2:b3:4a:
f6:9e:ce:74:fc:aa:4c:f7:ac:57:98:21:0c:ef:7e:
5e:7d:c6:a1:82:5f:c9:ac:e4:4c:80:db:2c:33:92:
df:ce:13:07:b6:e9:00:53:e2:fb:b0:58:81:be:69:
fb:24:d2:cb:21:20:b7:9f:66:1f:fd:5f:49:a1:34:
fc:8f:12:b9:dd:a4:3c:d3:0c:21:14:1b:1d:70:f5:
11:3c:3b:5c:c4:20:36:1e:03:5c:33:5b:d5:30:57:
76:07:91:fb:8f:6d:5f:4e:00:19:5e:57:e1:cf:af:
84:87:64:c1:a1:e6:a4:66:96:dc:9b:76:3a:96:14:
01:1e:e4:cd:13:2d:e2:5d:cc:22:d2:88:62:f7:23:
a9:e7:ad:bf:b0:f1:fb:29:ab:dc:38:59:b5:5c:56:
d7:75:fd:ec:67:cb:e8:a5:5e:9c:e4:8f:92:3c:ec:
22:f4:b2:ff:22:49:92:0f:6e:e7:6b:1b:13:93:a2:
c4:6e:d9:f1:16:9e:26:69:2b:75:19:34:8f:e6:74:
d1:71:ca:53:1f:db:2f:84:43:ee:2e:cd:bf:70:9c:
15:86:2e:13:df:bf:7e:6e:be:23:7f:9e:b6:b7:36:
33:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:62:70:C8:3C:E1:C3:28:A8:BB:AC:BD:78:17:4A:CD:4E:74:86:94
X509v3 Authority Key Identifier:
keyid:FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:e5:2c:89:7b:31:0f:21:ae:41:db:83:2d:6d:5a:34:3d:34:
a7:0a:dc:f3:56:23:3c:e0:1f:74:cb:cb:f0:bb:25:58:17:68:
b9:52:45:e9:0b:b8:a6:ed:69:69:f6:0e:ca:03:2d:ef:02:35:
0f:59:63:ac:5c:98:40:37:c7:15:5f:9f:f2:fd:09:2b:43:1f:
1a:4c:78:e8:19:4e:3a:91:1c:1f:f7:50:06:c8:7d:89:c1:72:
cb:ee:dd:ae:4a:bd:6c:5d:86:70:2b:4e:0b:76:0e:be:02:a3:
9c:94:00:34:6b:48:91:60:ab:53:51:8b:be:be:8d:b0:2a:6f:
8c:49:73:66:cd:a4:56:a6:b7:ee:7a:db:82:57:3d:50:d2:2b:
42:21:e6:1d:20:17:70:fd:cc:1a:83:ad:41:9a:19:73:67:1c:
ac:cc:e3:c0:49:0e:2f:dd:d8:6f:b9:5b:c9:e5:c2:ac:53:87:
22:8e:e7:7e:38:b3:ed:db:ac:00:3f:ae:ba:2c:4a:24:c2:0f:
cd:fb:5f:9e:9c:b2:e1:c6:c4:8e:8b:3e:53:7f:79:56:d3:fd:
6e:ef:e8:d3:30:d6:20:0b:75:db:c6:71:7a:98:f4:71:ed:f0:
ff:da:fc:1b:8c:ac:35:77:9e:cb:de:cd:36:7e:4c:1f:e3:03:
91:27:15:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:19 2026 by rpki-client