Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
File: 1-kak8RQ6vjrfxLaDX6E0498srDQ.mft (raw, json)
Hash identifier: CS/a10Grh39DTVqpvuXKTT/AgvEj64urWb+ejy51TMQ=
Subject key identifier: 56:C8:AE:A4:C0:51:A0:49:58:4D:98:68:45:A2:94:FC:D4:3C:23:EE
Authority key identifier: FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
Certificate issuer: /CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Certificate serial: 019E3004BAC088C2591A7F5FE5F049484243
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
Manifest number: 1910
Signing time: Sat 16 May 2026 09:01:16 +0000
Manifest this update: Sat 16 May 2026 09:01:16 +0000
Manifest next update: Sun 17 May 2026 09:01:16 +0000
Files and hashes: 1: 1-kak8RQ6vjrfxLaDX6E0498srDQ.crl (hash: EcdFRO8R4VMReoaJahyVLf1UoLOx11TebgtGrCLwa4w=)
2: EwSHe_xf-jqepkCFLSHCwEgr_AI.roa (hash: RC+AV7VwTqdY5tCu6Twk85UOef4oSKz04Y5st23WBE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 09:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:04:ba:c0:88:c2:59:1a:7f:5f:e5:f0:49:48:42:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa46a4f1143abe3adfc4b6835fa134e3df2cac34
Validity
Not Before: May 16 09:01:16 2026 GMT
Not After : May 17 09:01:16 2026 GMT
Subject: CN=56c8aea4c051a049584d986845a294fcd43c23ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:d4:84:b8:ef:e1:29:1f:23:67:b2:af:af:31:
0f:cb:86:54:be:4a:95:ce:04:71:a8:5c:ee:7c:b2:
d9:3c:23:ec:78:b8:5b:b8:46:58:21:24:93:2c:bd:
e3:b1:62:c8:00:97:b4:00:44:d1:ea:7e:ff:dc:7f:
aa:42:f5:eb:c5:1b:6f:d8:7d:2f:38:27:1c:34:03:
70:23:26:bf:69:7a:8b:e5:01:c4:80:8b:49:b2:92:
15:6b:76:96:b0:7c:89:50:0d:27:09:09:7f:a0:1a:
a8:e4:59:44:7a:5c:c7:fe:bc:51:04:0f:d3:05:e4:
11:3b:95:ba:f2:2b:10:d4:db:6b:94:8f:89:ff:67:
29:58:91:ca:84:a4:8e:77:76:47:64:11:c6:7c:92:
e7:80:be:1c:59:12:8e:1e:8b:27:12:27:5d:14:f3:
e5:a7:95:a1:57:03:85:09:1f:e1:66:9b:52:78:05:
e2:00:44:75:51:17:1c:09:31:7b:16:43:4d:7f:6b:
00:af:ca:65:00:75:ef:a4:48:92:92:09:61:bf:40:
37:66:63:c6:af:16:eb:a3:9c:99:4f:3d:ee:dd:fa:
a3:29:f6:4b:53:fb:fb:de:30:af:cd:97:36:02:26:
1a:78:c8:e0:e6:db:06:3d:a4:97:e6:6a:a1:53:98:
c2:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:C8:AE:A4:C0:51:A0:49:58:4D:98:68:45:A2:94:FC:D4:3C:23:EE
X509v3 Authority Key Identifier:
keyid:FA:46:A4:F1:14:3A:BE:3A:DF:C4:B6:83:5F:A1:34:E3:DF:2C:AC:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-kak8RQ6vjrfxLaDX6E0498srDQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/f3a79d-38cf-4905-ab5f-5bca45efde8c/1/1-kak8RQ6vjrfxLaDX6E0498srDQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:2e:da:64:5d:b8:cf:f1:8d:03:96:ac:05:be:0f:10:39:c9:
ea:b5:24:14:a7:a5:b3:6f:71:94:75:49:ca:fd:18:aa:47:a1:
34:90:57:1a:17:80:8f:84:0b:71:97:92:1f:1e:fd:e1:75:e5:
72:b5:73:f8:77:b1:db:62:68:9e:ac:55:1c:c3:0b:76:6a:e3:
a9:f0:b9:56:55:e4:cf:03:b7:cf:6f:9a:a2:ab:22:12:66:83:
ca:4f:6c:76:fb:c9:f5:7f:a2:b5:84:99:cd:4e:d9:3c:ee:fd:
40:90:33:56:fb:30:75:ca:55:9c:08:12:f5:03:be:95:5f:db:
fd:05:af:7d:b0:f9:fc:08:73:87:2d:d9:92:4c:e8:32:73:a0:
c4:89:3a:12:60:b5:30:53:40:17:87:c7:a0:2e:0d:61:d3:fa:
c6:02:2c:17:7c:78:62:4f:8d:ac:e4:09:d2:35:62:db:70:c9:
58:e5:ac:d1:3e:46:45:59:40:91:c8:4b:6b:da:78:19:e4:7f:
37:06:be:8a:b4:a2:bc:93:51:4d:aa:e0:38:e6:25:b1:46:e5:
52:fd:ca:88:e6:7c:97:b9:92:17:2c:8b:c0:da:4f:f8:79:98:
7b:fd:b0:9a:52:0d:bd:e9:78:f1:6b:aa:79:e6:ab:6c:07:e1:
8d:53:88:62
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 18:39:49 2026 by rpki-client