Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
File: 1KAH7S_gjUM-DwoC9DynrLJvWg4.mft (raw, json)
Hash identifier: UccM9avWfEK6EvZ/Vp15Qyzu2I2XaBh/0u2CK/4y+qU=
Subject key identifier: 79:36:9E:F3:53:78:D0:CA:48:C4:41:81:8B:1A:88:61:4A:85:93:2C
Authority key identifier: D4:A0:07:ED:2F:E0:8D:43:3E:0F:0A:02:F4:3C:A7:AC:B2:6F:5A:0E
Certificate issuer: /CN=d4a007ed2fe08d433e0f0a02f43ca7acb26f5a0e
Certificate serial: 019D389BD2FAC82126E562AB6B6F71BB792A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
Manifest number: 06D3
Signing time: Sun 29 Mar 2026 08:00:29 +0000
Manifest this update: Sun 29 Mar 2026 08:00:29 +0000
Manifest next update: Mon 30 Mar 2026 08:00:29 +0000
Files and hashes: 1: 1KAH7S_gjUM-DwoC9DynrLJvWg4.crl (hash: FRxh6G1hxRn7XYg5NFIMr1TBXlZ2Ymseq07V/YH2dsk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.crl
rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:d2:fa:c8:21:26:e5:62:ab:6b:6f:71:bb:79:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4a007ed2fe08d433e0f0a02f43ca7acb26f5a0e
Validity
Not Before: Mar 29 08:00:29 2026 GMT
Not After : Mar 30 08:00:29 2026 GMT
Subject: CN=79369ef35378d0ca48c441818b1a88614a85932c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:0b:f4:c7:b7:28:f3:24:7c:88:8e:58:a5:1d:
8e:1a:14:1f:a5:d4:02:4a:fc:15:90:4e:47:d9:83:
b4:d8:86:75:58:06:32:56:98:be:52:80:62:d1:34:
9e:3a:e0:40:c4:b5:73:39:b4:a7:76:89:3e:f9:7d:
f7:f0:dd:2d:4b:bd:30:8f:65:7e:0d:ba:0c:73:e5:
17:33:4d:99:5c:e0:3b:36:41:11:c9:06:d9:06:2a:
4e:0f:99:22:e7:75:27:e9:d4:69:91:c4:5b:ac:3f:
c4:ee:a1:f3:e8:4c:96:ac:2c:18:55:df:2c:80:c9:
ac:e6:db:98:ff:c4:e9:11:f8:ae:4c:77:6d:c0:5b:
f5:7d:34:15:81:ec:62:47:62:a8:3f:5b:4b:0a:e8:
83:52:2d:92:4a:4b:af:55:24:41:1d:cb:9a:f8:d7:
b4:c6:bb:76:5c:54:97:ce:7f:4d:52:fa:f6:99:35:
13:05:31:6f:98:fc:22:90:b5:e7:49:b7:3b:d3:cb:
a5:c7:37:8c:23:bc:ff:da:ee:61:8c:84:51:43:a6:
4b:ab:71:a1:fe:31:6e:15:6a:83:95:10:ad:24:5a:
3d:1b:18:cc:e2:09:7c:d6:2f:7f:1f:d8:68:e8:e5:
05:77:33:00:86:bd:fe:ff:08:ad:66:d1:27:5c:8d:
97:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
79:36:9E:F3:53:78:D0:CA:48:C4:41:81:8B:1A:88:61:4A:85:93:2C
X509v3 Authority Key Identifier:
keyid:D4:A0:07:ED:2F:E0:8D:43:3E:0F:0A:02:F4:3C:A7:AC:B2:6F:5A:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1KAH7S_gjUM-DwoC9DynrLJvWg4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/86ceb8-4188-4b6c-8bd8-c2b81ce98c6d/1/1KAH7S_gjUM-DwoC9DynrLJvWg4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7e:8b:e2:2e:d2:52:5d:4d:ab:9c:aa:71:01:ca:23:0b:5f:bf:
04:7a:3d:ed:33:fb:fc:dc:bd:e7:e8:b6:4a:25:c9:8d:48:e8:
de:a5:c7:30:ea:e7:32:e6:e9:a9:91:b7:8f:b9:14:6f:aa:04:
87:ea:d6:70:c5:6d:7d:01:ee:6d:f8:83:d3:c1:68:f8:53:97:
42:a2:bb:d4:5c:14:45:98:29:bf:1a:85:4b:4b:35:5a:c2:f5:
b7:f4:b2:5e:79:ad:5a:95:42:88:31:f2:6b:b6:db:96:cf:9d:
86:6f:0f:0d:27:3a:2f:20:1a:a2:b0:0f:0d:19:75:b3:60:af:
1a:15:16:9c:24:af:62:af:aa:63:cf:94:94:ba:7c:7c:c1:6c:
f4:19:9a:0e:47:e1:c9:ce:6b:d0:b2:9b:4f:9e:76:01:41:65:
9a:77:77:1c:ed:e1:22:f6:3b:8b:9f:b7:57:4f:e0:37:41:02:
41:48:7a:3c:51:74:91:53:64:de:37:37:35:87:09:e0:cf:01:
fe:c1:b1:47:24:86:5a:5c:ce:76:04:18:d0:dd:0a:bd:f1:88:
10:45:29:d7:23:0d:65:43:a1:54:5f:c1:5d:30:9f:68:21:35:
c1:9e:99:b5:73:14:5d:54:02:8b:c1:fa:28:c5:0e:8a:eb:5b:
c6:2c:3e:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:33 2026 by rpki-client