Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
File: KYlkeFHvzRmJcu09FJzLvenFXAA.mft (raw, json)
Hash identifier: JZjxF355yz8QihV00Vo0Qaql1Ay7sGYA1K8OmINo5bY=
Subject key identifier: A0:F8:ED:E4:B8:9A:C8:18:4E:44:C4:94:B0:D7:DA:91:1D:62:0A:CD
Authority key identifier: 29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
Certificate issuer: /CN=2989647851efcd198972ed3d149ccbbde9c55c00
Certificate serial: 019D3909CEAA4D36BE1E428441D0A4E071F3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
Manifest number: 0BC8
Signing time: Sun 29 Mar 2026 10:00:37 +0000
Manifest this update: Sun 29 Mar 2026 10:00:37 +0000
Manifest next update: Mon 30 Mar 2026 10:00:37 +0000
Files and hashes: 1: KYlkeFHvzRmJcu09FJzLvenFXAA.crl (hash: zSwBZYd/5n/H+gQ8J1I0NDDuhWyQe+QuT3bQDq33akU=)
2: l2v4PMgche6PmMtMOC23cD4fvMk.roa (hash: h7RmNWqQIkYYdlzGtKAOjEz+jTEWe9NjQLWfgzz+cDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 10:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:ce:aa:4d:36:be:1e:42:84:41:d0:a4:e0:71:f3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989647851efcd198972ed3d149ccbbde9c55c00
Validity
Not Before: Mar 29 10:00:37 2026 GMT
Not After : Mar 30 10:00:37 2026 GMT
Subject: CN=a0f8ede4b89ac8184e44c494b0d7da911d620acd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dc:84:e2:ed:a2:52:8b:d8:c0:09:c0:6f:52:
4b:80:f3:c0:67:b9:c0:14:2d:cb:77:32:de:4b:5b:
d8:f6:3b:26:ac:d0:4b:e0:53:db:37:a5:76:e3:8d:
df:f1:5e:c1:4e:7e:62:75:3e:b4:03:69:9b:2e:63:
82:da:59:f3:56:39:44:f0:e2:a4:32:d8:7a:58:d7:
96:f0:f3:b2:62:78:c6:4f:dd:61:96:5e:58:a4:b7:
1e:8c:bd:54:b0:8e:5d:ff:24:05:48:af:60:44:a4:
25:24:f4:39:b3:d9:8c:32:ea:52:95:43:56:2f:11:
28:da:57:bc:39:7d:df:b0:3a:93:8f:d5:41:99:b0:
bf:18:a3:52:a9:2c:52:3c:62:e0:f1:dd:fd:d6:3a:
19:b7:04:7d:c3:f9:e6:2d:f4:24:29:b5:5e:02:20:
f1:c4:e8:c0:26:f6:21:c6:87:e7:20:1d:4f:ba:dc:
01:a7:3d:1e:64:96:ad:87:87:a8:b2:df:2c:b8:ec:
27:4f:34:cf:e5:64:fc:18:2e:af:8f:d0:a6:56:d0:
f7:3a:da:6e:b3:7d:c4:ea:82:69:32:bd:20:8f:39:
29:7c:28:d8:88:b0:84:a4:2d:3d:dc:47:b6:55:69:
4d:55:08:83:f3:68:77:b3:a7:28:a8:b5:0a:94:2e:
db:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:F8:ED:E4:B8:9A:C8:18:4E:44:C4:94:B0:D7:DA:91:1D:62:0A:CD
X509v3 Authority Key Identifier:
keyid:29:89:64:78:51:EF:CD:19:89:72:ED:3D:14:9C:CB:BD:E9:C5:5C:00
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYlkeFHvzRmJcu09FJzLvenFXAA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ec/ab5e88-d2f9-487b-bb92-a4cb1cfd00b8/1/KYlkeFHvzRmJcu09FJzLvenFXAA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
be:f9:89:a7:38:6a:a8:6e:4c:26:1d:71:79:fb:e4:94:e2:9f:
c0:4c:87:8f:16:a3:9d:52:fc:a3:09:49:55:a4:49:e7:48:1c:
fe:42:c2:15:d4:e8:2f:41:dd:94:ba:f9:9c:ec:dd:b0:4b:f4:
82:ac:9c:af:f0:1d:ad:0d:9a:31:7a:5e:9c:4f:3a:72:bd:05:
1e:d2:b6:27:3c:f4:58:26:ed:9f:26:ab:82:bc:a5:80:a6:a6:
76:ec:35:47:e8:4d:8d:9f:bc:55:90:a2:76:86:40:38:d7:9a:
60:3e:ac:08:0d:6b:30:2a:c9:3b:90:65:5c:fe:ed:f0:c9:92:
1b:78:b9:1b:a7:5a:68:c7:51:3e:5c:67:21:82:ae:e1:ac:ef:
c7:ab:02:bc:94:76:7c:73:b2:d1:61:ad:33:33:da:05:74:68:
61:8e:ad:3a:30:b0:60:74:00:fc:92:a4:8d:90:b9:de:83:9d:
20:ca:57:89:e1:3e:5a:34:4e:cb:9c:6e:7c:f1:5a:8d:85:88:
c1:b5:cc:8e:3c:fa:71:93:7c:d6:62:34:29:99:8d:b2:a7:2f:
76:26:8a:d8:df:20:95:c2:7b:22:f0:22:de:5b:a3:07:ee:2a:
21:7d:b2:ce:e5:5b:b3:67:28:87:6b:47:a7:3e:e0:76:a4:92:
99:80:85:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:55:19 2026 by rpki-client