Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: O/Ijbd7ClWK4r5NblFCq2V5hLLjqy7r+quTNqNedA/8=
Subject key identifier: 66:6C:40:5F:06:70:3C:26:AD:FA:78:1F:D0:C8:52:5E:E7:65:BB:07
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 019E30DFF74282D04F9F7A570F2B64B90B46
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 1913
Signing time: Sat 16 May 2026 13:00:44 +0000
Manifest this update: Sat 16 May 2026 13:00:44 +0000
Manifest next update: Sun 17 May 2026 13:00:44 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: bdcWZattQzvyV9AC6KYCYYcEgy+abRK0ynW6jdR1ds4=)
2: THoFRGj7we5B4orPSAEMrZc2v9I.roa (hash: nx8ZhN2tRi/Vu5vUK7/jsnnIAjWNN0LM5ZVA5cvmy60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:df:f7:42:82:d0:4f:9f:7a:57:0f:2b:64:b9:0b:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: May 16 13:00:44 2026 GMT
Not After : May 17 13:00:44 2026 GMT
Subject: CN=666c405f06703c26adfa781fd0c8525ee765bb07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:a1:40:2f:a5:b8:1c:9e:2a:8b:eb:41:f3:81:
32:16:4f:c5:69:fd:2f:3d:e0:3c:95:d3:67:b1:d5:
a3:92:fd:16:fc:ce:ff:84:36:63:ac:b6:fc:85:50:
c0:f4:ad:10:b8:37:83:32:0c:fd:d0:90:7e:64:77:
cf:6e:8c:92:7c:0a:2f:23:ed:70:de:a9:05:59:46:
2b:98:8f:0d:df:06:e0:d8:ce:6f:bd:aa:83:aa:36:
ba:71:ff:20:6e:21:c4:6e:00:c0:a0:c0:80:54:5c:
34:02:c5:02:5b:af:ba:86:92:84:b2:a1:f7:e2:db:
95:6d:68:cd:5b:25:15:90:ec:33:5a:6a:ce:1d:69:
10:ac:f1:1c:af:af:83:b7:bd:23:44:8f:4c:32:0e:
da:d7:70:07:a4:48:92:8d:ce:64:9e:58:9d:1f:db:
dc:58:c6:1f:c8:44:38:a1:76:f7:45:e4:25:42:78:
cb:5d:d4:d6:91:fb:f3:1b:9a:09:de:9d:d5:2d:a8:
97:83:80:12:b9:60:42:dd:ab:4d:fd:5d:1f:72:96:
ca:c6:23:31:dc:28:17:15:a7:52:48:74:20:4e:70:
bc:6b:46:49:5a:a0:1f:64:20:49:26:7e:23:8d:8d:
07:6c:6c:a0:61:31:db:89:44:0d:c3:7f:12:95:74:
7a:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:6C:40:5F:06:70:3C:26:AD:FA:78:1F:D0:C8:52:5E:E7:65:BB:07
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:bc:2e:80:7f:26:be:f6:9f:72:a3:be:f8:56:d1:20:d2:de:
08:29:95:c9:07:69:41:d8:87:0a:13:6a:96:5d:43:73:2f:ad:
7b:11:b0:a5:bf:c3:c4:28:2f:0b:c1:b6:85:63:84:29:d9:ab:
e8:b5:37:7c:5f:cf:8c:fe:59:d8:75:f5:7b:0d:d6:7a:90:c6:
c9:d7:6f:42:ae:e4:93:d4:2e:42:3d:d3:86:8c:dc:0e:e4:1c:
68:50:7a:62:48:83:04:27:1f:a5:52:81:18:89:53:5e:9d:11:
c2:15:1a:bc:ad:76:34:12:6d:4c:0c:67:2a:43:d0:8b:fe:41:
e0:9d:08:b8:6f:6f:fa:3e:a8:7f:fd:1a:49:04:91:02:33:43:
65:f3:1f:6c:f0:67:4e:2d:54:c3:a4:71:cc:ef:00:24:e3:77:
4e:a5:18:f1:e2:66:73:50:f3:e6:bd:f9:e1:49:2d:b6:86:fc:
45:40:cb:fb:66:34:86:de:1c:ea:29:9b:d6:1c:22:e6:d3:bc:
32:61:66:16:e1:4b:76:7e:8d:b2:e4:d0:c4:4c:ce:36:25:4a:
db:83:bd:e4:8e:07:4b:c3:65:d0:0c:fd:a4:d1:8b:a9:19:29:
75:4e:3a:8b:b4:a3:b9:e4:f0:de:53:ad:a7:6b:8e:71:99:a3:
54:8f:cd:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 17:12:27 2026 by rpki-client