Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
File: KxlTcbTPcLiOdz4bgHyyORYyOFs.mft (raw, json)
Hash identifier: 4pF9nZEBYdHs5pb39xpy4iMN6oMpzk36c1seTIZfYZs=
Subject key identifier: 1F:EE:CA:74:AF:37:8A:E9:8A:02:7B:F9:C0:DB:71:62:C1:48:D1:A8
Authority key identifier: 2B:19:53:71:B4:CF:70:B8:8E:77:3E:1B:80:7C:B2:39:16:32:38:5B
Certificate issuer: /CN=2b195371b4cf70b88e773e1b807cb2391632385b
Certificate serial: 019EB7336D2AC32620B651160D4984C24472
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
Manifest number: 0237
Signing time: Thu 11 Jun 2026 15:01:01 +0000
Manifest this update: Thu 11 Jun 2026 15:01:01 +0000
Manifest next update: Fri 12 Jun 2026 15:01:01 +0000
Files and hashes: 1: KxlTcbTPcLiOdz4bgHyyORYyOFs.crl (hash: q8Ed+0g4k/107z4S91mLJtMDPqrvUA0Kds3vlpKS2d0=)
2: zoysAnJ75pvxhA2S0m-6Zp0HLpE.roa (hash: kFXM7sahaxaI4pXMltbaQts/ViuuZYbtivX7x0d9V2A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.crl
rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 15:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:33:6d:2a:c3:26:20:b6:51:16:0d:49:84:c2:44:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b195371b4cf70b88e773e1b807cb2391632385b
Validity
Not Before: Jun 11 15:01:01 2026 GMT
Not After : Jun 12 15:01:01 2026 GMT
Subject: CN=1feeca74af378ae98a027bf9c0db7162c148d1a8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:f9:02:98:f3:0c:65:a5:77:13:79:10:45:bb:
98:3f:91:f7:dd:10:39:8f:b8:95:de:1d:05:40:ac:
cf:fa:99:30:71:b2:59:65:8a:b4:3f:85:9c:4c:01:
9b:33:51:5e:dd:fa:9a:37:7c:9e:d0:ac:f5:33:27:
7f:59:f3:08:2d:15:1e:6d:5e:9b:1d:6e:e0:c0:c7:
0c:bc:40:a1:48:2c:00:76:88:8f:fb:d4:fe:ed:a7:
59:7f:4a:40:c1:d0:da:22:b6:1c:ca:02:70:6d:4c:
a2:76:85:39:0b:b9:f8:49:81:a3:0f:07:a5:9d:71:
57:7c:61:51:78:c8:df:11:ed:3e:89:38:34:9b:6f:
df:a4:bf:6e:34:83:2e:dd:f1:1c:e0:95:04:6a:24:
1a:90:b8:17:23:e5:a2:aa:19:a3:ce:b8:dc:36:dd:
74:8d:eb:99:c3:b5:34:77:ee:4d:1c:00:52:9c:d1:
74:59:f7:d1:76:7c:25:b0:23:d1:53:b5:0d:c6:4f:
cd:75:27:be:b4:b2:47:d6:f4:27:6a:b0:24:5f:8a:
5b:21:10:49:43:56:cd:ea:1d:c4:81:01:f3:7b:3c:
97:fd:71:67:4e:d4:fe:23:06:51:1e:d6:d7:2f:03:
c7:51:5f:1c:dc:35:bc:ff:5f:b3:c4:48:cb:8e:2a:
81:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:EE:CA:74:AF:37:8A:E9:8A:02:7B:F9:C0:DB:71:62:C1:48:D1:A8
X509v3 Authority Key Identifier:
keyid:2B:19:53:71:B4:CF:70:B8:8E:77:3E:1B:80:7C:B2:39:16:32:38:5B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxlTcbTPcLiOdz4bgHyyORYyOFs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fa/6541b4-7424-4758-bd32-5e4041d93008/1/KxlTcbTPcLiOdz4bgHyyORYyOFs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:4b:cf:d7:d8:4d:94:a4:18:ef:83:56:fe:6c:56:92:ef:30:
ad:98:b5:2d:00:54:00:b8:2e:da:cc:2c:15:03:ed:fa:8f:c3:
01:a9:4d:1b:c6:e0:39:03:47:5f:45:d5:64:44:dd:29:bf:14:
82:ce:05:d9:04:64:a7:dd:34:89:f0:a8:e9:01:ef:41:47:c6:
2f:61:44:f7:58:27:1b:f8:ed:5f:31:92:a1:3f:a1:8f:a6:cf:
19:88:c6:4c:81:28:d5:b5:f3:44:13:23:60:c5:c1:0e:3e:45:
d2:65:f0:29:67:70:bd:6e:21:56:4f:80:47:63:e1:a2:8d:6f:
9c:f7:0c:af:51:cc:77:11:97:23:7b:2b:d4:95:e3:a2:a0:ed:
94:64:12:62:7a:b5:6b:2f:27:e9:d9:70:d0:5e:64:98:01:14:
18:8d:0b:d2:b2:bd:1a:ac:75:a3:92:60:9c:4b:e7:7b:6f:36:
ff:5f:64:1a:70:e5:23:e5:8f:a5:0c:30:ce:46:37:1e:b6:6a:
3e:d5:22:5a:60:37:27:82:b2:e7:c5:d4:d6:7d:69:3c:d3:3c:
77:42:8e:ba:17:42:47:97:ff:32:2a:7e:5f:32:a6:76:76:a9:
ec:56:ec:35:b0:70:2f:24:67:e9:b6:fc:13:b3:9e:54:a4:68:
a2:9f:f5:d9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 23:54:10 2026 by rpki-client