Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
File: kGQm9IPDaqzahzIySriK1YAMmi0.mft (raw, json)
Hash identifier: SyUw8WqJK2OeegRFkTNIsqUPqg5uAiE2A1qYWS9QoUE=
Subject key identifier: 6C:25:F8:75:EC:86:08:23:F6:AB:79:36:3A:C2:61:D9:2F:C9:BE:41
Authority key identifier: 90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
Certificate issuer: /CN=906426f483c36aacda8732324ab88ad5800c9a2d
Certificate serial: 019E3072FDDEFEE8F253A42CFB34908AF664
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
Manifest number: 0E33
Signing time: Sat 16 May 2026 11:01:42 +0000
Manifest this update: Sat 16 May 2026 11:01:42 +0000
Manifest next update: Sun 17 May 2026 11:01:42 +0000
Files and hashes: 1: kGQm9IPDaqzahzIySriK1YAMmi0.crl (hash: /H0EuufR7HCL0ORLBahEmkQdXVMcnPCIJiGonU7g1zo=)
2: pEXsp_wHHGLaZhZhYFoeKyAe4xU.roa (hash: xI/2+qldJxPTklb7r+PHTCSnZEv4TfvhGV7Tifv5aSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 11:01:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:72:fd:de:fe:e8:f2:53:a4:2c:fb:34:90:8a:f6:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906426f483c36aacda8732324ab88ad5800c9a2d
Validity
Not Before: May 16 11:01:42 2026 GMT
Not After : May 17 11:01:42 2026 GMT
Subject: CN=6c25f875ec860823f6ab79363ac261d92fc9be41
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:08:fb:fc:8c:01:e5:c8:42:b6:dd:d3:69:c6:
59:3a:c8:f3:58:09:21:75:36:e4:7b:d6:9c:16:59:
7b:ad:d3:d3:09:94:76:e1:af:53:40:34:d0:ee:85:
9a:1d:e2:8e:79:49:71:09:04:b7:b1:bb:34:d0:d9:
6e:ad:24:2e:f9:5e:4c:35:bc:ec:58:c4:3c:34:1b:
10:c8:1a:8e:55:d9:5e:cc:6c:94:23:06:b5:4d:4c:
1f:26:58:96:d6:5e:37:36:f7:4b:8b:ce:13:ca:72:
62:c0:44:2f:23:72:09:94:e2:9c:cc:d0:e9:3d:ed:
7e:fc:13:fa:01:b7:89:71:38:d3:76:b2:54:83:60:
ef:1d:65:e9:c4:22:33:c6:37:3e:8f:b6:47:50:34:
c0:2f:46:7e:55:47:d2:02:2d:55:1b:af:37:87:76:
02:ed:97:57:7e:72:67:43:88:37:dc:09:1e:ab:fe:
21:0e:90:47:ea:a8:a1:86:1a:2c:92:41:1a:2e:88:
6a:b7:21:08:d0:8e:24:25:54:52:0f:34:5f:21:0a:
a2:b2:8d:94:cf:b6:ec:f0:4e:89:37:80:93:36:42:
69:19:d9:be:72:63:ef:7e:d8:71:4b:36:d4:e8:fc:
f8:90:b1:3b:1d:3c:28:48:a9:65:b2:c7:0e:67:6f:
ee:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:25:F8:75:EC:86:08:23:F6:AB:79:36:3A:C2:61:D9:2F:C9:BE:41
X509v3 Authority Key Identifier:
keyid:90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:d7:3d:42:5d:36:59:e6:21:f8:79:9d:83:74:9e:8c:44:9b:
f7:9b:77:c6:a5:e0:1c:15:d9:9b:1b:f4:e6:79:03:c0:d2:37:
37:84:b6:2c:4e:a8:37:18:6a:97:19:25:94:24:f7:5a:f0:da:
17:5b:c2:3a:61:f9:2a:5c:7f:20:7a:7f:fc:e1:db:bf:d4:44:
ae:47:7c:b9:38:a7:f2:ff:44:ff:4c:a1:cb:c0:22:dc:0e:4c:
bd:43:cc:af:f8:84:9a:5e:34:54:5d:19:f7:2b:2c:63:f6:7b:
d5:fc:ee:88:86:c8:ee:1a:9c:0b:79:0f:33:ad:85:55:36:8e:
29:de:7f:6b:77:e8:7d:91:c2:01:2a:df:6f:2b:ec:2f:d6:12:
a9:5c:b3:ef:fd:35:0a:b7:14:ee:02:5b:36:2e:58:9a:ce:27:
ce:9e:d4:20:98:41:ac:18:99:4f:b4:8a:31:a8:37:06:35:5a:
eb:ef:cb:45:5c:07:11:38:bf:9b:5c:2b:46:e2:04:c5:4f:3b:
35:ae:4c:26:ab:bd:db:e3:fc:fa:9c:95:e7:6b:f5:1d:77:db:
de:e3:50:98:83:46:51:b1:26:29:c2:6e:06:91:06:e7:71:db:
7c:a1:b2:cf:55:91:78:48:57:a8:c3:29:e1:b6:08:06:18:64:
dd:0d:94:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:23:23 2026 by rpki-client