Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: ITOAO1nr8aZji8G0jPMU/A4zbM3MKAe9RQClo+jR92Y=
Subject key identifier: 44:48:E5:68:AF:DF:63:17:80:DD:39:D3:A0:0D:43:92:48:E6:B9:FD
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019E246E66CCAB694DAB3EB0F7404439593A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 16C3
Signing time: Thu 14 May 2026 03:01:15 +0000
Manifest this update: Thu 14 May 2026 03:01:15 +0000
Manifest next update: Fri 15 May 2026 03:01:15 +0000
Files and hashes: 1: EA-NEOtP3uDP9jqB_OwjrtlomoQ.roa (hash: f9ettJwQvG7z/vLtWszxNDWQ12P3Qi4WIIeHx0l0KMI=)
2: RUWdvZOnBJK0iIW0niXlms-_ZTE.roa (hash: 2+wMNcHhj5TvnlxNSP9HNjiQphs6X1jHdgsBG2jH8oQ=)
3: dJ99YeIlqHaqk3MFFpF1s00gLYY.roa (hash: 2get34VvGB/+dlsQY7O9iVM7eMGsBo6doetqxUk2mpw=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: my0aUr1ZH7wyfYCxVeRY9b8ltwj3Sm0iBfSZWfPmNOI=)
5: oZzPr194SGFDBoXBt9T9kB-yFLc.roa (hash: Dw3uJz0rcR+PJswxCLk9+YfSwY4+DIuftXl5NNe/QJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:24:6e:66:cc:ab:69:4d:ab:3e:b0:f7:40:44:39:59:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: May 14 03:01:15 2026 GMT
Not After : May 15 03:01:15 2026 GMT
Subject: CN=4448e568afdf631780dd39d3a00d439248e6b9fd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:d5:ec:ec:cf:61:9f:a4:c4:37:28:0e:bf:8f:
ba:23:4d:fc:d4:93:03:a3:ba:8f:83:1c:83:a7:9d:
b0:0f:fd:2f:8b:65:7a:38:35:b6:d4:e1:cc:74:0b:
84:fa:6a:64:cf:28:bd:9c:30:5f:3e:2a:a8:87:0b:
af:64:ee:69:66:4e:9b:0f:5b:e5:27:ca:4f:26:17:
50:40:0f:89:54:09:44:25:d5:fb:6a:86:9e:5d:7b:
27:f6:09:28:ec:dd:cb:c5:7e:ec:9c:b1:39:60:8d:
cb:73:78:a8:80:f5:9f:22:d0:32:c2:c9:49:ca:5e:
57:1d:46:7f:67:fe:87:22:bc:c0:04:71:50:d4:f0:
b9:b5:89:fa:14:8b:a5:b6:9c:c0:c9:18:9a:0a:72:
26:fb:b2:eb:3a:b8:c2:81:ab:8c:67:a1:f7:5c:37:
a6:29:ee:55:29:09:44:4a:7d:00:98:41:51:18:6b:
65:23:80:9f:21:3d:83:bc:a5:74:a7:4b:3d:79:e4:
12:01:98:47:e8:23:63:df:f9:17:6d:ff:92:a6:6e:
92:a8:5e:29:86:d8:97:e2:7d:b3:f4:38:4d:c7:bc:
19:9d:63:50:3c:31:eb:51:a7:3b:df:a7:7b:32:b5:
6e:23:7d:9f:28:af:b0:95:0e:4b:83:bc:e0:b6:19:
f6:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:48:E5:68:AF:DF:63:17:80:DD:39:D3:A0:0D:43:92:48:E6:B9:FD
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:9a:03:10:49:fc:b2:8f:0d:b4:a1:4e:be:3e:81:97:56:d2:
c5:36:63:09:95:ec:99:27:c3:4d:ee:ad:6c:18:25:00:a7:59:
ac:64:f6:c3:2a:fa:96:84:b3:29:70:b5:08:ad:ae:c7:9c:68:
18:05:ad:82:d4:fa:b8:51:70:10:12:5f:51:3e:9b:ce:a7:e6:
6f:1a:c3:53:0e:b8:1a:dd:00:75:b2:90:45:ab:8d:ad:8f:8c:
f4:54:be:21:fb:e5:75:d2:cc:ca:54:f9:0f:f6:1d:9b:f7:29:
67:16:14:e9:9f:d7:13:22:82:9b:cc:dc:3c:a3:32:ee:34:36:
40:f2:be:43:b0:94:90:43:78:c7:da:44:41:17:2c:18:96:4c:
61:2f:c8:c1:a4:37:43:d6:02:4e:f5:35:dc:a6:61:ff:d4:f5:
8e:62:e2:e6:68:f3:c5:9f:24:5d:09:df:0e:80:86:05:fa:43:
c5:ac:b0:d9:c6:88:e6:02:41:f2:8b:c7:28:28:2b:71:e3:9e:
72:e1:a3:27:06:d1:fc:4a:69:b3:d8:0b:e3:4a:14:2d:4c:83:
71:c9:b7:5a:b4:83:17:49:b9:0b:6e:cb:5a:04:1b:e2:20:6b:
61:1b:3a:ab:6a:8c:93:8b:52:d1:10:4d:99:17:0d:38:75:92:
cc:47:df:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 14 07:48:51 2026 by rpki-client