Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
File: CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft (raw, json)
Hash identifier: 88RwU+c5k1GHUKiJOun6sMEC0TEwQZRqBOsg41WguOs=
Subject key identifier: B8:33:41:60:C7:EF:3C:C5:2D:18:FD:82:78:94:1E:D7:41:9F:3F:92
Authority key identifier: 0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
Certificate issuer: /CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Certificate serial: 019E29948BB0736F3EF419F1D706F449D8FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
Manifest number: 18C6
Signing time: Fri 15 May 2026 03:01:01 +0000
Manifest this update: Fri 15 May 2026 03:01:01 +0000
Manifest next update: Sat 16 May 2026 03:01:01 +0000
Files and hashes: 1: BZsgeYjNsI-TrRFg5BP7kG-awrA.asa (hash: ufP7A3glS5C1ttJSNJgnaiCLyGOMe/t4RYLh1fKQTdc=)
2: CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl (hash: BBt0m5r8T9B//0B16lAjudAdFrtiCHwSR1Ss1VRihcE=)
3: PCXd-9EviSUuR2-KbIZUWi0riBQ.roa (hash: nefgPfEo2Djt4hqoZTxg0xbxcxTGKZQtmu/1O0o4rzc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:29:94:8b:b0:73:6f:3e:f4:19:f1:d7:06:f4:49:d8:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Validity
Not Before: May 15 03:01:01 2026 GMT
Not After : May 16 03:01:01 2026 GMT
Subject: CN=b8334160c7ef3cc52d18fd8278941ed7419f3f92
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:8f:4a:74:67:ce:b1:89:8a:55:e3:88:a5:0a:
d9:7c:a5:3f:48:6e:4f:47:db:8a:e1:5c:77:ee:1f:
b2:95:ac:1c:4e:90:98:65:fe:01:78:35:3d:1a:d9:
cb:44:70:59:7f:87:d1:6b:70:66:fd:23:e4:6e:e3:
09:d5:9e:d5:61:84:ea:d0:08:51:d8:7b:58:d5:33:
2f:e6:dc:03:5b:31:fd:45:db:96:f6:0c:4a:38:3a:
12:8a:bb:8f:ae:2a:74:f9:d2:ef:53:79:f3:4a:3e:
aa:16:39:de:60:37:b7:6b:14:9d:40:fa:a2:4d:cf:
88:70:4e:09:0a:35:19:78:b5:29:bb:19:2c:fb:0b:
44:66:87:4d:da:d5:b4:2b:60:46:ac:ee:d8:e7:24:
e7:c0:17:34:14:1d:10:0e:ac:94:28:27:be:99:11:
68:fe:fd:2d:30:82:e3:db:1f:2b:d6:a6:ea:44:07:
6c:e4:2b:fd:3e:0a:78:d4:f4:08:8e:ad:2b:2b:c4:
0d:af:36:7f:94:03:ab:0b:39:67:10:b0:69:8f:a2:
6d:5a:b7:88:f1:b7:9d:d1:ce:a0:37:9a:f4:43:92:
8f:86:87:ce:67:14:02:e5:6c:f3:47:f0:1e:d1:6a:
5e:13:14:8f:54:93:bc:f2:95:2e:c6:44:7b:f2:df:
bf:c1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:33:41:60:C7:EF:3C:C5:2D:18:FD:82:78:94:1E:D7:41:9F:3F:92
X509v3 Authority Key Identifier:
keyid:0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:47:bf:5a:bd:ab:67:eb:1f:b9:c5:74:c9:08:8d:56:58:e6:
6f:5e:2a:f2:29:0c:80:33:e7:f5:2a:f5:d2:9b:7f:17:ac:5b:
95:4e:c1:be:3b:a2:27:1e:14:40:6d:0e:0a:24:6b:ed:47:a4:
ab:b4:24:93:69:4a:e5:cd:39:36:9b:7d:25:fe:a7:f1:d4:76:
c0:91:4c:f3:6e:c6:e1:9d:51:26:b8:13:98:9e:c8:74:28:5c:
1c:35:c1:08:fc:fc:15:de:54:d0:1c:ba:21:f3:1c:0f:a1:f8:
a2:b8:15:cb:1a:05:76:03:5b:47:66:13:77:18:fa:6c:7b:52:
b9:df:35:5a:9d:4d:57:13:3e:63:2c:88:f6:84:97:3c:e8:6a:
e2:0d:a2:f8:61:23:5a:94:7b:07:a0:1a:89:af:1a:91:1a:48:
33:c2:7f:6c:88:58:5f:a1:b9:79:21:93:91:c3:d9:86:14:68:
fe:b4:2a:8b:d2:a7:4a:d5:39:ef:d4:f4:fc:6b:be:63:3c:c9:
79:de:0c:6b:ec:5a:c0:59:3b:ea:86:21:d8:f5:67:17:9e:96:
4e:51:7a:ad:76:17:b3:35:70:ad:ef:99:c0:21:f0:cf:5d:f8:
82:5f:9f:17:c8:f7:ac:67:84:6e:f3:a5:62:16:cc:d8:fe:90:
21:be:ba:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 06:19:47 2026 by rpki-client