Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: zzD972bkhsK54HYMx9G6+BzsCPEZ2fZ8izWE8b4ORow=
Subject key identifier: 06:A2:CF:EF:03:9D:0F:6C:8E:2A:91:ED:7C:AD:68:EE:58:5D:5A:66
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 019D38D3CC98430D0C6B2C497F94CB9453AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 09:01:37 +0000
Manifest this update: Sun 29 Mar 2026 09:01:37 +0000
Manifest next update: Mon 30 Mar 2026 09:01:37 +0000
Files and hashes: 1: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (hash: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: JlMObPR5dVOjB4Hy58aCcPA6at9wxpeEwrwRkTi/siw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:cc:98:43:0d:0c:6b:2c:49:7f:94:cb:94:53:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Mar 29 09:01:37 2026 GMT
Not After : Mar 30 09:01:37 2026 GMT
Subject: CN=06a2cfef039d0f6c8e2a91ed7cad68ee585d5a66
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:e6:40:f7:a3:81:02:54:e4:e7:28:0f:6a:1c:
aa:b8:39:35:12:fb:ef:a8:60:58:bc:b2:9c:f0:39:
d6:2f:fb:db:57:31:b0:f1:1f:d6:fb:33:a3:46:aa:
ae:68:6a:de:14:3f:75:70:fc:ac:9e:28:bf:e0:fc:
bd:38:1d:c3:1e:15:46:ef:33:86:55:dc:9d:9c:15:
35:c8:a4:52:61:e2:d6:ed:bd:5b:ce:90:2a:1c:bc:
d6:dc:8c:46:fd:25:84:63:52:d2:f4:28:ed:98:8a:
2a:28:ae:51:00:03:25:82:41:6b:f2:99:40:fb:72:
77:12:52:69:71:0a:4f:e9:fe:a0:34:67:04:10:72:
29:a9:30:a5:c5:9e:2d:48:94:a4:c2:da:5e:8a:5e:
fc:2d:88:29:bb:cc:80:a9:c8:45:af:c2:e3:36:41:
3d:23:46:47:34:03:4b:dd:20:62:e5:ae:49:57:5e:
76:43:bb:03:97:40:db:c8:ac:a0:07:48:d6:a0:fb:
ea:58:03:38:9d:1c:52:bb:aa:a9:aa:22:91:26:d2:
21:f4:de:c3:d7:b3:99:22:fd:7b:57:69:36:cf:e5:
47:f8:5f:97:ed:01:db:3b:4c:d3:89:3c:98:ad:82:
b3:40:4b:7d:a7:1a:63:dc:9d:90:e6:7f:0a:6e:62:
76:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:A2:CF:EF:03:9D:0F:6C:8E:2A:91:ED:7C:AD:68:EE:58:5D:5A:66
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:a8:b3:2f:b0:c3:5b:25:b6:2f:6b:62:95:1e:54:e2:8f:9a:
56:e2:c7:15:20:d9:99:3c:bc:49:47:a1:73:3a:59:45:5c:25:
fe:0e:3a:46:ad:96:5b:e2:73:3c:89:45:88:1a:6e:22:94:5b:
3d:00:12:b8:cf:e2:8b:d9:de:a5:05:67:09:6e:40:e8:f4:6a:
0c:fd:cd:7e:0f:a7:d9:22:75:11:68:f8:32:bd:28:58:08:ef:
99:03:00:c5:b5:db:93:eb:d7:d0:b6:9a:19:25:16:e8:d1:3c:
ab:e0:8b:c7:2a:c4:4f:22:81:cc:1c:bb:61:4a:15:01:fa:ff:
0d:64:07:d3:e7:31:18:9b:aa:c3:d0:4f:97:ec:88:5b:1c:ca:
f8:36:d9:4a:60:3c:91:e2:5a:df:15:a9:77:ba:90:60:bc:b7:
a6:1e:71:86:df:33:3b:75:43:77:ac:42:4e:fd:43:3e:f3:f9:
11:93:cb:28:34:4d:65:51:42:dc:b9:70:b9:74:bd:82:b3:60:
74:f1:f1:e0:07:7e:32:bd:47:cb:60:6d:a2:c1:f5:62:67:2c:
7c:71:a2:f3:dc:92:d3:f2:6e:f0:86:d8:47:87:98:0e:ea:72:
17:b0:a1:2c:ea:00:c9:95:10:fc:5e:30:f7:70:a1:df:9d:00:
ba:be:51:92
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:07:23 2026 by rpki-client