Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: HSIswXYBpoh/Y/g0D65t4OgP5QctV0wXjOI1JGkRHSY=
Subject key identifier: 39:32:B5:13:7F:1D:E0:49:46:2E:CF:CA:24:5F:4E:9E:A2:99:9F:CC
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 019E31F2BFAB029F17ECA1DB0AA7AFA1551A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 18:00:52 +0000
Manifest this update: Sat 16 May 2026 18:00:52 +0000
Manifest next update: Sun 17 May 2026 18:00:52 +0000
Files and hashes: 1: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (hash: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: J2neBEwdQgUe8L5o1ctsfalwxxShUQqZb5bq62LrgOA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f2:bf:ab:02:9f:17:ec:a1:db:0a:a7:af:a1:55:1a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: May 16 18:00:52 2026 GMT
Not After : May 17 18:00:52 2026 GMT
Subject: CN=3932b5137f1de049462ecfca245f4e9ea2999fcc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:06:74:54:68:0d:82:a3:4c:6d:7a:fc:c8:
a3:47:3b:d4:95:fe:d2:88:d2:10:a4:ff:41:2d:d8:
29:82:c3:b4:7a:09:02:f2:da:e8:c6:9e:80:ec:dd:
11:dd:d6:b8:3f:50:6b:1b:74:49:93:b7:b6:27:e1:
82:8e:ba:4f:98:a2:46:9e:98:da:71:8f:7e:9a:07:
97:6f:bc:a8:92:76:5e:41:6c:3a:82:aa:5c:d9:2a:
ec:be:19:c9:a1:ec:91:c5:6f:f6:29:a3:5c:85:59:
2d:b5:3d:68:8d:fb:68:be:f1:c9:b6:20:a7:45:ac:
04:4a:fd:01:d8:32:2b:61:59:d2:3b:c0:fa:3a:9d:
09:f1:76:73:86:42:52:88:ba:8f:f8:21:72:75:f3:
b3:cd:61:d6:52:4c:ee:c7:27:9e:0c:ff:fe:92:ed:
12:f6:66:39:0c:f6:26:ff:f9:a9:7e:bc:28:09:9e:
b0:f9:6f:ae:ba:eb:e8:2e:c9:52:73:ec:5e:e6:fa:
b5:eb:73:76:ea:74:6a:ac:a5:79:60:43:1f:a0:7c:
40:63:1e:1e:a0:1c:b8:38:75:f6:32:51:ac:b6:27:
5d:22:4c:51:a5:94:30:26:3a:35:a8:bd:19:82:b9:
48:db:d7:b5:19:3b:0c:1d:58:50:9a:7b:79:56:e4:
f7:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:32:B5:13:7F:1D:E0:49:46:2E:CF:CA:24:5F:4E:9E:A2:99:9F:CC
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:8e:17:c9:27:0e:b2:38:15:cb:26:aa:f0:8a:e2:32:fe:02:
8b:16:98:35:7e:30:a7:0f:cf:d0:68:b4:d4:24:f6:a0:01:a9:
92:1a:57:3d:b6:0f:25:77:c8:54:97:9c:79:fd:a6:eb:fc:5f:
d5:0f:c7:71:2c:9b:46:82:21:d5:fb:41:b8:d7:38:08:2c:ef:
eb:16:1a:8f:53:05:28:b9:b0:0a:31:a5:bd:93:7c:43:56:a1:
06:ef:b4:84:5e:33:c3:71:14:89:b8:55:d3:bd:78:de:97:56:
e4:d7:d1:82:27:f7:48:27:fd:3e:7c:45:08:69:6a:6c:f1:60:
4b:e8:e2:e1:17:ef:3d:17:02:da:05:91:1a:c1:a9:6c:f2:c3:
8e:fe:39:15:9d:81:59:cb:72:d3:ae:c5:76:fc:2e:ee:a9:2e:
33:3a:6d:25:42:1c:21:be:b3:be:e1:2e:66:20:12:8a:02:70:
e8:fa:af:4c:11:25:c2:2d:8e:94:23:23:9b:46:a4:7e:d3:8f:
eb:c6:d9:0e:6f:27:05:93:fe:6a:bf:81:bd:86:9d:75:d0:5b:
e2:ce:c7:01:d3:28:1e:c2:1f:a8:12:e5:48:7b:39:70:2b:c2:
f8:02:9b:66:ae:5c:cd:29:97:7c:d8:96:bc:f0:99:ca:9e:df:
7b:5f:fc:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 23:30:30 2026 by rpki-client