Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
File: kfWJGibPpDaiPn4f-XZki-5573c.mft (raw, json)
Hash identifier: SSuBs+ea+itZ+RVVMOzbuOZfPTvGyV3QMWT5GOMf2J4=
Subject key identifier: A3:50:FF:F7:4E:C5:C0:E4:4E:C3:DD:0D:D5:F7:04:31:8C:39:12:9A
Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Certificate serial: 019DFC1794ECCAF0F0C87688C8A83BBD1F1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
Manifest number: 1764
Signing time: Wed 06 May 2026 07:01:36 +0000
Manifest this update: Wed 06 May 2026 07:01:36 +0000
Manifest next update: Thu 07 May 2026 07:01:36 +0000
Files and hashes: 1: 13pODHcx3eQP7xOkMHNEefG7IIQ.roa (hash: qlJleMO2jwSLSXtFMrN9K1iB2b/o+2MJHkGDE9iSiW4=)
2: kfWJGibPpDaiPn4f-XZki-5573c.crl (hash: mRe3DN4C0EbJeJYtHZ4sOSlwAUVulQawNTWxaxR32UA=)
3: n4Dsi3C82jo2ZtBfzJElgZJ-w5k.roa (hash: 3luKXeODer9xKHZYN0At3nnyayOvshr2VqXrwUa+RzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 07 May 2026 07:01:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:fc:17:94:ec:ca:f0:f0:c8:76:88:c8:a8:3b:bd:1f:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Validity
Not Before: May 6 07:01:36 2026 GMT
Not After : May 7 07:01:36 2026 GMT
Subject: CN=a350fff74ec5c0e44ec3dd0dd5f704318c39129a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:35:f5:01:be:2d:eb:17:67:aa:d8:6b:3e:21:
ab:75:a2:66:c5:d7:dd:8e:5c:d4:2b:91:60:97:6f:
47:db:c3:dc:87:50:9c:1d:50:7f:9e:c2:ed:37:1a:
61:f6:34:13:bb:8f:5d:c0:b1:31:8b:25:ed:e2:ef:
23:bc:77:0e:a0:59:68:7b:09:0b:f9:09:44:76:16:
4e:2f:a4:39:c8:c0:79:2b:28:7c:d8:c3:47:d1:74:
a7:bf:42:9d:92:62:14:2b:40:ba:21:b3:a0:e8:a8:
c4:df:22:0d:79:55:fc:23:6b:99:74:c6:e1:c9:d9:
df:a5:d7:38:6b:af:f5:ed:99:af:ba:47:2c:12:2d:
a5:f0:aa:29:55:43:53:f7:d6:fb:05:66:2c:85:f5:
00:cf:cb:fc:a6:d0:14:52:ac:08:4d:12:b2:b3:0a:
c0:7e:6b:9f:e0:a7:49:15:15:77:7b:e7:47:77:f4:
de:41:29:a6:bd:0e:28:7d:45:46:2e:28:70:45:31:
35:6b:45:48:1d:e2:98:88:85:f2:01:24:ca:fd:a2:
fd:28:5f:5b:e5:68:c2:67:12:e5:77:65:2c:5b:4d:
77:73:10:94:ae:14:a0:9d:b6:48:ce:c6:5f:83:76:
34:88:d6:4b:fe:9e:06:05:c7:6b:21:07:51:93:e4:
63:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:50:FF:F7:4E:C5:C0:E4:4E:C3:DD:0D:D5:F7:04:31:8C:39:12:9A
X509v3 Authority Key Identifier:
keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3a:e5:ed:7e:d3:12:0d:03:41:32:43:9b:34:dc:f7:a0:44:2c:
20:2c:f2:3b:8c:af:ee:56:27:14:a2:73:c4:c2:58:fb:86:74:
13:d7:a8:00:77:33:e1:97:b6:73:6a:10:48:a1:1c:dd:5d:29:
29:20:67:f8:54:a6:8a:18:51:4f:71:c0:9c:b1:b2:9a:35:0e:
58:f9:c5:7e:46:7c:38:f8:2d:7d:30:c5:6d:66:3b:93:53:f4:
1b:d8:7b:bc:75:45:33:70:22:70:80:d2:29:a3:c0:6d:9a:c5:
7c:b1:ff:32:2b:eb:74:da:5f:73:91:71:98:99:67:c1:eb:4c:
d1:d2:62:c4:6e:3b:e7:3c:cc:4a:5d:fe:ec:85:a9:77:8c:1d:
6e:9d:4a:40:71:86:d5:53:d4:6e:b3:06:7f:81:a1:ea:4b:bf:
e7:1d:ad:1b:bb:a7:4d:47:d4:a6:ff:11:04:21:aa:d4:1a:76:
88:d1:86:88:e0:c7:d0:5d:3f:09:62:cb:1c:8b:77:77:3f:ad:
83:e5:a9:10:b0:2c:0e:3d:ff:0e:47:2e:85:52:86:33:c3:c5:
80:39:94:db:45:e1:41:30:03:8a:78:16:ad:64:69:b5:48:bb:
f5:e7:e5:4f:37:fe:71:bb:da:19:34:ce:a9:be:13:92:6c:02:
c9:95:e2:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 6 17:35:58 2026 by rpki-client