Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
File: kNdTolR-A6Sw0vkccOnOTkRoBBg.mft (raw, json)
Hash identifier: 9Nqh/Fi9sc6oVgp3DsuDCmgBdZmFX2Xd6aicxmwsh/0=
Subject key identifier: BE:AE:A2:13:42:13:BD:27:5A:87:C3:08:13:88:6E:3B:AF:63:6A:CA
Authority key identifier: 90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
Certificate issuer: /CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Certificate serial: 019E326071219080E761776C7DF69C6BDE76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
Manifest number: 0DB5
Signing time: Sat 16 May 2026 20:00:41 +0000
Manifest this update: Sat 16 May 2026 20:00:41 +0000
Manifest next update: Sun 17 May 2026 20:00:41 +0000
Files and hashes: 1: Mk7_Zq9Rpk43_vAbKxyUcFK-u8s.roa (hash: VGCcTcxG7jSWPwlxbtqAn1nYTHEFZWiZCyYyw1eM6QU=)
2: kNdTolR-A6Sw0vkccOnOTkRoBBg.crl (hash: C9AHg/opg1tJKNHz8+H0Dwq2/fSE6s2WjUMxUTGJeHg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:60:71:21:90:80:e7:61:77:6c:7d:f6:9c:6b:de:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d753a2547e03a4b0d2f91c70e9ce4e44680418
Validity
Not Before: May 16 20:00:41 2026 GMT
Not After : May 17 20:00:41 2026 GMT
Subject: CN=beaea2134213bd275a87c30813886e3baf636aca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:79:0b:1f:ee:96:85:97:1e:bc:68:e1:d2:de:
72:f7:77:ff:62:d5:01:0e:d6:62:71:c3:62:e4:e0:
97:74:f7:ee:ce:96:ab:4c:23:d5:d8:9d:f0:78:6e:
c8:52:26:2e:2c:74:4a:36:b6:e7:4d:f2:26:02:24:
b9:67:f1:5e:87:79:5b:89:3c:f9:a0:07:34:5c:c6:
f8:9d:54:14:0c:7b:4c:3c:78:a4:d1:f4:2a:08:a3:
2e:fd:60:e7:b2:25:34:8a:f4:c7:14:55:e8:c6:b6:
5d:cb:6d:ff:05:e9:9f:bd:35:e9:f9:a0:c4:fe:37:
0e:cb:b8:b7:a0:88:f3:d4:5a:cb:70:68:b1:25:b0:
30:2b:ef:12:3e:11:95:6f:0c:b3:6c:b4:fc:14:4c:
8c:77:02:34:85:bb:fc:b4:8b:08:fa:e4:00:8e:65:
dd:7c:4d:9b:5f:27:ae:c1:64:65:bb:f1:a2:e9:10:
ac:fd:76:a6:d4:d6:2a:87:c1:40:a1:bf:ed:6b:eb:
29:70:f7:5e:e3:61:66:69:81:99:58:19:35:00:c8:
60:93:3c:ea:d1:32:73:88:f0:44:42:bb:a3:40:8a:
22:bb:63:fe:60:33:ce:85:1a:51:31:f9:14:0b:7f:
4d:40:dc:41:da:d5:64:9a:c5:7d:88:89:98:2a:c2:
9d:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:AE:A2:13:42:13:BD:27:5A:87:C3:08:13:88:6E:3B:AF:63:6A:CA
X509v3 Authority Key Identifier:
keyid:90:D7:53:A2:54:7E:03:A4:B0:D2:F9:1C:70:E9:CE:4E:44:68:04:18
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNdTolR-A6Sw0vkccOnOTkRoBBg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/cc9099-7101-472e-aefc-5eb66bce318d/1/kNdTolR-A6Sw0vkccOnOTkRoBBg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:b3:06:3d:15:26:d3:5b:50:69:a0:9f:3f:36:9d:70:eb:e1:
37:99:23:31:27:fe:14:45:e6:82:07:0d:91:1a:b1:87:56:0d:
4e:cc:71:7e:f0:91:23:fb:2f:38:7d:92:e8:c5:f0:4f:c1:f7:
06:a7:8b:67:32:62:c1:47:fc:34:b2:2b:85:fd:07:d4:9c:f0:
89:06:8c:38:b7:b0:71:b0:88:2c:25:38:66:27:ff:fa:d4:26:
0d:c4:ab:ea:dd:c0:c7:ea:f9:28:78:e0:99:d1:1e:28:fb:15:
0a:3e:3f:e8:f3:b8:2c:19:0b:d6:eb:45:30:34:0b:b1:7d:1b:
d4:8e:bd:08:25:5c:ad:4e:de:fe:31:92:0e:84:96:de:f2:c9:
52:bb:ce:ee:53:26:62:ed:98:54:95:a4:dc:0b:33:32:30:b6:
09:bf:2a:1f:a8:a9:b7:b5:65:3b:81:1a:7e:72:c3:93:44:a5:
ba:fb:7b:69:1c:67:4c:d6:07:c5:cd:72:82:7b:f9:29:e1:f4:
df:f4:f7:74:23:0d:5b:ca:03:88:49:51:e0:91:80:88:30:ca:
84:3f:dc:63:46:9b:b2:3d:1a:53:83:de:39:6c:71:7f:98:e3:
49:0c:27:8c:d3:bd:1b:9d:64:2d:c4:4f:77:2a:57:8d:74:54:
9b:d3:80:48
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun May 17 02:06:25 2026 by rpki-client