Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: mKOst8x9QPflPY0UaBVmh0+Efx1L7hFis3HvTGb/HHM=
Subject key identifier: A8:73:71:20:4B:0C:9E:D7:EB:54:2A:DF:97:4C:3B:3C:69:2D:30:CB
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019E3229971AEA3582000AA99F6AE61FD2F9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 191D
Signing time: Sat 16 May 2026 19:00:46 +0000
Manifest this update: Sat 16 May 2026 19:00:46 +0000
Manifest next update: Sun 17 May 2026 19:00:46 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: 5qPd0ofPLOxPoAteUxHcSXoJcDWH6/WN+7Sh+2zChKw=)
2: oPGWWYaAX9Sd9i7DrFXYN9EHrLY.roa (hash: gWn6/oluANX78L0hnctxoTZX7zawfsnjM4XEj/gL06s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:29:97:1a:ea:35:82:00:0a:a9:9f:6a:e6:1f:d2:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: May 16 19:00:46 2026 GMT
Not After : May 17 19:00:46 2026 GMT
Subject: CN=a87371204b0c9ed7eb542adf974c3b3c692d30cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:2c:24:1f:a4:ca:79:5f:1e:fc:ef:34:0f:76:
38:56:84:f2:d5:3e:a1:52:0f:00:e7:ca:f1:07:46:
9d:78:a6:4f:fd:cf:2b:cb:e1:70:e9:6d:75:1f:74:
94:0c:e2:48:4b:15:ea:4c:52:3d:2b:a9:6f:43:bb:
23:b5:a7:28:4d:06:69:dc:b0:5f:bd:38:8c:6e:db:
de:54:1c:68:f8:76:54:4b:ca:d6:16:21:44:7a:e8:
c7:2e:2b:96:2e:b7:77:5b:e9:1d:5a:dc:33:c0:5b:
bb:4b:c0:c2:9d:85:8c:a3:2d:89:ee:9b:39:3a:38:
2d:f3:cd:c5:a1:d1:e1:52:06:bc:c1:c8:c2:f2:38:
8b:95:0f:ee:0a:bb:34:98:50:ae:51:8f:13:de:19:
7c:3e:f0:a7:f7:b5:5a:13:10:56:e0:b9:db:a6:b2:
b6:d0:44:31:9b:94:1d:2d:01:e1:b5:fb:6f:18:d2:
c6:f7:e4:a8:9f:49:9d:e5:62:10:5d:71:6b:97:07:
a4:b3:13:b0:7c:c8:1c:70:05:96:7a:41:00:1b:0d:
49:76:d0:c8:f7:74:41:b8:41:2a:1c:a0:87:2d:ee:
b5:54:43:11:ae:da:3b:31:98:77:a7:73:0d:05:28:
92:dc:d9:3f:e0:86:06:69:28:6f:d9:49:f7:e2:c7:
f9:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:73:71:20:4B:0C:9E:D7:EB:54:2A:DF:97:4C:3B:3C:69:2D:30:CB
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:25:c6:1f:cc:c8:b3:84:f0:40:f8:52:a3:5a:1c:3b:c6:5c:
d5:1e:77:de:d4:41:1d:f7:41:e3:32:be:bf:97:8b:11:ff:2b:
5a:0e:6a:e4:85:cd:03:42:d6:60:59:fd:e4:b3:c3:af:2c:92:
c0:5e:f6:47:44:d4:80:27:70:4f:7c:87:15:a8:9a:7f:5a:e5:
10:7b:eb:76:a1:e5:73:8b:7a:d6:34:2b:c1:a3:46:8f:35:95:
96:0f:31:58:31:76:75:ec:6d:5f:ef:dc:15:ac:e2:f1:bf:3e:
7f:3d:0e:86:d8:76:dd:67:0c:23:ff:73:84:1a:18:01:52:24:
fb:76:68:da:d5:b5:ab:3e:e0:55:7c:29:f8:64:b3:8b:b8:66:
f5:31:36:d6:5b:f7:ee:cc:2f:5a:a3:9f:10:ef:5d:3d:d4:5d:
67:19:03:4f:46:50:89:26:c4:28:1b:a4:3a:49:35:45:7c:a2:
27:95:0c:ab:7b:62:f7:a6:78:44:00:b3:5a:fd:6e:fb:c9:67:
ca:ab:74:f4:b0:47:16:cb:b8:1e:7b:19:83:5f:dd:c8:4b:95:
25:1a:30:fc:65:74:8d:44:33:6b:99:13:28:73:35:ac:c8:db:
d2:80:0f:47:4c:78:be:5c:1d:49:86:8d:62:d0:34:55:fc:f7:
f9:fe:b8:2d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 21:13:22 2026 by rpki-client