Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: i08PefLeDsSJvm9NpMeN8vu8Cucb0MNy7IuDAU//J8Y=
Subject key identifier: 64:47:B5:05:7D:24:90:01:02:D5:02:A4:CF:CF:D2:B2:CE:70:8E:6A
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019F19E8388D7723DBD71FAC354ED47E22F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1995
Signing time: Tue 30 Jun 2026 19:01:16 +0000
Manifest this update: Tue 30 Jun 2026 19:01:16 +0000
Manifest next update: Wed 01 Jul 2026 19:01:16 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: oUpaO0DU4ruOwt4XFPi3EHyMKIEyDsAoW1fUIUrWXnk=)
2: oPGWWYaAX9Sd9i7DrFXYN9EHrLY.roa (hash: gWn6/oluANX78L0hnctxoTZX7zawfsnjM4XEj/gL06s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e8:38:8d:77:23:db:d7:1f:ac:35:4e:d4:7e:22:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Jun 30 19:01:16 2026 GMT
Not After : Jul 1 19:01:16 2026 GMT
Subject: CN=6447b5057d24900102d502a4cfcfd2b2ce708e6a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:ed:e2:2f:b2:52:3b:41:2d:d9:6c:1e:3d:22:
56:f4:ee:56:95:1e:35:7b:0e:05:08:c0:96:8c:f9:
0c:d2:a6:9c:5d:9f:9f:84:b5:52:e6:01:32:a2:1a:
86:4b:dd:ca:11:c4:3d:e0:6f:b8:48:13:56:b3:23:
6a:15:79:a6:fb:49:67:05:72:fc:45:c6:22:cd:cc:
ca:eb:29:cc:fe:37:f4:e0:0a:80:e0:d3:27:fc:6b:
55:ee:96:8c:3c:14:fc:64:98:41:e7:53:f9:63:d0:
9d:aa:1d:35:c9:96:21:fe:5e:ac:fa:48:14:2f:2a:
0b:14:dc:25:0e:00:e2:5a:13:f7:eb:24:bf:8a:a5:
ca:16:59:ff:4a:c0:af:f4:d2:d1:18:1c:cf:f3:7e:
4b:37:11:8f:c3:cd:54:58:b1:83:c4:8c:46:d2:1e:
db:0f:0b:bc:c0:36:d0:b8:94:12:d2:14:02:00:84:
06:ea:f2:ad:6e:f7:f7:0d:95:cf:8f:9f:00:f1:13:
74:b7:61:13:39:e0:22:e8:d4:29:fb:4c:cb:77:31:
61:f6:7f:2e:6a:ad:d7:f8:55:ab:c4:1c:26:e1:8a:
22:b7:3b:a0:84:a4:1d:b7:0c:f8:01:e5:a1:6a:20:
9d:ed:7d:e9:9e:4c:1b:76:85:48:f2:ad:2e:e9:81:
5d:6d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:47:B5:05:7D:24:90:01:02:D5:02:A4:CF:CF:D2:B2:CE:70:8E:6A
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:cc:b4:f6:82:dc:60:14:41:07:13:55:fd:68:47:e8:4c:ff:
1c:8e:9a:1d:97:ef:e1:ab:63:32:24:f5:65:11:99:6c:50:f3:
52:ea:87:47:d7:ec:29:f2:f9:21:f6:ec:b5:13:96:7e:a9:76:
75:1b:6f:dd:d7:7c:d8:24:95:1d:99:92:dc:1f:75:ca:5c:63:
24:94:90:5e:e9:b0:c3:04:77:47:79:f3:63:5b:18:07:b2:6a:
21:7d:93:4e:bc:c5:de:e3:c3:c3:ff:44:e9:64:eb:e9:23:19:
c6:6d:8d:88:2f:ec:30:30:96:69:5b:d1:e8:89:20:2d:6a:7e:
8c:09:c6:69:37:57:3b:ed:60:81:e1:b2:76:40:34:c0:c0:a3:
e6:03:ae:7f:e6:0b:22:7d:4c:27:e8:f7:ed:17:a1:ab:f0:ff:
42:29:37:14:29:38:04:bf:3b:f2:26:a0:1e:04:fb:26:34:0c:
e1:e4:b1:db:68:5f:dc:da:95:03:e0:7b:be:d8:cc:30:5c:83:
c1:df:41:ae:6b:11:b3:89:72:18:a5:85:93:b1:6b:14:33:36:
1a:f2:ab:9c:18:79:6d:88:2b:61:aa:a7:7a:ee:59:aa:9d:44:
17:2a:68:5e:50:35:57:e7:10:4f:93:c0:2f:39:72:a4:07:42:
b4:27:64:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:17:33 2026 by rpki-client