Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
File: CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft (raw, json)
Hash identifier: Im77Mvdo05xEb8Qom+I6Zaw5zxucwyvIcGruzd7ih9A=
Subject key identifier: 23:1D:F3:B4:2E:C3:FE:76:91:3D:5A:31:64:5F:FB:73:0B:3E:AB:00
Authority key identifier: 08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
Certificate issuer: /CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Certificate serial: 019E2AA7C655BE47197CD66856FFEC1E62C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
Manifest number: 1911
Signing time: Fri 15 May 2026 08:01:38 +0000
Manifest this update: Fri 15 May 2026 08:01:38 +0000
Manifest next update: Sat 16 May 2026 08:01:38 +0000
Files and hashes: 1: CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl (hash: Pa3omD/NzMU6/LEZD82r4YvHseBT9klBFS1XJ0xy5zo=)
2: cDoC-jSYN7u0frpLx2bXUSxluu0.roa (hash: 0c+KBOgKhiecSN5vnMV9D8GmEY0jyIF5LXtXoNSNf7w=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 08:01:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:a7:c6:55:be:47:19:7c:d6:68:56:ff:ec:1e:62:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a5c3aba421b78a7d5d09b75b4ce3be5273caac
Validity
Not Before: May 15 08:01:38 2026 GMT
Not After : May 16 08:01:38 2026 GMT
Subject: CN=231df3b42ec3fe76913d5a31645ffb730b3eab00
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:5d:f6:94:c5:07:44:c2:3a:a6:84:7e:ee:34:
63:dc:29:02:a8:d0:6b:75:b8:aa:58:96:8a:e7:76:
b7:db:26:6d:79:dc:fb:26:51:bd:47:a1:3a:e7:80:
35:76:95:95:91:14:58:99:8d:2b:ac:a3:4e:e4:c2:
56:da:4a:81:e2:22:41:d4:d0:8f:6d:47:8a:56:6c:
5b:af:29:b8:4f:92:1c:56:12:00:bb:17:18:26:15:
fd:a9:ad:c0:52:48:2f:b8:5f:15:19:ad:2f:3d:fd:
6a:fa:be:b5:0d:ed:49:42:81:bd:38:18:8e:73:7b:
60:75:2d:e6:9c:94:13:f6:e2:e5:f3:6a:1f:3a:02:
19:8c:80:d8:df:91:8a:f5:6b:55:b6:9a:fc:e0:2b:
ff:85:0b:0a:d6:45:0d:ba:77:cb:48:31:dc:3e:12:
29:74:9a:7e:6a:c5:28:18:cb:18:38:a2:dc:ee:52:
10:31:ef:00:ab:95:96:b9:14:b5:36:ae:62:b6:9e:
11:b9:64:f0:eb:3d:3b:7c:6f:13:07:b6:de:93:ce:
fd:62:55:c7:bd:59:ec:59:3a:63:63:d1:a7:85:d9:
f6:dd:6d:01:34:ae:59:09:a5:5e:33:19:c2:ed:89:
1e:2b:aa:5e:ac:57:60:bb:c4:89:de:be:25:56:1c:
56:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:1D:F3:B4:2E:C3:FE:76:91:3D:5A:31:64:5F:FB:73:0B:3E:AB:00
X509v3 Authority Key Identifier:
keyid:08:A5:C3:AB:A4:21:B7:8A:7D:5D:09:B7:5B:4C:E3:BE:52:73:CA:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKXDq6Qht4p9XQm3W0zjvlJzyqw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7bd8cf-2a61-4b74-860d-364fae7c72c4/1/CKXDq6Qht4p9XQm3W0zjvlJzyqw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:be:b3:1d:4c:cd:95:53:17:1f:e4:5f:0a:9b:56:e5:c6:59:
eb:18:d1:2b:da:4a:d4:a6:da:41:f1:94:81:b5:59:a4:c8:4e:
35:36:d3:cc:84:ab:24:83:1c:f0:d8:92:b3:3f:ef:11:5a:0f:
4b:4d:97:c9:b9:ab:0e:9d:3a:55:4f:b0:6b:26:72:70:53:9d:
b9:0d:52:26:c8:b1:a4:9e:6c:56:af:e9:10:07:f1:d2:1c:19:
a5:bd:97:6a:48:4c:2e:00:d3:0e:53:c7:d4:62:ff:88:d8:63:
90:39:1e:7c:dc:af:dc:1c:3d:4e:b3:c3:7d:d0:79:40:63:52:
1d:4f:5d:95:b1:3b:f1:67:73:a5:1e:16:17:e2:76:44:1b:8a:
1d:83:82:a1:16:98:82:34:3a:dd:9f:38:c5:19:6a:6e:74:d8:
cc:29:ab:56:6c:3b:85:77:6f:3f:e6:ca:0d:a7:51:af:aa:b4:
39:50:6a:d0:ab:5e:b7:16:60:34:b7:11:42:5d:e6:f4:ae:9b:
54:d4:47:e9:7d:d8:d3:1d:1e:2b:13:c1:3d:7a:bf:16:07:fc:
14:90:67:07:21:de:9c:b1:df:27:72:e6:24:21:b5:7c:39:46:
4a:8f:8d:9c:31:5f:16:1b:f7:d9:3b:ba:e6:dc:d4:e4:cc:69:
69:9d:c6:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 13:30:03 2026 by rpki-client