Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
File: KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft (raw, json)
Hash identifier: A960ASTiIG9mDm9hjb4mpaiQcn4cvzDR317FAk92rdU=
Subject key identifier: 23:F1:D0:4A:C4:1E:D9:30:34:DC:89:31:7A:6E:4A:80:D3:2B:E8:F8
Authority key identifier: 2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
Certificate issuer: /CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Certificate serial: 019E2A0298EED0F7A7C620CC137A160DF15E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
Manifest number: 1616
Signing time: Fri 15 May 2026 05:01:13 +0000
Manifest this update: Fri 15 May 2026 05:01:13 +0000
Manifest next update: Sat 16 May 2026 05:01:13 +0000
Files and hashes: 1: KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl (hash: LbPxTJakKEk65YeeAm+EEcY6BdC0BiaLxB5wK9h6f9Y=)
2: L7FFVZjn00bwAbkg_Lv5HyPXbUw.roa (hash: DToSgYumdmGKe2TLhpTAx0H6yxJQdXcD2z0JX5cGoUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:02:98:ee:d0:f7:a7:c6:20:cc:13:7a:16:0d:f1:5e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Validity
Not Before: May 15 05:01:13 2026 GMT
Not After : May 16 05:01:13 2026 GMT
Subject: CN=23f1d04ac41ed93034dc89317a6e4a80d32be8f8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:33:3e:db:81:e5:7e:bf:aa:6b:29:4b:f9:6e:
23:0b:42:51:ab:15:fb:d2:fe:1f:b2:9b:72:53:f7:
1b:68:3f:de:16:8e:30:96:a9:3c:f6:03:8c:bc:39:
7a:ef:85:86:eb:d6:c6:a5:84:55:80:bf:a3:9a:5d:
96:6f:eb:2e:2c:fd:a9:36:e1:13:60:e5:d2:09:6b:
94:53:63:90:58:77:04:c1:7d:63:99:10:45:94:c5:
13:f1:88:cb:00:a2:d2:a2:13:ab:70:04:de:40:dc:
58:84:95:bc:87:89:e7:98:2d:9f:9c:f1:50:43:5b:
8b:00:c4:e4:73:5f:75:b0:fb:50:96:aa:b7:51:6a:
f2:cf:ff:81:b4:b5:9a:b5:58:13:7c:58:30:de:07:
8e:45:a3:66:80:27:4c:c1:b6:88:30:27:37:bc:e3:
9f:4c:03:88:f1:0b:36:b0:ce:b9:9b:4b:6a:80:29:
cd:3f:99:a1:82:b2:89:95:7a:4e:00:5a:d5:c5:64:
73:72:c5:fe:a7:2f:fe:83:88:66:62:3d:b5:42:f9:
cb:5c:19:91:12:c5:83:8b:87:84:85:64:0f:eb:4a:
c9:51:1b:07:64:3d:30:0a:b8:78:cd:e7:e8:11:31:
4e:a0:1b:87:ab:c1:e1:7a:c7:03:c4:66:22:1d:44:
76:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:F1:D0:4A:C4:1E:D9:30:34:DC:89:31:7A:6E:4A:80:D3:2B:E8:F8
X509v3 Authority Key Identifier:
keyid:2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:13:9c:2a:5c:b2:4c:15:d7:5c:8c:d6:84:c7:19:54:f2:19:
8f:85:d4:db:a9:ba:8a:a1:f1:a5:ad:80:11:8b:47:6e:a4:79:
24:d3:e3:99:fb:fc:23:e9:e3:fd:af:eb:2a:9b:7a:e7:60:42:
c9:07:28:01:43:f3:55:93:de:be:51:0b:9a:76:c1:79:c6:41:
c3:f6:12:0f:aa:79:75:04:e7:ec:1c:e3:ae:7b:9a:c1:93:96:
6d:8b:15:e4:e6:41:f7:5b:dd:a5:16:9b:b7:78:8b:4f:0e:fc:
a1:bf:a9:c6:c8:63:96:85:c8:be:3e:08:b9:8d:3f:fa:b2:46:
4f:96:a1:73:11:16:a2:27:2e:8a:fb:f3:ed:18:53:af:aa:10:
79:3f:9a:3f:5e:70:63:37:35:b8:ef:07:7c:d7:30:1d:79:16:
9a:fc:25:c8:e8:9f:29:2c:63:98:12:ff:10:0c:ce:03:7f:62:
e5:99:cc:a9:48:cd:93:7a:b4:67:f2:4d:5f:95:a8:b1:71:ca:
ef:51:af:b0:7b:78:6b:ab:e1:8f:94:aa:6a:4e:43:56:af:87:
e1:e7:33:fe:0d:51:38:d9:d3:96:60:de:63:c9:5b:a5:98:05:
d0:02:96:62:19:1d:84:99:d3:59:62:e4:ee:91:cb:54:b0:eb:
8c:e2:09:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 12:43:31 2026 by rpki-client