Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: ADSiKouVNqDRD30vlOLLI78xjHxmev+c5nb4XQ83MmY=
Subject key identifier: 67:6B:28:01:60:EE:C0:93:C1:36:E3:46:A7:9C:48:72:63:00:39:0E
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 019EB6202E90BBFE5823201C9CFAD3D42E82
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 0AEF
Signing time: Thu 11 Jun 2026 10:00:22 +0000
Manifest this update: Thu 11 Jun 2026 10:00:22 +0000
Manifest next update: Fri 12 Jun 2026 10:00:22 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: bQ/7HDuShyHnwRMI0O2G5m0x+fHEcj7UD4uNYzYqBW4=)
2: oEI10F1yOzZXTlBBBvzIeX5OXog.roa (hash: QNwI0l8coi9XbWot/ryVzcBU4wEtxZkGadr7asLldw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 10:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b6:20:2e:90:bb:fe:58:23:20:1c:9c:fa:d3:d4:2e:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Jun 11 10:00:22 2026 GMT
Not After : Jun 12 10:00:22 2026 GMT
Subject: CN=676b280160eec093c136e346a79c48726300390e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:c7:3f:3b:07:88:78:01:da:ef:39:f3:77:28:
bd:06:95:bf:0e:b2:7c:44:f1:64:42:a6:c3:ef:eb:
6f:78:35:07:f2:c5:14:2d:cc:11:1c:14:16:1e:96:
a5:b8:67:f3:30:fb:5b:d0:ab:94:ca:5c:43:75:53:
28:58:3e:0c:fe:55:77:97:8a:a7:fc:80:1d:c8:87:
46:c1:65:ce:15:d7:23:76:76:3d:b9:14:a9:ef:28:
84:e0:5f:15:95:f2:36:bb:70:40:53:bf:8e:ec:19:
ef:55:d0:26:93:6d:89:76:bd:dd:86:51:47:a0:82:
51:ad:cf:cb:6d:dc:6e:24:80:bb:e0:18:c8:c4:b9:
b3:ca:bd:fe:f3:9c:c1:d1:e5:7f:ef:45:ab:66:76:
11:09:52:64:79:12:ad:60:f9:d3:55:7b:a3:90:a8:
2e:e9:64:4f:0b:64:22:e8:8a:10:63:38:0c:b6:df:
57:f5:6c:27:3b:91:21:20:5a:56:d1:c7:0e:1b:f2:
2c:c9:e7:9b:8b:73:cc:28:ea:9c:d7:93:a6:55:9e:
7f:8d:62:1c:74:65:bb:b8:05:41:46:b0:f1:33:ee:
91:db:c7:a2:ff:59:54:22:68:c1:d4:40:e2:46:d8:
8f:da:e2:f6:9c:91:7b:30:b2:9e:68:d2:ea:a9:e5:
a6:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:6B:28:01:60:EE:C0:93:C1:36:E3:46:A7:9C:48:72:63:00:39:0E
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:fc:fd:0e:ec:90:78:f4:58:51:f9:60:b9:f3:95:c0:32:9a:
3d:1f:a6:67:36:76:54:34:11:8a:be:cf:d5:d0:56:63:14:b6:
38:ed:50:2d:95:4b:11:60:91:e5:43:2b:26:7a:dc:30:cc:88:
8c:d6:8c:f7:28:86:ce:12:22:51:f4:72:df:05:85:c8:b7:72:
46:5f:44:e3:5b:e8:eb:dd:75:e0:98:ae:52:b9:05:7b:88:ab:
8e:69:2b:8b:1c:da:48:67:8e:04:3e:1e:57:08:df:0a:84:b5:
09:7b:4d:22:72:3c:08:9b:42:eb:f3:72:f5:f1:ba:98:f0:cc:
22:be:88:d7:05:5e:5c:76:10:4d:80:74:77:09:7a:50:2a:05:
af:c4:8f:72:07:c0:72:e9:70:28:34:13:00:9a:13:63:f1:92:
99:c5:3c:83:98:86:b9:1b:a4:c0:b3:96:83:a4:09:93:17:49:
2c:f6:7e:22:58:d5:7b:77:b2:28:17:bb:36:16:d9:4a:26:10:
3b:00:78:3a:fe:c4:9d:20:05:b4:6e:f6:fa:b2:f0:5b:ad:89:
a7:f6:94:03:31:60:a6:eb:9d:26:37:6b:c3:55:3b:cf:d7:54:
0d:f6:d8:1e:66:17:4f:a5:07:2e:85:b3:66:1d:1e:8a:8b:f4:
27:fc:d5:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 18:11:42 2026 by rpki-client