Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
File: kBZCwNRvjU5MI0wzr771pIOcaiI.mft (raw, json)
Hash identifier: FUqs+v03malzTyYi5poo/C0RFk8tEqabATpHugDoVCs=
Subject key identifier: 74:B6:13:53:98:DF:69:83:92:5E:46:A1:78:10:DD:0B:B4:6C:31:D8
Authority key identifier: 90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
Certificate issuer: /CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Certificate serial: 019E32CF541279E87655A89301ABD92DD2D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
Manifest number: 014E
Signing time: Sat 16 May 2026 22:01:48 +0000
Manifest this update: Sat 16 May 2026 22:01:48 +0000
Manifest next update: Sun 17 May 2026 22:01:48 +0000
Files and hashes: 1: A9-wOdp_rVCM0ESzhr89kQtrxAk.roa (hash: EEXrwqrXm4OhbrVH1e+ftGoZf1df8IiOvwtrHVI9K44=)
2: kBZCwNRvjU5MI0wzr771pIOcaiI.crl (hash: sAh0L4oe4o/Zclc6xFRe3Q7BceowPT8kkyzetoebRm8=)
3: oUxyNiL8a-AOoVb7hvCWizwaEaI.roa (hash: s30Arx9jmVniBQHeZV05te3a62N7rkcg5xppFWIofXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:32:cf:54:12:79:e8:76:55:a8:93:01:ab:d9:2d:d2:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Validity
Not Before: May 16 22:01:48 2026 GMT
Not After : May 17 22:01:48 2026 GMT
Subject: CN=74b6135398df6983925e46a17810dd0bb46c31d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:8d:3c:09:f8:e4:39:89:12:97:70:e4:71:4d:
0d:50:5b:b4:23:fd:51:95:91:cc:87:b5:54:d4:83:
d7:d9:ac:f6:d2:d6:b3:f9:74:20:88:62:a6:7c:47:
fb:90:0f:0c:6d:69:94:79:75:61:3c:13:ff:44:91:
6b:b1:06:02:a0:64:87:e2:2d:01:5b:f7:9e:b1:5a:
d8:5a:e1:65:31:1c:a0:f6:5d:f0:12:fc:b0:d9:ef:
54:b7:7c:d3:5a:3d:4e:92:77:be:eb:51:cf:d2:dd:
bd:18:67:08:23:7c:f4:81:31:56:f7:8b:b7:aa:17:
08:0e:d2:68:3a:5e:d1:6c:31:5b:90:70:93:4a:bd:
64:96:63:c1:22:58:73:b0:d1:c0:aa:06:32:ec:35:
92:ee:3c:e9:46:e5:a9:29:28:64:5f:bf:c3:f4:b8:
8d:90:ba:8d:5f:12:fa:07:5c:36:e1:73:ee:ef:f9:
f4:cb:63:3c:c8:81:b6:bb:1d:30:0a:bd:ae:75:cb:
dd:86:ca:46:f3:36:a4:0b:be:cf:ed:1d:48:22:10:
17:de:96:c0:fe:f4:51:ba:2c:12:9b:77:a1:49:c9:
cd:b0:d4:c1:11:36:dc:03:48:5f:99:6c:6d:a6:32:
57:af:d0:f6:50:55:99:aa:44:08:7d:65:7d:fa:0a:
22:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:B6:13:53:98:DF:69:83:92:5E:46:A1:78:10:DD:0B:B4:6C:31:D8
X509v3 Authority Key Identifier:
keyid:90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:0f:42:bd:bc:6d:41:98:7f:dd:8f:3c:0b:78:94:80:6c:b6:
d5:56:8e:bd:a6:d2:db:f2:7d:29:f8:4d:ce:93:1d:d1:f1:52:
25:d7:f8:a3:98:31:6a:25:a8:c8:fb:50:ff:b9:8b:76:b0:5e:
17:c1:c9:8b:c2:17:80:90:fc:5c:00:62:89:e4:39:ac:9e:c9:
73:9d:60:ff:ee:76:15:1f:d3:0c:ef:a9:95:d2:c6:9b:fc:8b:
1a:b1:30:b7:79:22:fa:1f:4f:6f:91:5c:f4:a7:2d:5c:9d:6c:
e8:76:40:c5:c1:5a:83:b0:ae:e5:60:27:9d:ea:ce:e1:07:4d:
bd:e6:35:9e:4d:9a:ac:44:60:1b:aa:07:c9:89:a4:5d:3f:5f:
23:5c:71:d1:30:c3:df:46:77:c7:f0:36:95:f3:bd:3c:e9:08:
4a:3e:11:b2:e8:b5:7d:66:f2:e2:57:16:50:cd:49:c3:e3:80:
f6:b6:97:3b:b1:8b:82:c4:8b:20:90:99:40:26:82:35:0a:38:
f7:2c:9c:b0:aa:32:96:71:e4:24:2e:e9:5b:91:ca:27:86:f9:
5d:9a:21:92:1f:b7:6d:4f:1c:31:92:8f:74:81:40:44:41:17:
82:4b:f1:b9:e3:57:3d:07:bc:74:a0:bb:53:37:5b:82:aa:72:
8b:53:3f:7e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4yz1QSeeh2VaiTAavZLdLUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwMTY0MmMwZDQ2ZjhkNGU0YzIzNGMzM2FmYmVmNWE0ODM5
YzZhMjIwHhcNMjYwNTE2MjIwMTQ4WhcNMjYwNTE3MjIwMTQ4WjAzMTEwLwYDVQQD
Eyg3NGI2MTM1Mzk4ZGY2OTgzOTI1ZTQ2YTE3ODEwZGQwYmI0NmMzMWQ4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs408CfjkOYkSl3DkcU0NUFu0I/1R
lZHMh7VU1IPX2az20taz+XQgiGKmfEf7kA8MbWmUeXVhPBP/RJFrsQYCoGSH4i0B
W/eesVrYWuFlMRyg9l3wEvyw2e9Ut3zTWj1Okne+61HP0t29GGcII3z0gTFW94u3
qhcIDtJoOl7RbDFbkHCTSr1klmPBIlhzsNHAqgYy7DWS7jzpRuWpKShkX7/D9LiN
kLqNXxL6B1w24XPu7/n0y2M8yIG2ux0wCr2udcvdhspG8zakC77P7R1IIhAX3pbA
/vRRuiwSm3ehScnNsNTBETbcA0hfmWxtpjJXr9D2UFWZqkQIfWV9+goiqwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHS2E1OY32mDkl5GoXgQ3Qu0bDHYMB8GA1UdIwQY
MBaAFJAWQsDUb41OTCNMM6++9aSDnGoiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yy9mMTZiNTEtNWEyMi00ZGI0LWI4OTAt
NDMxMjViZjA5NmIxLzEva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82Yy9mMTZiNTEtNWEyMi00ZGI0LWI4OTAtNDMxMjViZjA5NmIx
LzEva0JaQ3dOUnZqVTVNSTB3enI3NzFwSU9jYWlJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYw9Cvbxt
QZh/3Y88C3iUgGy21VaOvabS2/J9KfhNzpMd0fFSJdf4o5gxaiWoyPtQ/7mLdrBe
F8HJi8IXgJD8XABiieQ5rJ7Jc51g/+52FR/TDO+pldLGm/yLGrEwt3ki+h9Pb5Fc
9KctXJ1s6HZAxcFag7Cu5WAnnerO4QdNveY1nk2arERgG6oHyYmkXT9fI1xx0TDD
30Z3x/A2lfO9POkISj4Rsui1fWby4lcWUM1Jw+OA9raXO7GLgsSLIJCZQCaCNQo4
9yycsKoylnHkJC7pW5HKJ4b5XZohkh+3bU8cMZKPdIFAREEXgkvxueNXPQe8dKC7
Uzdbgqpyi1M/fg==
-----END CERTIFICATE-----
Generated at Sun May 17 01:05:58 2026 by rpki-client