Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: v74pZ38ENzHzrHUHE7jtcgGJRauAPrzz2x4GrQzIF5k=
Subject key identifier: 09:E8:B2:D9:42:DF:B8:A3:A7:57:77:09:4D:70:6A:B5:CF:9A:61:64
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 019E31179A2969506B2070F2F3301299793A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 0667
Signing time: Sat 16 May 2026 14:01:30 +0000
Manifest this update: Sat 16 May 2026 14:01:30 +0000
Manifest next update: Sun 17 May 2026 14:01:30 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: DG0sLlTPpRaEf2qoXc3J3WQcsIDPRKznfZbDUBHTNT0=)
2: ir9SuLduq8J9bIwWBVKAyAFiwvk.roa (hash: LeNR5QQthmrMSFvWNxLjb0RXrLTd6w9z7OeC3M8gneo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:9a:29:69:50:6b:20:70:f2:f3:30:12:99:79:3a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: May 16 14:01:30 2026 GMT
Not After : May 17 14:01:30 2026 GMT
Subject: CN=09e8b2d942dfb8a3a75777094d706ab5cf9a6164
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:3a:c4:bd:a1:1d:07:d9:3a:97:7b:49:c8:9e:
cf:15:c9:62:75:51:b3:15:b3:41:cd:c9:67:c2:d8:
75:70:8e:3d:11:ae:6e:64:87:26:a8:60:b7:88:e7:
6b:41:e6:c8:0a:68:58:09:ec:f9:4b:99:8b:a6:d3:
f0:ce:35:6d:da:8f:88:63:86:69:86:69:db:6a:96:
2a:7d:69:88:de:f0:3c:64:88:8e:41:da:af:43:a5:
84:45:bb:46:5c:c7:c9:e9:cd:c4:75:a3:33:4b:fa:
fd:9e:2c:90:a5:09:30:9f:4d:3a:f6:1b:47:f3:c9:
12:1d:ab:9b:29:c8:34:49:f0:e7:f3:d1:69:be:f3:
eb:25:5d:1c:73:ec:26:d8:21:98:df:e9:23:4e:4b:
f4:7b:95:89:83:aa:32:2d:ed:42:13:58:8c:cb:b9:
27:91:13:1f:68:78:0a:83:c2:be:db:62:7c:24:87:
7a:14:de:ae:2d:72:ac:ca:27:97:3c:4a:74:92:d9:
1e:8e:e6:d3:79:78:e3:03:c2:49:2d:4e:be:45:1c:
05:d0:cc:c2:f4:d9:86:aa:9b:13:89:76:8e:9c:92:
5f:00:98:da:1c:46:ad:a1:e2:3d:16:12:34:ab:5c:
f1:4d:34:2d:5d:20:e6:63:91:5d:69:bc:0f:0b:70:
f2:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:E8:B2:D9:42:DF:B8:A3:A7:57:77:09:4D:70:6A:B5:CF:9A:61:64
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
37:c0:f5:d3:86:7a:be:a1:bc:6e:f7:5b:8d:49:25:3f:3b:c4:
26:ca:27:b9:fc:c4:48:18:fd:d0:02:36:c5:5c:83:f7:b1:9e:
63:01:88:4c:68:5d:f4:f7:7a:ff:e5:02:8f:71:0b:58:02:ab:
2c:68:b1:7d:96:a0:df:b7:68:de:c9:97:93:73:90:d6:05:4b:
a7:ff:1f:6f:18:3e:1e:04:9c:fa:e4:4c:a5:81:c8:30:8c:71:
b6:8d:5a:64:6b:8c:a8:42:2d:49:9e:68:d9:0f:e3:05:b5:c7:
c2:99:12:8f:e6:dd:c2:80:0d:33:47:bb:8c:3f:2e:74:45:e4:
e7:32:18:6e:83:c2:3e:77:d9:18:94:7a:37:d5:4d:be:5e:f7:
97:be:ee:68:e4:35:3f:c1:97:da:a2:ea:85:79:68:5d:00:6f:
2b:ef:25:76:3c:a3:e8:66:d0:ac:36:b3:02:c9:af:d0:5c:17:
0f:b6:5d:2e:eb:82:01:83:47:53:df:fe:22:97:77:d4:2a:b6:
a6:d5:ad:a0:f9:9c:76:41:8c:22:82:63:48:fe:42:ee:2a:d6:
ae:3d:ad:3f:21:71:72:29:91:3c:91:a2:07:46:82:0c:32:fe:
9a:63:6b:c0:69:9d:14:fd:5e:e1:b9:c1:93:8d:bc:5a:0b:56:
72:05:48:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:02:10 2026 by rpki-client