Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
File: kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft (raw, json)
Hash identifier: s/vFmifJwTicv1F+BfOi0JrqXTo9P4wA/k0BUz4Hglg=
Subject key identifier: 9D:64:B4:DA:7C:22:BC:6E:F9:11:81:35:1A:36:EE:4A:54:14:29:10
Authority key identifier: 91:CB:57:D7:E1:E7:67:B5:3E:FD:E4:E6:CA:35:E6:EA:D6:3E:A0:F2
Certificate issuer: /CN=91cb57d7e1e767b53efde4e6ca35e6ead63ea0f2
Certificate serial: 019EEE90380A45FC5FEBEF3AB23F41D9F87D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kctX1-HnZ7U-_eTmyjXm6tY-oPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
Manifest number: 92
Signing time: Mon 22 Jun 2026 09:01:29 +0000
Manifest this update: Mon 22 Jun 2026 09:01:29 +0000
Manifest next update: Tue 23 Jun 2026 09:01:29 +0000
Files and hashes: 1: kctX1-HnZ7U-_eTmyjXm6tY-oPI.crl (hash: L+ihwRgaWZhi8VKpJ/ZPGMu/LiZU8M5kumTkhjKe+3s=)
2: sNkrn4e_iEhVmsY7BKmVgiJzrPk.roa (hash: Wi4vAN2/n0xlq6WCGCToRrJhwKyrF46LKv+aBLh5wr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kctX1-HnZ7U-_eTmyjXm6tY-oPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ee:90:38:0a:45:fc:5f:eb:ef:3a:b2:3f:41:d9:f8:7d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91cb57d7e1e767b53efde4e6ca35e6ead63ea0f2
Validity
Not Before: Jun 22 09:01:29 2026 GMT
Not After : Jun 23 09:01:29 2026 GMT
Subject: CN=9d64b4da7c22bc6ef91181351a36ee4a54142910
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:e1:d4:9c:bb:7d:4e:c4:0e:25:64:c6:e0:08:
3f:0d:04:d3:3d:c4:37:08:7a:1c:de:73:03:1f:3a:
42:09:a0:83:1c:30:4f:00:ca:f4:a3:43:b1:bf:35:
1e:80:49:36:94:d0:da:d3:1a:89:96:50:8a:7a:50:
29:25:42:80:5d:ba:f6:f1:24:c7:1b:68:49:6e:2a:
03:55:b3:b8:d7:e9:4a:1f:f1:af:ce:b4:c8:30:30:
9d:84:4b:a1:da:37:c0:97:43:e4:a6:68:d6:24:d0:
f1:c4:d8:5f:81:14:13:1e:78:c2:1e:aa:a6:2f:90:
bf:9c:fb:a6:ac:f8:3b:9b:83:e0:e9:c8:16:c3:7f:
13:8f:c5:b7:51:a6:45:d2:41:8a:38:e8:80:29:46:
fe:fa:5d:bd:d1:4a:4a:97:bf:e1:c5:a3:87:4a:da:
f1:ce:b5:db:c3:4b:54:4f:6d:be:c7:46:50:83:d3:
51:97:5a:03:a2:89:43:aa:aa:5d:65:18:e4:24:33:
9f:c0:93:b0:e5:3c:fe:f1:e2:28:2b:0b:10:22:b5:
3c:fb:a2:18:e5:96:21:88:6b:f3:4e:4e:44:d8:92:
0f:12:65:3b:1e:bb:20:a6:d4:a6:b9:ab:b4:4f:c7:
82:c4:b2:04:30:28:7b:57:b0:ec:b6:f0:b5:87:8f:
e0:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:64:B4:DA:7C:22:BC:6E:F9:11:81:35:1A:36:EE:4A:54:14:29:10
X509v3 Authority Key Identifier:
keyid:91:CB:57:D7:E1:E7:67:B5:3E:FD:E4:E6:CA:35:E6:EA:D6:3E:A0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kctX1-HnZ7U-_eTmyjXm6tY-oPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:4f:47:96:82:92:01:f2:46:e4:31:20:a5:63:3e:1c:42:bf:
c7:65:77:c7:b2:1e:24:45:e0:4a:67:8f:15:74:81:86:83:08:
b4:2b:f6:d1:2a:4f:af:a0:86:05:82:63:75:c7:3b:ef:bb:3e:
33:a3:ae:e0:24:56:d1:3b:f7:76:b0:16:d6:2e:b6:14:76:cf:
3a:68:73:d0:ef:fd:2e:3a:d3:55:d5:59:24:31:74:4e:e3:8f:
52:89:51:09:00:77:9d:fa:35:19:f2:42:30:c1:0a:16:e1:6f:
2f:8a:0d:0a:16:6a:5b:7f:9d:ce:7b:56:a7:db:77:60:0d:27:
87:3e:2d:a4:bc:37:2d:b1:c2:a8:c5:84:dc:0e:65:2d:3c:ac:
d8:67:df:e2:5f:17:a9:b0:51:80:82:b9:0e:43:11:99:14:91:
a6:c4:47:7b:ef:f6:d6:22:78:2e:15:12:04:36:b5:3c:c2:db:
90:4b:1e:b2:d7:56:3f:7d:26:88:43:4c:90:22:11:e0:20:ca:
2c:c1:1f:88:a0:22:58:41:f3:91:36:0a:d9:28:3f:4f:dd:01:
bc:c0:2c:1e:fd:5a:ba:be:46:0a:d8:58:4b:7c:8a:d8:b2:69:
cf:06:45:fb:8f:d2:59:84:22:ae:61:11:51:ce:cf:84:cf:b1:
9e:cb:53:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 12:06:07 2026 by rpki-client