Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
File: kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft (raw, json)
Hash identifier: hlZOcgY3e8GObZljMHMTxWMsGE7BLyWZSkjOml3PvKM=
Subject key identifier: 40:5C:ED:9A:89:75:0D:E2:C1:B2:83:04:1E:C4:CE:A9:E4:CE:F9:71
Authority key identifier: 91:CB:57:D7:E1:E7:67:B5:3E:FD:E4:E6:CA:35:E6:EA:D6:3E:A0:F2
Certificate issuer: /CN=91cb57d7e1e767b53efde4e6ca35e6ead63ea0f2
Certificate serial: 019E01072D99B8DCEE9D7B0B3267A33EDE5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kctX1-HnZ7U-_eTmyjXm6tY-oPI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
Manifest number: 17
Signing time: Thu 07 May 2026 06:01:48 +0000
Manifest this update: Thu 07 May 2026 06:01:48 +0000
Manifest next update: Fri 08 May 2026 06:01:48 +0000
Files and hashes: 1: kctX1-HnZ7U-_eTmyjXm6tY-oPI.crl (hash: eu1g9FIh343h4JuljqkK6HPl5uASER0lLjeNpSapQQ0=)
2: sNkrn4e_iEhVmsY7BKmVgiJzrPk.roa (hash: Wi4vAN2/n0xlq6WCGCToRrJhwKyrF46LKv+aBLh5wr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kctX1-HnZ7U-_eTmyjXm6tY-oPI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 08 May 2026 06:01:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:01:07:2d:99:b8:dc:ee:9d:7b:0b:32:67:a3:3e:de:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91cb57d7e1e767b53efde4e6ca35e6ead63ea0f2
Validity
Not Before: May 7 06:01:48 2026 GMT
Not After : May 8 06:01:48 2026 GMT
Subject: CN=405ced9a89750de2c1b283041ec4cea9e4cef971
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ea:c6:f1:12:5c:e7:a8:8b:99:0c:0f:2b:6c:
2e:1e:fa:45:80:96:54:73:14:2a:26:5b:02:aa:93:
bf:dc:07:38:41:2e:d6:06:4b:19:3a:39:17:b3:23:
f7:b3:3c:c4:f2:13:bc:65:3f:74:d5:c3:50:8b:4f:
47:aa:08:7a:00:ff:0a:65:15:30:ea:7d:74:d9:0c:
cb:67:80:05:00:24:1b:1f:30:cc:c7:4b:da:e8:ba:
9e:9b:34:e2:ae:de:bf:e5:6c:74:01:1e:dd:ea:3a:
95:e8:1b:a6:40:e9:ed:f4:b2:0e:af:7b:04:9f:ce:
57:56:b9:7d:67:24:a2:e1:20:10:66:c3:96:5c:c3:
6b:c0:cb:80:4c:42:d2:cd:2c:69:45:4f:6b:40:d2:
1c:cc:fe:42:45:12:dd:b8:a2:17:b7:d5:4c:e7:7d:
be:25:cd:50:5a:ae:ba:01:31:35:6d:5d:e6:d1:81:
39:14:99:ae:73:b5:16:65:1d:be:9d:88:5f:cf:ae:
92:e2:6d:4d:6b:c2:ca:1a:c0:cc:26:48:9a:f5:b1:
85:72:cc:24:5e:6f:a9:f9:36:00:7b:eb:e6:e5:26:
ab:a5:6e:28:50:bc:ae:71:9a:96:3f:84:c7:d1:b3:
70:3a:66:3a:9b:ac:b4:56:e9:16:7a:04:cc:20:e2:
f0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:5C:ED:9A:89:75:0D:E2:C1:B2:83:04:1E:C4:CE:A9:E4:CE:F9:71
X509v3 Authority Key Identifier:
keyid:91:CB:57:D7:E1:E7:67:B5:3E:FD:E4:E6:CA:35:E6:EA:D6:3E:A0:F2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kctX1-HnZ7U-_eTmyjXm6tY-oPI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/aac8da-9eec-4587-9e73-e9618c3b5a95/1/kctX1-HnZ7U-_eTmyjXm6tY-oPI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:fc:fb:e0:5e:9a:29:c6:5d:3e:ee:e0:8b:c4:9a:ff:4d:4d:
57:d9:26:95:c0:ed:62:a6:ee:87:5c:cb:94:d1:b5:10:88:e3:
8d:cb:71:ae:bf:b0:16:29:57:c6:89:2a:a6:44:87:f7:2f:01:
92:53:2e:83:23:29:98:e1:a2:48:d1:60:e1:4d:bc:e0:c2:30:
3f:37:6a:cb:69:07:e5:99:e0:e1:3c:c4:26:be:c5:7e:3b:44:
78:7b:47:4d:8a:61:7b:da:39:14:11:81:fa:33:32:c1:54:94:
0e:bf:c2:03:a3:6d:ae:4d:ab:20:ae:f3:1b:8c:f9:49:b5:79:
c3:d1:3e:19:b8:99:f2:99:c6:30:1a:55:87:7d:ae:43:71:c9:
e1:df:25:9d:b4:fd:84:e2:83:d9:f7:e4:5e:17:e8:79:d7:23:
22:84:2a:2c:8a:22:8a:73:9f:6a:78:2a:56:ec:62:4e:d3:ca:
01:31:cb:e1:80:7d:2e:fe:6e:46:eb:0d:e5:91:bd:d5:d3:de:
e3:94:3a:04:de:4d:c7:86:51:ce:e9:56:32:3c:b3:d2:1e:ed:
70:0b:60:f6:ee:76:0f:7c:68:3c:ed:4f:7c:62:88:56:a8:3c:
e8:4a:1b:f9:36:a3:b6:ec:39:52:4b:28:4a:08:fd:71:9c:ee:
e3:82:9b:15
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4BBy2ZuNzunXsLMmejPt5cMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxY2I1N2Q3ZTFlNzY3YjUzZWZkZTRlNmNhMzVlNmVhZDYz
ZWEwZjIwHhcNMjYwNTA3MDYwMTQ4WhcNMjYwNTA4MDYwMTQ4WjAzMTEwLwYDVQQD
Eyg0MDVjZWQ5YTg5NzUwZGUyYzFiMjgzMDQxZWM0Y2VhOWU0Y2VmOTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxerG8RJc56iLmQwPK2wuHvpFgJZU
cxQqJlsCqpO/3Ac4QS7WBksZOjkXsyP3szzE8hO8ZT901cNQi09Hqgh6AP8KZRUw
6n102QzLZ4AFACQbHzDMx0va6LqemzTirt6/5Wx0AR7d6jqV6BumQOnt9LIOr3sE
n85XVrl9ZySi4SAQZsOWXMNrwMuATELSzSxpRU9rQNIczP5CRRLduKIXt9VM532+
Jc1QWq66ATE1bV3m0YE5FJmuc7UWZR2+nYhfz66S4m1Na8LKGsDMJkia9bGFcswk
Xm+p+TYAe+vm5SarpW4oULyucZqWP4TH0bNwOmY6m6y0VukWegTMIOLwGwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEBc7ZqJdQ3iwbKDBB7EzqnkzvlxMB8GA1UdIwQY
MBaAFJHLV9fh52e1Pv3k5so15urWPqDyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2N0WDEtSG5aN1UtX2VUbXlqWG02dFktb1BJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi9hYWM4ZGEtOWVlYy00NTg3LTllNzMt
ZTk2MThjM2I1YTk1LzEva2N0WDEtSG5aN1UtX2VUbXlqWG02dFktb1BJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iZi9hYWM4ZGEtOWVlYy00NTg3LTllNzMtZTk2MThjM2I1YTk1
LzEva2N0WDEtSG5aN1UtX2VUbXlqWG02dFktb1BJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFfz74F6a
KcZdPu7gi8Sa/01NV9kmlcDtYqbuh1zLlNG1EIjjjctxrr+wFilXxokqpkSH9y8B
klMugyMpmOGiSNFg4U284MIwPzdqy2kH5Zng4TzEJr7FfjtEeHtHTYphe9o5FBGB
+jMywVSUDr/CA6Ntrk2rIK7zG4z5SbV5w9E+GbiZ8pnGMBpVh32uQ3HJ4d8lnbT9
hOKD2ffkXhfoedcjIoQqLIoiinOfangqVuxiTtPKATHL4YB9Lv5uRusN5ZG91dPe
45Q6BN5Nx4ZRzulWMjyz0h7tcAtg9u52D3xoPO1PfGKIVqg86Eob+Tajtuw5Ukso
Sgj9cZzu44KbFQ==
-----END CERTIFICATE-----
Generated at Thu May 7 10:16:17 2026 by rpki-client