Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: 0JhMerEJ+XZBsGVIyutKIZLYnHD53ECN2HyCk5iX4MI=
Subject key identifier: D7:72:0C:D0:66:0C:45:5D:EB:25:5F:AA:E3:5B:31:88:72:7F:12:19
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 019E30E107AB09296A3ABA1465C5350CDEB7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 080B
Signing time: Sat 16 May 2026 13:01:54 +0000
Manifest this update: Sat 16 May 2026 13:01:54 +0000
Manifest next update: Sun 17 May 2026 13:01:54 +0000
Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: 5i52tJh7aOlCzz4VEH0PcXHp22hH404Gggx46gF/zC4=)
2: oWAA3712bfUBzXFDQ4qEFnRk4-8.roa (hash: IL/tQvQ5PPq+dUr5LLZdpWR+gfGz/0GU5klPWCUecLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 13:01:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e1:07:ab:09:29:6a:3a:ba:14:65:c5:35:0c:de:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: May 16 13:01:54 2026 GMT
Not After : May 17 13:01:54 2026 GMT
Subject: CN=d7720cd0660c455deb255faae35b3188727f1219
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:10:3f:4b:3a:6a:80:d0:01:41:d2:0d:7f:41:
3e:45:b8:04:ce:e5:ce:bc:43:5e:5a:eb:41:18:38:
e6:77:46:73:dd:35:61:27:f3:70:7b:92:b4:72:6b:
4a:c1:82:8d:9c:c1:7b:b2:b8:f8:2f:00:2f:d5:51:
53:2d:a8:1e:c9:e8:63:d2:b6:55:23:0d:ec:ea:97:
eb:19:f8:5d:3a:06:9b:06:7c:31:2a:cf:ac:c7:61:
55:0b:81:6f:62:cb:00:4e:8b:e2:ad:be:43:99:4b:
24:f0:38:f1:1f:23:fb:9a:ab:e5:c8:75:77:6f:d3:
b7:69:89:2d:b6:ea:0d:53:e3:5b:ec:fc:b0:89:e1:
3e:41:2f:58:8a:bf:63:fa:11:b7:31:5e:e1:bf:c3:
58:32:07:b2:cb:b8:16:5c:00:a2:eb:76:58:30:06:
8f:0b:fa:f0:61:88:d1:00:db:4b:46:58:7e:86:b7:
8d:9b:53:84:a5:57:50:81:ca:0e:33:14:73:e1:ca:
9e:45:c3:e0:ee:86:bd:2a:e5:bb:2d:3a:fb:58:9d:
d2:24:aa:d3:32:d5:42:7b:7f:e0:43:fe:b6:03:bb:
1c:6e:c4:29:0e:92:42:96:eb:a5:88:d5:87:1a:32:
ad:99:e0:b8:fd:66:5f:8e:44:0c:9f:6c:21:3e:57:
04:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:72:0C:D0:66:0C:45:5D:EB:25:5F:AA:E3:5B:31:88:72:7F:12:19
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:95:eb:97:6e:a6:58:a3:fb:db:cd:20:f5:46:93:76:86:15:
1a:16:de:fc:02:99:fc:72:a2:bb:23:43:91:f6:32:f3:d9:51:
91:3f:40:6c:78:db:e3:7a:c2:f0:d1:5c:92:ab:63:91:ec:1c:
1e:47:39:bc:de:b7:28:b5:09:b0:65:a3:a4:19:f8:29:a8:9d:
e8:68:eb:c7:d3:e8:23:b1:89:d5:af:68:75:1b:5b:96:b9:95:
b5:8a:a7:25:72:d6:c3:22:fe:70:c1:78:72:d4:c6:3d:44:b4:
d2:0b:96:9f:fa:38:f2:71:d2:43:63:c5:76:d9:07:ce:bf:1a:
9d:14:31:99:45:90:98:3a:cf:0f:3f:13:b1:47:11:77:d7:98:
eb:04:00:d3:94:2d:2e:d0:bc:67:52:85:96:16:8d:e7:33:31:
56:d6:cb:cf:83:99:aa:89:b4:0c:90:25:77:cc:2b:6b:bc:e6:
e0:68:71:36:1a:8c:e3:89:49:20:18:e7:ff:bf:dc:61:5b:6e:
3a:b5:a4:e2:db:49:90:ab:b0:35:43:cc:4f:4a:0f:d7:33:eb:
5b:44:43:29:cb:ab:f2:a3:ab:cf:a5:80:e5:db:63:df:32:59:
01:eb:eb:cc:c9:cd:07:59:66:80:f3:74:e8:b2:fd:8c:7a:7a:
a1:65:3c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 22:41:33 2026 by rpki-client