Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: uNUchLAMZPIMOQ36qtPO7Crm6dAs/Mw5RBzcH4lcljs=
Subject key identifier: D1:8D:12:98:EF:DD:20:8F:E9:2B:3F:D1:99:18:68:B5:94:62:EF:08
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 019D37894D8A5BC168DB01ED7EEEF899CB19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 03:00:38 +0000
Manifest this update: Sun 29 Mar 2026 03:00:38 +0000
Manifest next update: Mon 30 Mar 2026 03:00:38 +0000
Files and hashes: 1: Mj7AFWu1EqZHOmVJMKOMm7PDVAc.roa (hash: GRpVbHiFHaOYOCNz4Rrq2ZkYp/ciepwMIDmQKZdm5EU=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: /q1+eTKkRh5N/BwvX5Rb9bAAtpBIQrFGfcL1YEwBzvg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:4d:8a:5b:c1:68:db:01:ed:7e:ee:f8:99:cb:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Mar 29 03:00:38 2026 GMT
Not After : Mar 30 03:00:38 2026 GMT
Subject: CN=d18d1298efdd208fe92b3fd1991868b59462ef08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:eb:28:71:a7:27:db:49:92:fd:c5:b1:fa:6c:
97:f1:6e:dc:70:24:ae:41:d1:19:52:38:09:a4:07:
1e:63:bd:d6:f4:78:8f:39:c3:f9:39:69:55:42:74:
f7:26:ff:67:a9:dd:1f:32:c3:27:b5:7d:30:cb:dd:
05:2b:05:d7:87:90:64:60:33:a0:0e:d9:2c:83:d4:
fa:de:e6:05:04:e2:29:ac:c5:6a:9f:48:46:5c:b6:
b1:50:e6:40:f3:44:60:d6:93:65:12:f4:5a:c2:82:
e7:99:b3:23:df:74:68:42:75:ce:3f:b4:ca:6c:4a:
17:74:fc:e2:46:35:7a:29:be:41:70:5d:19:a7:0c:
76:e5:05:ff:c5:0f:23:91:af:8a:44:7e:58:f9:72:
00:73:2f:e3:fe:9d:c9:a1:c1:e7:2e:0c:28:82:05:
77:60:65:b2:b0:6c:4f:dc:38:70:69:05:7c:8a:03:
00:9b:08:00:23:c6:66:c0:05:90:06:21:c7:d9:78:
92:c0:7d:7b:e6:72:7b:bd:42:60:e3:8e:b0:e1:81:
c8:30:29:9b:94:4e:d8:4d:51:17:4c:0a:73:3a:d6:
b2:a6:7a:7c:20:f2:6e:2a:9e:24:0f:51:76:c4:8e:
12:9e:d4:40:56:6a:07:a1:eb:65:cb:ee:5a:ac:93:
18:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:8D:12:98:EF:DD:20:8F:E9:2B:3F:D1:99:18:68:B5:94:62:EF:08
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:9c:fc:3d:d2:7f:98:dd:88:8c:e7:74:c7:9b:84:ad:6c:ba:
4c:1b:77:d7:cf:9f:9d:34:26:32:ef:63:df:26:8e:b5:d5:78:
ac:5a:c8:0b:59:23:f5:13:b6:d2:15:41:62:33:1f:a4:cb:44:
c4:bf:15:78:b2:ef:ed:16:55:d2:e5:92:ef:bd:a1:4b:7c:c7:
45:00:74:c6:8f:45:b9:3e:63:82:36:42:4f:20:dd:3f:07:1f:
f3:3e:4f:e1:d5:45:cd:61:d5:f9:f1:52:b0:f5:54:ee:40:5d:
e0:09:b5:2c:1a:81:00:9e:52:94:db:18:45:ad:66:77:32:63:
5f:46:ea:90:51:0e:d7:3a:c9:22:66:9b:2c:b5:81:a7:d7:6c:
a4:17:3e:60:a0:f6:9e:57:e0:55:99:cf:ff:3f:b8:3f:5f:ba:
d9:1a:96:23:62:27:0c:00:61:f7:55:f2:c6:f6:f0:3d:ab:72:
bf:24:bb:b2:da:b4:3b:a7:8b:23:16:94:8a:bd:85:ea:5d:be:
c1:f9:7a:98:ad:79:fd:2f:a0:13:3a:d1:2f:28:5b:bd:6e:46:
44:2f:af:3f:75:0f:b3:3b:39:5d:3f:85:6c:e3:b4:f2:46:d5:
7f:4f:6d:ad:df:38:38:2e:ad:6f:fb:07:ed:ff:90:22:7d:a3:
9c:be:f1:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:11 2026 by rpki-client