Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json)
Hash identifier: UrLoBgSP7Sf2ERMVjInbxJgQwmKl3LUZtq8c2LpTcZg=
Subject key identifier: 18:CC:D4:34:E8:C6:21:68:E5:DD:1B:B6:F6:38:48:A1:AF:38:4A:46
Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Certificate serial: 019DD3525BA02560DB4A9F92CB47839084FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
Manifest number: 092C
Signing time: Tue 28 Apr 2026 09:01:23 +0000
Manifest this update: Tue 28 Apr 2026 09:01:23 +0000
Manifest next update: Wed 29 Apr 2026 09:01:23 +0000
Files and hashes: 1: MXA3c8QX3g7YwiQOnrLTeGWh5fs.roa (hash: E7jF1me4KBNOx1U7XGJgq5UdFci6SFszrBrpba8pjPc=)
2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: GtTBHj7q0tbXYwKwY8gu5DF2A8oxeHj6tmKA+s3j1Ns=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 29 Apr 2026 02:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d3:52:5b:a0:25:60:db:4a:9f:92:cb:47:83:90:84:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Validity
Not Before: Apr 28 09:01:23 2026 GMT
Not After : Apr 29 09:01:23 2026 GMT
Subject: CN=18ccd434e8c62168e5dd1bb6f63848a1af384a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6a:31:47:4f:19:eb:51:1f:bc:c2:2e:bf:a9:
f0:8b:2f:69:24:98:e9:cb:20:43:42:28:48:28:a7:
36:d4:c8:b5:0c:5a:f4:2b:36:37:fb:90:0a:4d:8a:
38:eb:15:f2:7a:60:b7:2a:a7:cf:e7:45:e4:d4:87:
f3:5f:32:de:57:54:30:43:7e:89:40:8d:5b:9a:26:
82:fc:98:fd:db:af:39:8e:18:d7:e9:58:2c:95:4f:
85:04:68:2b:f5:c9:b4:b3:6f:47:64:17:c3:91:15:
a0:de:40:54:8b:12:9f:20:e9:af:55:78:14:25:e0:
33:71:f0:af:c6:3f:1f:18:71:7f:88:6c:ba:07:50:
53:ee:35:78:e3:48:32:04:fa:f4:4d:3b:0a:85:81:
04:4c:a7:a8:fc:00:be:e2:e6:c4:bb:23:ff:ee:06:
34:b3:ba:4a:e2:6c:91:3f:0c:3b:1b:fb:b5:b6:50:
2b:4d:de:42:89:d5:95:58:0b:75:4b:4f:b3:33:55:
eb:bc:83:87:ff:b4:e0:cb:4b:83:bb:f5:8b:c1:a8:
46:ae:cf:5a:18:dd:c4:fc:e0:37:2a:7b:55:c3:99:
c2:a2:7e:2e:29:e7:bd:ab:5c:d7:52:89:ac:f7:30:
84:4d:82:b8:42:d5:ca:45:5b:0b:1b:b7:c1:13:67:
bb:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:CC:D4:34:E8:C6:21:68:E5:DD:1B:B6:F6:38:48:A1:AF:38:4A:46
X509v3 Authority Key Identifier:
keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:16:c2:4b:b0:8c:6b:cc:e0:d8:91:3f:58:83:99:22:f4:a2:
78:7b:20:25:ab:2d:95:9c:02:d6:51:82:ac:d6:e5:40:68:b1:
80:2a:29:e8:ee:80:4c:e3:6f:d5:e5:e9:fb:a5:f8:81:cf:5e:
d6:fc:89:1b:54:e1:aa:2a:fb:a4:db:77:45:ee:71:7c:05:59:
5e:d5:b3:6c:67:cf:bb:ed:8b:db:5c:c8:32:0c:ae:8b:f8:da:
52:16:13:c4:fb:d8:cd:17:8e:18:85:da:c1:ce:70:11:84:47:
ea:10:e9:04:1c:43:9d:4f:fc:09:1b:7f:26:3d:77:9d:62:db:
e4:1a:fa:1d:de:db:49:68:4b:79:3a:c7:7b:69:3d:58:28:ab:
b4:a1:4d:a5:77:d2:c0:35:e5:34:2b:79:fc:2a:02:45:64:fa:
9d:7f:5f:f1:cc:05:a3:0e:23:7a:22:37:55:09:47:29:05:1e:
05:d6:6d:ed:14:bf:d1:19:c8:df:63:cb:76:11:f2:07:1d:4c:
23:b7:91:3d:ea:08:5b:3f:b2:a3:af:dd:62:e1:03:19:0b:7b:
66:d5:2d:e7:99:63:e9:e4:1c:ba:17:ad:4f:e7:09:30:42:55:
b1:b2:fc:8c:6a:80:11:fe:43:53:d2:4b:44:14:a9:46:39:73:
7f:8d:08:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 11:09:42 2026 by rpki-client