Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
File: KXNk9QJTTodxoMYll5TCbibUvKQ.mft (raw, json)
Hash identifier: suS8KJ/Wy5AyMQ92y3j4V/owJit8rb2XZQhET9dtr8U=
Subject key identifier: 67:62:8A:C0:E9:3F:D2:61:B6:A1:A8:9F:ED:44:22:68:26:F6:DE:3E
Authority key identifier: 29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
Certificate issuer: /CN=297364f502534e8771a0c6259794c26e26d4bca4
Certificate serial: 019E1F111349B682F86707CD1A5859187B88
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
Manifest number: 1772
Signing time: Wed 13 May 2026 02:01:13 +0000
Manifest this update: Wed 13 May 2026 02:01:13 +0000
Manifest next update: Thu 14 May 2026 02:01:13 +0000
Files and hashes: 1: 2kkM-Y1oeDm04wY-B4Ml04duWlg.roa (hash: MnJVJ4NyKNUCeBGsbiD72vxTrQHy4p8bo+xWfr40jXY=)
2: 8iiZMHriRE_NQY6BUN56TO301wk.roa (hash: 8IgM/46WS34GJx+A7aRcZL/22xuZUdfmC4JGezJbIGo=)
3: KXNk9QJTTodxoMYll5TCbibUvKQ.crl (hash: RKPXxIm5o/I6fhRDxK7DUb0Bz1sqD/du55RBKmkOJqI=)
4: NPRTFimJGsBmacQOAQQPr9jae44.roa (hash: wYMwFG2bixNFHagAivVzR2PmUxqhFfwt/BNGFSbdkYM=)
5: OaCi7coDoqW_riGEhMlZBNecV8E.roa (hash: kw8cwASGXXkuOedKfXksZTABUFf4TlTavoR1JiY/+a8=)
6: c-719yS8qxXgAQfc5k5AVeBx00Y.roa (hash: YUllSSiOqr0+m8URR4HPwAVQ/Ac036ttga4eWG7Bio8=)
7: qeQwzeNuT9jDdOYxI4TWIN4Zo9k.roa (hash: PM8l8vqtrNKxFXFYvlOWXQYhkfaDDt1UoO4UWCG6wSU=)
8: u2ApTDuWn4HOYvbWn1xa_cni-dQ.roa (hash: Y3toE9g8ryMSPFUg9EX1w3rj5SHRcm5JoXPtk8CcbE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:13:49:b6:82:f8:67:07:cd:1a:58:59:18:7b:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297364f502534e8771a0c6259794c26e26d4bca4
Validity
Not Before: May 13 02:01:13 2026 GMT
Not After : May 14 02:01:13 2026 GMT
Subject: CN=67628ac0e93fd261b6a1a89fed44226826f6de3e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:dc:d8:c3:07:43:23:cf:95:e5:0a:9f:6a:38:
44:9c:68:4a:dc:4c:ec:92:bc:5d:74:b8:b5:df:e0:
34:a4:0b:ef:ce:86:3c:e7:9f:12:f4:0a:0d:49:f7:
71:88:b9:1c:4a:13:ea:46:e9:74:8e:66:27:75:47:
c1:10:e6:40:eb:9e:2f:aa:08:b2:e0:47:aa:e2:99:
a6:54:d4:66:9d:e6:7f:55:ea:8c:c4:14:fb:66:fb:
d5:bf:ba:9d:e6:e1:34:25:75:ca:19:53:b1:41:40:
00:7e:13:13:26:4c:20:ba:43:81:4a:02:10:61:38:
d2:31:2d:90:e3:2b:7c:28:60:53:7f:15:3f:0e:55:
a4:74:18:72:61:b7:e4:b9:7b:7a:08:2c:5f:4b:96:
48:bd:a2:e3:98:c1:ea:91:e0:ac:bc:37:4c:cb:1f:
25:5f:7e:db:e4:68:1c:eb:70:8a:fb:a7:81:69:a6:
d1:33:61:bd:44:25:0e:2e:d3:fa:b6:2b:c5:57:ef:
af:b0:09:93:bf:bc:61:8f:6f:a1:80:ea:4e:ee:35:
5d:fb:c4:18:3e:55:c1:2f:2b:c0:10:fb:3a:d1:00:
97:5f:b6:f0:da:35:68:3b:54:bb:d0:ba:a8:3b:e9:
95:64:47:71:16:a0:dc:22:66:16:cf:d8:13:fe:02:
f1:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:62:8A:C0:E9:3F:D2:61:B6:A1:A8:9F:ED:44:22:68:26:F6:DE:3E
X509v3 Authority Key Identifier:
keyid:29:73:64:F5:02:53:4E:87:71:A0:C6:25:97:94:C2:6E:26:D4:BC:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXNk9QJTTodxoMYll5TCbibUvKQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/12/045820-3546-407c-83a5-0a0f3e78a493/1/KXNk9QJTTodxoMYll5TCbibUvKQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:e7:a7:f5:4a:c0:39:97:0a:7d:a4:25:33:87:2d:c1:67:53:
3b:95:eb:fb:76:8d:c1:00:1c:2f:00:2b:a8:9f:14:ac:af:92:
80:a8:c3:b9:f3:8d:35:84:3b:31:2a:77:43:51:c0:2d:2c:59:
32:67:f8:1a:b5:63:33:98:d7:f6:41:06:47:fc:fe:e9:bc:f6:
d4:6c:0b:79:2d:b3:73:b7:be:d8:46:2b:cd:33:14:bc:5b:06:
66:7d:49:95:85:00:94:2c:0a:34:42:81:e8:86:5e:be:f8:b4:
c4:4c:5a:4e:ca:a0:1e:3a:5d:f1:e2:2f:c2:2c:67:8c:73:89:
27:b2:f7:1c:0d:d7:08:bd:c5:e4:f9:ea:f4:34:c9:8a:8c:c8:
af:f8:c3:90:26:90:43:c0:14:fc:3a:19:d2:6f:c2:3b:5c:2d:
b8:c1:f7:d7:89:81:0c:80:e9:22:fe:2e:62:59:34:7a:7f:bb:
96:b7:b7:c1:49:e8:ce:37:9f:7d:f6:88:ce:05:21:02:08:b5:
9e:20:ba:7a:d0:a0:72:c3:ea:41:3b:3c:f6:c0:74:bc:ef:2b:
ed:05:17:2e:59:51:92:80:72:5b:9d:3d:30:74:8e:70:68:b2:
86:cd:54:4a:0b:9d:1f:3c:b6:bb:67:6b:f1:8d:4c:cd:43:e5:
58:e3:a1:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:43:35 2026 by rpki-client