Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: dEByszLnXHqgGzu97ZUkqnx/5US2X7ZETZZitJi9rwk=
Subject key identifier: 24:AF:00:7A:B5:4E:53:A7:F2:7F:6B:89:94:97:5D:ED:23:B5:2F:9D
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 019E2091D67D453C4A10AF0B8CF896123BEA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 09:01:28 +0000
Manifest this update: Wed 13 May 2026 09:01:28 +0000
Manifest next update: Thu 14 May 2026 09:01:28 +0000
Files and hashes: 1: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (hash: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: b+M/ssPKJfPYUd9wOjs3L+n/f1fiAO2N13ANu9fFIOY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 09:01:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:91:d6:7d:45:3c:4a:10:af:0b:8c:f8:96:12:3b:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: May 13 09:01:28 2026 GMT
Not After : May 14 09:01:28 2026 GMT
Subject: CN=24af007ab54e53a7f27f6b8994975ded23b52f9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0c:57:d6:43:8f:63:6a:76:93:cf:b0:7f:b7:
28:ab:c5:50:2e:b9:34:8a:7f:9d:08:51:fc:6c:b1:
54:f3:5a:09:cb:ce:bf:3a:5f:d6:5c:b9:3e:17:38:
ec:d3:06:fd:f8:cc:e8:80:9d:c1:19:a5:c6:c6:a9:
70:fe:78:8b:54:c2:76:bb:b4:6c:b7:03:a3:a5:26:
b4:4c:11:c0:52:cb:92:a1:b9:88:b6:db:5a:eb:18:
85:52:3b:14:d5:7a:59:41:aa:70:53:3d:78:50:ed:
00:ba:64:2e:4b:00:63:58:14:ae:a5:25:da:62:0f:
57:a0:7b:ce:e6:8d:e5:45:e5:35:f7:1d:0a:81:3c:
61:04:e8:77:60:76:5b:6a:79:15:9e:50:9a:01:0a:
12:25:1c:0b:c6:ac:d7:5b:e4:fb:01:8e:43:76:22:
70:e2:ba:1d:20:38:c9:59:5d:06:6c:49:bd:ee:66:
08:e5:80:3f:c9:60:cb:5d:4e:40:cf:70:36:c7:66:
1d:4f:b4:30:33:60:82:99:17:0d:2e:c9:10:e8:76:
18:48:13:8b:b3:36:aa:b5:7a:69:7b:6a:81:2f:07:
ad:d5:be:49:dc:23:1a:6f:7f:ff:fc:2f:39:eb:33:
f4:26:ba:9b:a3:75:f6:6f:da:4c:f8:73:00:3d:b2:
b4:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:AF:00:7A:B5:4E:53:A7:F2:7F:6B:89:94:97:5D:ED:23:B5:2F:9D
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:fa:f1:2a:45:a6:db:de:3f:41:78:1e:e1:b9:99:9f:2a:24:
24:ec:13:08:19:30:6a:d8:bc:8e:7d:bf:14:76:d5:c1:e2:d3:
8d:51:29:3f:70:0d:f1:de:4b:95:26:7d:44:d4:0f:a9:27:ff:
73:42:d5:19:f6:e3:e4:bc:6e:65:2a:0b:86:9a:48:35:e2:ad:
50:cc:1d:b2:00:7e:59:7b:4c:94:0a:83:b1:13:ee:03:02:96:
dd:f1:11:70:7a:9b:44:b5:dd:7d:25:ad:fc:dd:14:46:b7:43:
a3:d1:20:fa:83:ac:16:19:97:bb:24:f5:3d:e2:49:cc:8c:68:
13:19:1b:a9:56:3a:77:9e:41:94:49:78:50:21:49:fe:9c:35:
a9:fb:85:75:9d:e6:85:9f:b7:21:4a:b5:4e:4a:60:90:69:e5:
8c:06:64:79:47:fc:c7:a6:a2:87:25:53:f6:d3:b5:f4:3e:aa:
f0:7e:01:56:be:fb:41:69:0e:7b:96:fd:00:3f:9f:1a:0e:b2:
56:c2:8b:e9:e6:50:d2:45:2b:58:b9:14:5e:13:6d:5d:d2:59:
c2:94:d5:a6:31:bd:fd:7b:67:00:16:74:ad:39:64:6b:1a:cc:
d2:40:8a:1c:6f:f9:42:87:61:51:07:10:a4:17:7b:69:d6:f6:
23:01:44:a0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 17:49:57 2026 by rpki-client