Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
File: KCyT0maFJ4jkmYLZ96Yg222fWI0.mft (raw, json)
Hash identifier: DPIT3jmdvtCdWgaphdaNWRM+hJXZzW6LNt6E9tOprKs=
Subject key identifier: CC:CC:31:77:EF:C4:B9:29:9B:B3:99:CD:E4:79:99:FD:15:DA:A8:57
Authority key identifier: 28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
Certificate issuer: /CN=282c93d266852788e49982d9f7a620db6d9f588d
Certificate serial: 019E1DC722A0AC108E640AFEA796D9E1DF2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
Manifest number: 0E23
Signing time: Tue 12 May 2026 20:00:50 +0000
Manifest this update: Tue 12 May 2026 20:00:50 +0000
Manifest next update: Wed 13 May 2026 20:00:50 +0000
Files and hashes: 1: 1ObfCdLE7dKk-d-Joasz4Il0A1o.roa (hash: p/QxJngDf+aUBVUX1Y9rupN0VdWFzSbmnVUDpsP2Y34=)
2: KCyT0maFJ4jkmYLZ96Yg222fWI0.crl (hash: hW+xTYDE0HmeGIhvSsjX6RcJCoUfT0ZXqeUvL9UF76o=)
3: h28P9psTB0BJCTdOtSuL769CZEY.roa (hash: WnzE0ULZO+Ns9cDIOM8A2gQx3rSBVndAJ664fi5lHZY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:22:a0:ac:10:8e:64:0a:fe:a7:96:d9:e1:df:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=282c93d266852788e49982d9f7a620db6d9f588d
Validity
Not Before: May 12 20:00:50 2026 GMT
Not After : May 13 20:00:50 2026 GMT
Subject: CN=cccc3177efc4b9299bb399cde47999fd15daa857
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:6d:eb:81:96:22:31:f8:30:aa:70:2b:1c:fb:
5c:13:42:12:d4:1d:bf:f4:da:a9:9c:ad:41:2e:53:
86:b5:d2:cc:c8:2b:2f:cc:9e:c4:45:30:28:61:63:
cb:f9:52:c0:78:4c:0f:5f:7f:3e:bc:7f:e3:89:fe:
5b:f4:80:c5:71:8c:06:b9:da:59:53:ef:3a:7d:29:
d6:cb:fd:37:55:9e:1a:89:49:88:fc:42:20:b3:a5:
ed:bd:ad:9c:d7:9d:06:88:01:33:25:f5:cd:a4:43:
7f:83:f5:f0:ec:a2:02:d7:e9:ed:02:8f:90:60:fd:
cc:8a:52:6a:15:7d:74:6b:d7:f4:59:9d:fc:55:6f:
2b:86:31:87:b5:0b:98:1f:9e:49:8d:5c:bc:3c:0d:
c1:c6:3e:64:f0:ad:1f:33:95:02:6f:52:56:31:dd:
ba:b6:c3:24:54:66:85:50:3a:a8:49:f0:73:da:23:
d9:e7:3c:e2:2a:55:80:39:f1:a4:1f:f0:e1:f3:eb:
37:00:9e:b9:7c:4e:8c:53:88:2b:3b:4b:75:ed:ac:
b3:26:bb:d5:1f:9a:95:2b:ef:dc:3d:fb:77:19:50:
68:4a:d6:5e:fa:ba:fe:4f:f5:94:da:3f:ee:15:1c:
3e:38:63:d0:61:5b:1e:86:1a:e9:87:a4:55:47:d7:
33:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:CC:31:77:EF:C4:B9:29:9B:B3:99:CD:E4:79:99:FD:15:DA:A8:57
X509v3 Authority Key Identifier:
keyid:28:2C:93:D2:66:85:27:88:E4:99:82:D9:F7:A6:20:DB:6D:9F:58:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KCyT0maFJ4jkmYLZ96Yg222fWI0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/382ff4-4fc2-4302-af90-96adffe2e86a/1/KCyT0maFJ4jkmYLZ96Yg222fWI0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:a1:5f:eb:a6:87:eb:3b:6a:b7:df:d1:af:e8:b3:67:97:d0:
bf:90:fc:d0:b7:0d:30:df:d5:74:9c:c3:86:a5:a8:68:bd:85:
5f:a3:11:20:25:52:39:8b:f3:0c:f2:ca:4a:be:ee:b3:8e:13:
38:50:10:0c:7a:06:01:9c:28:65:e6:3b:cd:ab:3c:53:7d:d3:
2e:6d:e6:61:af:39:13:42:64:58:e3:98:45:80:12:12:fa:c7:
12:ea:8a:d9:12:27:e6:72:0c:f0:84:8c:b2:d7:9a:05:ad:30:
ec:be:9b:8f:74:84:89:c6:6a:27:df:21:9c:67:db:01:ff:be:
68:13:ff:95:cb:dc:8d:4b:b5:3c:11:12:28:55:0a:dd:0a:f1:
da:53:5a:bc:24:a0:6f:5c:05:ff:df:a1:67:f1:62:a9:7d:66:
c9:03:ec:01:ee:27:98:7b:df:ec:1e:e0:b8:29:0c:3f:9b:c4:
42:d5:d6:1d:65:df:11:aa:90:ee:62:8e:22:2e:6f:3d:21:09:
4a:2b:78:7a:16:ee:ba:1d:c7:50:47:48:f2:d7:8b:4e:53:8f:
95:1f:90:35:b2:e6:f4:94:5f:eb:ca:05:1e:26:98:03:82:27:
2f:a5:f0:b5:1f:b9:58:64:5f:21:c2:d7:85:07:aa:cb:ba:b7:
be:2e:58:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 02:44:28 2026 by rpki-client