Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
File: dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft (raw, json)
Hash identifier: UG+iPJ94b/LlcOgoRaiccYZeSu3dGbSUGNmPJtwCv+s=
Subject key identifier: 7F:37:09:8B:F5:91:D9:CE:E2:1B:93:7C:64:10:48:49:76:13:74:B9
Authority key identifier: 74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
Certificate issuer: /CN=74ae941a681c1586379e07247dcc19f3f41035d8
Certificate serial: 019E1D900C36C6F5BA723FFDAD274E8A7560
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
Manifest number: 10A4
Signing time: Tue 12 May 2026 19:00:40 +0000
Manifest this update: Tue 12 May 2026 19:00:40 +0000
Manifest next update: Wed 13 May 2026 19:00:40 +0000
Files and hashes: 1: DvoMmaNQLR-F0c_ZQLqJj27XJNw.asa (hash: mEX2A8L8N6B6jxBchbjmo4MApYmBl5md4ZvzoDkGIHk=)
2: OWX2u3h86crIqlZrJEDgTq1vnqE.roa (hash: LsGVcbsq1OthlSGdFhoXpBIhd+P4m0nMhxD/QuTqmCw=)
3: dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl (hash: LJcga4JthxvD9xdqLZB+rbSK39nssqIxVotsuCRBpw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:0c:36:c6:f5:ba:72:3f:fd:ad:27:4e:8a:75:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=74ae941a681c1586379e07247dcc19f3f41035d8
Validity
Not Before: May 12 19:00:40 2026 GMT
Not After : May 13 19:00:40 2026 GMT
Subject: CN=7f37098bf591d9cee21b937c64104849761374b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:2d:15:87:cf:7f:b8:fe:b2:62:55:51:eb:06:
02:98:6d:c8:69:eb:3e:e2:89:11:b4:af:cf:9f:79:
e4:0c:72:e5:bd:ef:28:31:e6:1d:2f:79:ef:4f:c2:
78:62:52:24:f7:32:e4:a3:3b:ba:e9:48:be:13:84:
be:00:4c:dd:83:3a:a2:9d:e9:aa:f6:6f:3a:42:00:
ba:be:95:3f:c9:fb:6b:63:19:ce:67:2d:94:03:27:
4a:81:c1:50:9b:77:f5:97:ba:d7:37:71:d1:83:30:
55:2a:9f:42:3d:c4:4d:28:a1:57:fe:0f:f9:38:a8:
6c:ad:e3:69:86:c5:9b:0e:0b:58:36:30:85:83:a8:
6a:b7:01:73:f1:d8:61:db:07:5b:f8:1c:da:e0:d9:
34:2b:f3:4d:d2:c6:ef:9f:fd:22:da:63:d2:f4:f4:
96:06:e8:0f:6f:d4:c7:07:2d:16:2c:41:d6:2e:f8:
1c:39:26:15:9f:4d:16:22:f3:93:ff:ef:c0:04:87:
fb:fe:70:8a:31:df:12:40:f9:04:24:b5:bb:e6:96:
a8:f9:7e:dc:b1:b6:13:8b:39:59:9e:eb:d1:27:57:
36:b1:60:ac:15:6e:fa:43:a1:17:d5:93:c9:4a:5e:
15:7f:f7:88:be:1f:51:41:53:56:56:a3:da:69:bb:
aa:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:37:09:8B:F5:91:D9:CE:E2:1B:93:7C:64:10:48:49:76:13:74:B9
X509v3 Authority Key Identifier:
keyid:74:AE:94:1A:68:1C:15:86:37:9E:07:24:7D:CC:19:F3:F4:10:35:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dK6UGmgcFYY3ngckfcwZ8_QQNdg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/14e4c2-8a98-456e-9612-9429da87bd50/1/dK6UGmgcFYY3ngckfcwZ8_QQNdg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:80:e1:15:38:8b:c6:30:63:94:10:3d:93:ac:a0:b2:e6:4e:
44:cc:d9:c6:75:47:08:73:47:41:39:a9:02:6c:1c:80:a8:e3:
3f:e6:8c:a8:0d:d5:d8:c3:67:a4:7c:f5:36:21:42:1c:ce:91:
0e:cf:8d:92:21:1d:af:07:b5:e6:55:a6:a4:24:19:82:2a:dd:
1d:63:a8:e7:d8:2a:3d:db:fa:fc:84:65:13:8e:ef:ea:d6:bb:
35:de:90:d3:5f:31:c2:c9:a3:80:35:c3:18:8d:de:f4:2c:de:
01:0c:86:14:30:39:b5:6e:ce:38:cc:78:17:8d:4e:03:5c:e5:
b9:d4:1f:b1:00:23:06:4c:bf:a8:53:78:fd:54:d0:fd:96:11:
69:77:33:92:c5:c3:27:54:b2:ff:a6:d5:da:dd:59:e6:79:54:
25:2a:ef:c7:4a:f8:ae:e9:b7:1a:75:30:b7:c3:fe:2b:d1:dc:
e5:54:aa:24:cf:72:5a:bf:5a:61:db:cd:ed:2d:ef:3d:0c:97:
90:6a:24:97:8a:e3:39:95:92:61:12:db:79:8e:a1:b9:01:7f:
57:34:9c:42:42:f3:56:f4:9d:15:51:55:96:63:70:8f:44:23:
ac:95:06:24:bd:cc:29:88:4a:72:91:a6:71:da:5b:66:cf:bb:
e1:45:12:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:04:37 2026 by rpki-client