Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
File: rs1kyXg317-sBmN92VK97eDCXYU.mft (raw, json)
Hash identifier: cv4bZl/UDr4E4AXJbxFipIV8mGhKtigwOPT/q3Eqv0c=
Subject key identifier: B8:44:70:79:3E:D9:39:8C:74:AB:6A:65:A8:67:5F:42:88:4B:63:61
Authority key identifier: AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
Certificate issuer: /CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Certificate serial: 019E1F7E7509B8A5991223E8A8D6EC123972
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
Manifest number: 1225
Signing time: Wed 13 May 2026 04:00:41 +0000
Manifest this update: Wed 13 May 2026 04:00:41 +0000
Manifest next update: Thu 14 May 2026 04:00:41 +0000
Files and hashes: 1: AQy-kY2cHFUJdvCu8RaXSm0u9OQ.roa (hash: RBQiu9sWWqL4vqKsGVfSX3sl/SJ1Xr1YL1xHQKrA3HM=)
2: K-RSBEB1ZNkw3BDgpDKvXT-jHFk.roa (hash: Ek8U88NKRYg8I4QyXUu+1m6S0Vw3QVig3cYX4BA41DY=)
3: WL2FEa958Kjqled1nJg_T9tBeoM.roa (hash: JqTb5QBDeJhpoV0bTkZHjnWe5k2iGZ6/9FsmESELmIY=)
4: eeigoSZvhxriUU8uVwc0KC2ZNqg.roa (hash: BVqjzzOba75rz4RwKPXup3anTRy7Y0r6aHlcT5afx7Q=)
5: gDEbtn2Bm22RWVusEqJbEgaueu4.roa (hash: xXuFvRKXUrwVjGE6wkVPHC4STPuoOyCxY+cA2kJF334=)
6: gqcIGF4cnQ7Zo-s6vBQeyMRZ3Kw.roa (hash: 5WHbZVFPJqF6d7sQt81f3HSwNWk6p/6vqblB7r2uSB0=)
7: rs1kyXg317-sBmN92VK97eDCXYU.crl (hash: WJWC/xMQelUqC2jSfiJFuzPqWzwkVAlmOjaRCNPyMw0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:75:09:b8:a5:99:12:23:e8:a8:d6:ec:12:39:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aecd64c97837d7bfac06637dd952bdede0c25d85
Validity
Not Before: May 13 04:00:41 2026 GMT
Not After : May 14 04:00:41 2026 GMT
Subject: CN=b84470793ed9398c74ab6a65a8675f42884b6361
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:44:4b:df:3b:05:2c:3d:2e:e5:05:9c:3c:82:
26:cd:bf:36:c7:4c:12:c5:04:83:f9:46:63:73:3f:
de:a3:1e:bd:d0:68:28:74:5f:9a:22:b5:fe:9f:98:
ae:9a:9c:3a:75:e1:a5:4f:7f:3f:ef:53:ac:17:d7:
9a:52:a6:d3:a0:dc:47:dd:6a:99:4a:f7:f0:37:dc:
fb:2e:73:fd:c3:ca:5a:51:81:bd:44:93:d5:9c:61:
71:95:6a:c8:c2:ed:27:e0:5c:7d:45:47:8c:63:82:
cd:40:31:c3:40:3d:6e:82:b1:b2:24:fe:ca:fc:aa:
b0:ca:8b:50:42:44:51:e6:f7:44:e2:f6:f4:95:8a:
dc:58:32:2c:8c:c5:1b:ec:81:c6:ad:f8:44:aa:7c:
3f:95:bb:c0:37:9c:f8:79:3c:07:19:98:fa:eb:c6:
de:29:4a:dd:1f:f2:eb:53:ff:39:02:6d:e7:54:b0:
5e:7d:e7:b1:2e:dc:fa:db:d9:5e:60:e1:51:b1:ec:
88:30:01:30:df:0c:4d:3b:8b:b0:da:86:68:49:f2:
b5:a3:35:58:f0:44:a5:30:bb:a5:ac:1c:f1:44:35:
6b:87:22:96:0f:cf:8b:08:fa:87:d9:4f:74:d9:6c:
88:ce:f1:78:73:5f:af:c1:30:f1:18:ac:18:bd:96:
d2:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:44:70:79:3E:D9:39:8C:74:AB:6A:65:A8:67:5F:42:88:4B:63:61
X509v3 Authority Key Identifier:
keyid:AE:CD:64:C9:78:37:D7:BF:AC:06:63:7D:D9:52:BD:ED:E0:C2:5D:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rs1kyXg317-sBmN92VK97eDCXYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/592d4f-d71e-4e8b-a632-1ecde1791511/1/rs1kyXg317-sBmN92VK97eDCXYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:41:f5:60:81:24:21:87:bc:31:0c:d5:e4:87:c7:6c:cf:6b:
9a:2f:6b:78:97:35:c0:c3:b3:62:e0:21:04:79:a8:72:a0:e4:
4e:07:9e:7a:61:1f:0e:df:fb:e9:9f:66:a4:7b:a2:6b:a8:83:
1c:43:17:b8:d3:bf:0a:ae:0a:c8:c3:33:0c:44:75:df:b3:ca:
9a:c2:be:5e:2d:4c:39:68:30:e1:e9:e1:d2:a0:0e:01:d4:61:
27:b5:16:24:c0:92:04:23:a7:df:4e:5a:82:de:bf:bd:e1:ca:
05:3f:24:3e:94:9c:16:d2:1d:c7:3d:56:73:e6:a5:6d:6b:21:
28:e3:e8:8c:17:0e:0e:5d:02:91:73:94:8e:e7:bf:0f:f6:08:
3b:21:68:3a:be:87:bd:c5:90:19:04:27:e1:f9:aa:53:bc:b7:
5a:ca:cc:e1:f7:d1:dc:c5:eb:0b:7d:77:0d:2e:0f:ea:d9:4f:
8f:28:66:6c:22:84:3f:76:4d:b5:c9:d3:0f:d0:6a:e0:be:89:
47:e9:98:c2:26:19:bf:e0:97:dc:7b:f9:69:df:48:00:73:e9:
0b:c8:67:b5:6c:57:90:8e:5f:59:1e:da:45:94:eb:f8:35:c0:
1a:fe:5b:d4:17:95:08:2b:d0:a7:bd:0b:cd:24:17:5a:5f:e4:
59:6f:55:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:42:31 2026 by rpki-client