Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json)
Hash identifier: r6pjoteb3S6ksZ+AzAqeSzN85pxrliJjUlJ6P8MwwBE=
Subject key identifier: C0:EF:A1:3F:7A:7F:3F:78:21:77:67:69:E3:22:AD:47:48:5C:8A:8D
Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Certificate serial: 019E1DC739D0721C3FA862006DA97E104E97
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
Manifest number: 06F0
Signing time: Tue 12 May 2026 20:00:55 +0000
Manifest this update: Tue 12 May 2026 20:00:55 +0000
Manifest next update: Wed 13 May 2026 20:00:55 +0000
Files and hashes: 1: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: WgWEComdwITFBp07MLbKTPaeWFI9PpXW9zjSJtQnzA4=)
2: ZS3grquCf_l1OKXIoqEGRKP0J6M.roa (hash: 2PBPag/zPM22x9IohJ6q0TulDZRbeQTFCvgCnuCjnz0=)
3: vUdfXnwcRDPW7e3X7ofFMJYqkDk.roa (hash: 4hcskGjMuomfYGEOrtlmJrd0tV2p1HAsJ5FOV+HnCFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:39:d0:72:1c:3f:a8:62:00:6d:a9:7e:10:4e:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Validity
Not Before: May 12 20:00:55 2026 GMT
Not After : May 13 20:00:55 2026 GMT
Subject: CN=c0efa13f7a7f3f7821776769e322ad47485c8a8d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:95:03:34:79:60:d2:4d:59:2b:4f:18:9f:42:
8a:ea:20:fc:9e:5d:f1:e5:22:c1:bc:b1:8c:30:19:
7e:ae:d9:e0:1e:a3:54:ad:60:2c:19:47:74:de:f8:
74:46:0d:19:2c:b0:e9:5a:e3:25:99:e5:17:c3:ac:
d4:51:25:55:b4:69:b0:1c:88:ac:0c:61:f0:16:a3:
4c:8e:d1:7f:e7:87:e9:54:c2:e8:7a:57:73:d8:e4:
aa:6c:4d:3d:18:59:c9:63:19:b3:2f:c4:c9:94:c0:
f5:85:9d:ca:40:c5:12:2b:3a:cc:6e:9c:9e:2e:f2:
e0:83:c2:1b:e5:e3:73:cc:1f:6a:e8:31:c5:24:aa:
d6:9f:f8:c8:c0:b9:29:82:ae:9d:32:98:bf:aa:8e:
d4:8b:4c:61:84:c6:d0:62:0d:bd:79:a4:48:4c:4f:
60:21:76:b2:51:f7:80:10:75:12:64:d7:ba:5d:c9:
31:9e:04:c7:f5:62:b4:68:4e:46:2f:38:41:92:c3:
3e:34:62:55:05:d9:af:47:7a:e7:f4:17:c7:4a:41:
4d:b1:35:84:44:e2:9e:6d:bd:ac:9c:df:26:bb:c2:
f2:f2:89:80:ae:4b:0c:9e:93:a7:5b:b0:d6:af:74:
74:ac:6e:39:e7:77:f9:e2:b2:9a:6e:8b:8b:9c:4c:
34:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C0:EF:A1:3F:7A:7F:3F:78:21:77:67:69:E3:22:AD:47:48:5C:8A:8D
X509v3 Authority Key Identifier:
keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:9c:a8:7f:03:92:ab:d0:44:8d:e3:e7:1a:ba:0e:a4:e6:68:
84:87:0c:33:d9:60:16:93:0b:e5:cf:b1:b2:02:c6:37:22:93:
5c:f6:2d:da:69:7d:b3:10:d5:68:15:ef:f2:8f:8f:7f:04:1e:
91:49:66:8e:d4:9a:cb:28:47:82:40:e1:3f:13:a4:23:53:12:
fe:ad:32:72:66:02:17:f1:c3:ef:81:56:28:b4:9a:a6:ed:d8:
7b:1a:39:f1:87:42:81:7d:39:0e:07:64:f2:82:2c:f0:8c:ea:
4e:60:f6:3e:48:3e:87:ee:87:dd:49:a0:8d:43:72:10:72:31:
fb:51:2a:7c:88:70:1f:2f:d8:75:62:81:3e:7a:3f:30:75:f8:
53:6d:f8:ae:b9:1d:db:05:4b:7b:b9:5d:2f:35:f0:95:14:06:
a7:84:cf:6b:a9:e4:08:53:8e:9e:43:2e:b9:ea:07:6e:ff:2b:
f0:83:1e:84:1b:9e:d5:60:ec:bf:9d:91:85:84:dc:d9:bb:af:
48:70:58:14:fa:09:1e:93:63:dc:ff:60:24:56:8f:1f:4e:bb:
8c:25:ee:47:59:a4:c0:ce:37:57:ba:ed:8d:a2:3a:13:70:56:
66:e9:66:7c:15:c0:4b:8e:fe:4e:8e:70:10:7b:f7:a1:44:75:
9d:46:ca:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 07:34:01 2026 by rpki-client