Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: LlV61pbr4waOSYrQnmOSSYSLitXk6vbSP+aRiwAcHas=
Subject key identifier: C5:44:C6:EC:64:0D:D1:CE:CE:0D:7D:6D:54:4D:26:42:BE:9E:26:42
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 019E1F7E8556B54679560F2C907B070E0587
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 0AA1
Signing time: Wed 13 May 2026 04:00:45 +0000
Manifest this update: Wed 13 May 2026 04:00:45 +0000
Manifest next update: Thu 14 May 2026 04:00:45 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: s+4sWdSQiuR3Dx8jPY8saruiI3TnLF8z1MjzXbsN0rA=)
2: oEI10F1yOzZXTlBBBvzIeX5OXog.roa (hash: QNwI0l8coi9XbWot/ryVzcBU4wEtxZkGadr7asLldw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:00:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:85:56:b5:46:79:56:0f:2c:90:7b:07:0e:05:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: May 13 04:00:45 2026 GMT
Not After : May 14 04:00:45 2026 GMT
Subject: CN=c544c6ec640dd1cece0d7d6d544d2642be9e2642
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0d:14:0c:25:b2:bb:d0:50:11:4a:76:82:84:
c2:ea:35:a3:43:0d:78:24:23:69:76:d7:6d:95:bf:
df:de:6b:4b:a2:e3:62:a9:6a:93:a6:b5:7d:30:f3:
8f:e7:b6:08:e6:28:70:86:96:78:c6:67:32:08:c9:
12:55:36:73:65:c6:19:8c:36:d1:bf:d9:3c:2c:9b:
ef:2e:23:ca:79:7e:18:b0:87:e6:da:2e:e4:f8:51:
e8:6f:29:d5:cf:12:f8:16:9b:5d:06:c6:f8:eb:23:
dd:08:72:5e:18:51:fb:42:a3:cd:c8:4c:91:99:9f:
6b:9f:68:18:20:66:f0:cb:7e:f7:a6:57:69:c6:de:
9a:d2:73:b8:1c:2d:0c:b3:6f:76:76:3f:0e:e4:70:
76:e9:14:0e:7e:fd:fa:69:b4:aa:2c:04:91:61:2c:
e0:1b:e3:d3:90:72:1b:4f:ca:4e:3c:2c:62:e7:00:
d5:6b:ad:b8:bd:03:d1:95:2e:a3:45:2c:9f:67:d6:
2f:c8:ff:54:2e:a5:4d:ec:59:c4:1e:f8:e9:eb:c6:
32:62:b9:65:08:1d:57:2b:54:75:4a:4e:53:de:c7:
b9:b1:d8:d1:b7:4e:66:e1:75:bf:1c:47:ef:c0:b1:
57:7a:2e:3b:0b:ac:8b:60:d6:c0:9a:22:c9:1f:25:
88:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:44:C6:EC:64:0D:D1:CE:CE:0D:7D:6D:54:4D:26:42:BE:9E:26:42
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2f:4c:fd:c1:eb:ee:b5:07:32:eb:d8:81:fb:a3:fd:f9:a2:a6:
33:42:be:aa:12:8e:64:58:79:95:ee:5e:58:3a:0e:18:79:ee:
c0:a7:3d:45:4d:aa:db:39:9d:14:53:2b:4d:f9:06:c4:1c:27:
48:3c:df:47:c1:51:dc:d9:c8:0c:e7:7f:b8:92:86:c6:ee:1e:
a2:71:f1:9c:fa:b1:75:a6:b2:0c:91:b9:f5:7d:c4:3e:ef:d9:
79:9c:9f:4b:a3:ea:43:91:a1:0c:25:42:6b:5d:a6:17:94:a1:
c7:4d:86:a7:54:2d:80:45:7c:47:ca:d7:12:1e:1b:4a:48:e3:
41:64:b0:9f:87:78:37:05:36:e1:08:b9:93:71:f0:40:e1:7e:
e0:60:f6:f7:c2:9d:ce:16:d0:21:69:40:f9:b0:71:ed:79:6a:
a5:72:37:86:1f:23:8e:6e:d5:64:8b:3f:01:17:b2:c1:dc:ab:
c5:e7:ff:fb:c4:73:d0:29:68:e6:05:52:51:4f:3e:2c:88:09:
ef:a5:75:bd:a4:28:06:e7:10:40:28:92:a9:0c:93:44:30:6a:
5c:e5:05:8f:19:dc:9e:88:da:e6:0f:f9:ef:5c:b9:12:47:ee:
87:40:7c:b1:cb:a2:b6:8c:58:7e:aa:a5:5b:06:d0:25:bb:f9:
8b:27:f9:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4ffoVWtUZ5Vg8skHsHDgWHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkzMDM2MjJiM2M1NGU0NWY0MTY2ZjMwMTc5OGY4NmRiYmE0
NzE4MGMwHhcNMjYwNTEzMDQwMDQ1WhcNMjYwNTE0MDQwMDQ1WjAzMTEwLwYDVQQD
EyhjNTQ0YzZlYzY0MGRkMWNlY2UwZDdkNmQ1NDRkMjY0MmJlOWUyNjQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyQ0UDCWyu9BQEUp2goTC6jWjQw14
JCNpdtdtlb/f3mtLouNiqWqTprV9MPOP57YI5ihwhpZ4xmcyCMkSVTZzZcYZjDbR
v9k8LJvvLiPKeX4YsIfm2i7k+FHobynVzxL4FptdBsb46yPdCHJeGFH7QqPNyEyR
mZ9rn2gYIGbwy373pldpxt6a0nO4HC0Ms292dj8O5HB26RQOfv36abSqLASRYSzg
G+PTkHIbT8pOPCxi5wDVa624vQPRlS6jRSyfZ9YvyP9ULqVN7FnEHvjp68YyYrll
CB1XK1R1Sk5T3se5sdjRt05m4XW/HEfvwLFXei47C6yLYNbAmiLJHyWIfwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMVExuxkDdHOzg19bVRNJkK+niZCMB8GA1UdIwQY
MBaAFJMDYis8VORfQWbzAXmPhtu6RxgMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjkt
OTUwYzdlNzMyNDVjLzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81ZC8wNzdhNTAtNDViNi00YTM4LTlkYjktOTUwYzdlNzMyNDVj
LzEva3dOaUt6eFU1RjlCWnZNQmVZLUcyN3BIR0F3LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL0z9wevu
tQcy69iB+6P9+aKmM0K+qhKOZFh5le5eWDoOGHnuwKc9RU2q2zmdFFMrTfkGxBwn
SDzfR8FR3NnIDOd/uJKGxu4eonHxnPqxdaayDJG59X3EPu/ZeZyfS6PqQ5GhDCVC
a12mF5Shx02Gp1QtgEV8R8rXEh4bSkjjQWSwn4d4NwU24Qi5k3HwQOF+4GD298Kd
zhbQIWlA+bBx7XlqpXI3hh8jjm7VZIs/AReywdyrxef/+8Rz0Clo5gVSUU8+LIgJ
76V1vaQoBucQQCiSqQyTRDBqXOUFjxncnoja5g/571y5Ekfuh0B8scuitoxYfqql
WwbQJbv5iyf56w==
-----END CERTIFICATE-----
Generated at Wed May 13 12:14:28 2026 by rpki-client