Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
File: kBZCwNRvjU5MI0wzr771pIOcaiI.mft (raw, json)
Hash identifier: u6VVcRUgxeUJYns98JtIqtRYXCtyVgGnbbDrdAtbPec=
Subject key identifier: 14:41:8B:3F:40:AA:83:BC:6B:8B:74:EE:07:6E:B2:EA:2E:01:98:67
Authority key identifier: 90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
Certificate issuer: /CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Certificate serial: 019E1F7E77EE319DA93E0A06319D45CBE838
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
Manifest number: 0144
Signing time: Wed 13 May 2026 04:00:42 +0000
Manifest this update: Wed 13 May 2026 04:00:42 +0000
Manifest next update: Thu 14 May 2026 04:00:42 +0000
Files and hashes: 1: A9-wOdp_rVCM0ESzhr89kQtrxAk.roa (hash: EEXrwqrXm4OhbrVH1e+ftGoZf1df8IiOvwtrHVI9K44=)
2: kBZCwNRvjU5MI0wzr771pIOcaiI.crl (hash: +hWYaFiZ7Hc3JZuXDb4mMSxD0WZBChFSXmmgw+aCRt8=)
3: oUxyNiL8a-AOoVb7hvCWizwaEaI.roa (hash: s30Arx9jmVniBQHeZV05te3a62N7rkcg5xppFWIofXA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7e:77:ee:31:9d:a9:3e:0a:06:31:9d:45:cb:e8:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Validity
Not Before: May 13 04:00:42 2026 GMT
Not After : May 14 04:00:42 2026 GMT
Subject: CN=14418b3f40aa83bc6b8b74ee076eb2ea2e019867
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:2c:ee:0a:e9:fb:7f:5a:15:55:1b:83:cb:7e:
4e:5f:4d:26:7d:4f:de:73:fc:29:90:f3:93:5b:fd:
33:d4:52:7c:f9:93:f4:b0:6d:e7:93:6a:b0:dd:85:
a0:81:ba:c9:4a:a3:08:cb:c1:cc:27:82:7e:4e:0b:
10:82:e5:86:6a:06:bf:0d:10:86:ea:35:0f:b2:a4:
ab:66:7f:7c:c8:19:87:7e:79:c9:e1:b3:d0:ef:f7:
b3:4c:9e:25:df:be:4f:23:a6:36:20:cd:9d:f4:f2:
a2:89:05:6a:90:90:53:c5:87:ce:9f:b0:7c:f6:51:
5c:04:08:00:bc:d3:7d:3f:ee:1f:14:11:e9:fc:c5:
e1:71:17:88:40:0b:8e:0e:b3:e5:79:82:93:6b:b1:
dc:a0:06:1c:f9:d4:70:6a:14:36:07:6a:f5:ad:d6:
b3:d1:cb:86:9a:4f:df:86:5f:0d:ff:89:40:aa:2c:
7e:f5:f5:b6:c3:ee:46:29:51:16:9c:8a:29:61:1a:
7c:cd:5c:88:da:e8:ae:f5:e5:b2:86:36:42:0c:52:
b8:13:78:e7:57:ff:8b:0b:d7:b1:85:8b:80:4a:2d:
56:a6:9b:ee:6d:af:16:1c:f7:fc:67:20:5a:3b:da:
cf:1b:bf:c8:1d:9f:7f:6c:16:9c:29:7e:5c:e0:42:
10:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
14:41:8B:3F:40:AA:83:BC:6B:8B:74:EE:07:6E:B2:EA:2E:01:98:67
X509v3 Authority Key Identifier:
keyid:90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:aa:bd:b0:8b:70:01:ee:ec:39:47:5c:91:ba:66:a0:61:cc:
85:46:92:dc:e2:29:6e:e6:2f:9f:0f:25:a7:e2:db:6c:50:62:
a7:f5:68:34:16:86:92:70:87:35:0b:b6:63:82:bd:1e:3b:81:
79:ff:99:d3:23:ed:d3:d6:8b:62:1f:68:bc:f7:0d:61:ff:e6:
30:30:19:33:67:b0:2a:56:1e:f1:2a:09:5a:14:f0:77:f3:3f:
b2:9c:e5:cd:9a:ac:78:04:ae:8c:5b:16:ca:a0:96:f4:90:8d:
f4:31:3b:f5:5d:57:db:6d:55:2c:e8:76:38:3a:19:16:05:ca:
b4:db:ea:23:d1:49:58:a2:8a:9d:49:e2:aa:86:84:fe:8e:02:
0a:a1:8c:e9:14:a0:24:d6:54:db:0a:2b:cc:28:00:98:ed:b8:
26:fe:c0:a2:8d:50:26:50:60:e5:b6:84:cc:73:ec:08:ed:ee:
44:14:83:83:36:12:9e:57:17:21:fd:d4:05:28:7c:c3:37:ff:
b2:ce:11:8d:4e:32:39:00:e5:1e:88:79:74:28:35:6c:a6:e3:
05:a8:e1:b2:c2:24:5a:1d:7e:98:12:0e:99:42:74:af:b7:60:
e4:06:45:ef:90:a9:6e:9e:f4:5d:46:64:0c:f7:7a:8e:81:75:
47:64:39:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:51:31 2026 by rpki-client