Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
File: rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft (raw, json)
Hash identifier: h82WVkR5BRuWHiHe79PwguJC23VRe84rIwlIK+T/UPs=
Subject key identifier: 46:0A:15:C1:22:0D:59:AC:DE:C4:F2:7F:22:91:72:19:E8:58:5D:98
Authority key identifier: AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24
Certificate issuer: /CN=aca1f4713024804c445403af63fa644b2a935d24
Certificate serial: 019E1EA2B3406CA32D58B865342EF8F0DD7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
Manifest number: 191A
Signing time: Wed 13 May 2026 00:00:39 +0000
Manifest this update: Wed 13 May 2026 00:00:39 +0000
Manifest next update: Thu 14 May 2026 00:00:39 +0000
Files and hashes: 1: 68S_aFNNmgzjbtipHf2_7W5_Bco.roa (hash: RwG1LoqBic8TBPegFSl5zghD2QUKZjWI0f3m/Wa2XvI=)
2: 6Tt_JhvDeS8RrZNagAC_Y34YgGM.roa (hash: CW1QJb8vGPMOzkDlQfxVkZeJUZKHQrNhrEN+PPxL4mY=)
3: 7_skAVHjgsLF5yurP5Hs70so6lU.roa (hash: GZbj/NvSS8FJycykZ2otNOVLib/kBA0tsDjDJmEYqOw=)
4: PqQ80zRW4L7-FL50a-sVEmgKj-Y.roa (hash: hnJ9eAizqcNHYh7QW8vCzEh+yJL2aUxkxjuN+e8GRho=)
5: TTfvsK5hd0_GUSO7MSasMs4WeiI.roa (hash: 5fCeSzSrIrlr7y2QP80sfMVoFocJvfEJtnCJtXTc+vY=)
6: UBfX_Q_ESiqvVw7XJAwKhDzOiYc.roa (hash: yij0Gcg4VWx0ybKs3NoqtbhVEj3lt3YcAj0EyqPh7VY=)
7: eF_Iql01f6Mj_BVm584xV8IssYA.roa (hash: iPi/R187ECcID1empgHZAsvXPyLUYT8zATjgc8Yt7/o=)
8: rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl (hash: tm6TQ53EUSXKIxhnomXcFRWYY3dQwvUN5z2H4xBVrr4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a2:b3:40:6c:a3:2d:58:b8:65:34:2e:f8:f0:dd:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca1f4713024804c445403af63fa644b2a935d24
Validity
Not Before: May 13 00:00:39 2026 GMT
Not After : May 14 00:00:39 2026 GMT
Subject: CN=460a15c1220d59acdec4f27f22917219e8585d98
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:9d:af:20:84:52:55:4b:33:74:a0:35:68:83:
af:fa:cb:49:fd:e7:68:ec:ab:4d:74:81:9b:6c:a4:
a2:3c:4f:cc:1f:37:26:e7:dd:da:78:eb:2b:a9:be:
32:ac:f6:63:f5:94:47:e0:63:77:6c:fc:68:76:98:
d3:98:5e:91:50:d9:6e:61:cd:64:c5:f4:fd:84:02:
91:be:c6:c6:32:e5:80:22:3f:76:4c:d2:fc:57:85:
88:e8:97:61:b1:d1:4a:81:7d:92:90:b0:24:24:0a:
e1:c1:90:e6:06:0c:f9:81:5c:40:18:ed:90:0f:a0:
4c:ec:3f:64:c5:93:7f:a3:32:bc:e2:92:0d:1b:2a:
37:d3:94:d6:35:54:34:1b:f0:a8:14:72:94:ce:83:
a5:bf:99:30:8d:ec:60:4b:30:a0:fd:62:44:9a:17:
87:ef:5f:01:40:5b:df:81:98:2f:25:dd:90:1e:8c:
88:6f:ed:a2:4d:49:73:1c:23:aa:d5:70:84:42:8a:
8d:48:42:c6:0a:50:5e:c9:94:0d:ca:57:fd:53:6a:
dd:23:b8:0b:54:52:00:fa:d3:aa:e6:48:40:f9:31:
50:76:2f:e0:e9:bc:f2:79:ed:34:e6:c2:79:30:51:
8d:8f:09:13:3e:11:2f:88:4a:15:29:47:4f:7c:c2:
b4:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:0A:15:C1:22:0D:59:AC:DE:C4:F2:7F:22:91:72:19:E8:58:5D:98
X509v3 Authority Key Identifier:
keyid:AC:A1:F4:71:30:24:80:4C:44:54:03:AF:63:FA:64:4B:2A:93:5D:24
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKH0cTAkgExEVAOvY_pkSyqTXSQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c6d6be-bf4a-43e5-a908-5ca016a10054/1/rKH0cTAkgExEVAOvY_pkSyqTXSQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:67:16:30:b9:5d:41:77:2f:ca:03:3b:10:57:92:c6:b2:35:
28:b1:7a:3d:3a:a3:ad:2e:41:b5:77:fc:58:86:dd:63:5d:69:
a2:de:37:dc:33:7e:48:8d:8e:51:83:65:62:e2:a7:bc:b8:fe:
23:36:3e:ae:e9:53:3f:f5:7e:04:1c:e5:29:ac:a4:44:00:49:
d2:9b:0b:8f:05:e5:a3:8d:42:3b:3d:3c:50:05:87:4c:77:b9:
5d:8e:9d:a0:d8:36:ac:a0:93:58:f7:2d:fc:9a:99:92:e5:6b:
82:bc:86:4e:bf:a4:ab:25:dc:09:28:4e:2b:44:e0:cd:3a:ea:
8e:91:02:41:d2:0d:a6:0c:0d:57:6a:fb:80:24:26:c4:9d:49:
7f:a0:f8:51:5d:8b:c1:c1:6d:1a:bd:e8:f9:1f:26:46:db:77:
79:1f:ae:76:55:ca:cb:7e:08:0d:1b:0f:4f:dc:d0:45:02:76:
c4:df:fd:a8:ea:26:ae:65:65:b8:46:0e:30:11:a1:b9:88:d1:
78:4b:6b:bf:a4:57:43:2f:67:22:ee:47:1d:30:86:ff:18:43:
db:ac:7c:44:ba:11:dc:90:78:0c:e8:6b:1f:75:a9:ec:65:db:
0f:10:75:d9:53:79:14:bc:e9:5d:35:e7:58:dd:c3:a5:75:02:
43:07:22:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:32:35 2026 by rpki-client