Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
File: kziECSasc-rVthh5GeiPEAMimco.mft (raw, json)
Hash identifier: SmtVYtH7zOyMA1xu/oHq4b6rwAG0ldHZlp/PRDA3R+Q=
Subject key identifier: E1:78:30:B1:AA:5E:60:86:08:5E:3B:83:CE:23:C9:57:4C:AE:FB:1B
Authority key identifier: 93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA
Certificate issuer: /CN=9338840926ac73ead5b6187919e88f10032299ca
Certificate serial: 019E1CB4BD82F8FD59C1EAFF20D615A62C0A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
Manifest number: 01FB
Signing time: Tue 12 May 2026 15:01:07 +0000
Manifest this update: Tue 12 May 2026 15:01:07 +0000
Manifest next update: Wed 13 May 2026 15:01:07 +0000
Files and hashes: 1: 1-z0Y3fH_aErOAd2Nag5ZT3JcPH4.roa (hash: ajlsAWqEGjBF2s25AsAbzW/nKPdDq6JxNB0eWlyY3OU=)
2: 6lmykGrjWlxTI-Qm8cv1Wru-ZUM.roa (hash: 3/8y+29k2Z9zB5VeslI5T+W11/MyhEBGlF4ugyZh+nA=)
3: FcXUetsC0-6bv54Z1lmHoqKMdxM.roa (hash: dFkWAsnbwOvbQKILV1fPns+xMo4goiFme2jYhULRvHk=)
4: Y4x7zeztB7lrOx01OBJN1UiLyT0.roa (hash: gs7Dc5as7DJ7oLTov6hgPGgK6t+t5Pe4B5kRBUgM7WI=)
5: _SAMOxgv34T8ZP2BEt3dVFweldA.roa (hash: bU6RDLC/fFMgRKk4b1P2ryi1ytEL97qHkSA7liSJFY0=)
6: kziECSasc-rVthh5GeiPEAMimco.crl (hash: xb0qNfjN9KLazSaukAqL0W27DexSPvNjDaFz1uRLh1I=)
7: nKQXbT6FciiHVvddJS0_5sOh1ms.asa (hash: 7BE1jfl/pKiooWczO/8pMkQZmIL4Zuvts1Z6qAFpwl4=)
8: nf63dpM5Md5RBRi4P-HwEK-eN_E.roa (hash: 9d7TgxCegK25CmqdbC1sGXI3mJJK7sBKT2RoRfBWFdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1c:b4:bd:82:f8:fd:59:c1:ea:ff:20:d6:15:a6:2c:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9338840926ac73ead5b6187919e88f10032299ca
Validity
Not Before: May 12 15:01:07 2026 GMT
Not After : May 13 15:01:07 2026 GMT
Subject: CN=e17830b1aa5e6086085e3b83ce23c9574caefb1b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:0d:8f:92:5d:04:98:ad:2c:9b:09:18:fd:74:
53:fb:1a:38:f2:87:5c:05:27:eb:ab:19:1d:b3:e4:
13:8e:2b:80:78:66:67:b1:0a:ba:3a:c1:25:60:4d:
43:02:b6:90:d9:77:70:cc:e3:c0:cc:7a:eb:eb:b7:
8f:05:e5:70:c7:5c:60:9d:bb:81:d2:38:43:a9:09:
3d:70:c5:f6:bf:17:c2:9d:34:9c:9d:fb:31:23:d1:
69:41:2c:e9:09:89:7c:7f:af:ca:68:d8:e7:eb:b2:
34:37:aa:25:cf:29:e6:b9:ad:76:a3:57:2b:6a:0a:
d5:6d:43:e9:8d:ae:ca:a8:7b:fc:18:dc:b7:3e:e3:
34:08:51:8e:6b:bd:1b:ef:8a:10:94:85:62:64:54:
c2:29:4d:9c:53:5f:05:e7:86:14:83:cf:2f:1b:cc:
10:6b:a0:54:fa:bd:36:97:56:59:63:ec:19:58:78:
b9:bf:34:cb:ee:89:26:90:0a:86:6d:4a:35:1f:fa:
ea:c0:4b:00:e9:d4:0a:fb:6c:57:b5:34:6a:88:e2:
b9:b9:ff:30:d2:79:03:2f:14:58:d5:74:2d:5e:6e:
16:5e:1d:8f:92:6f:67:b6:f5:24:f6:05:a7:f1:4b:
a6:86:91:58:b9:7d:87:87:0f:32:a0:2e:af:48:2e:
f8:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E1:78:30:B1:AA:5E:60:86:08:5E:3B:83:CE:23:C9:57:4C:AE:FB:1B
X509v3 Authority Key Identifier:
keyid:93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:67:9d:23:54:1d:2c:bb:0f:1f:a0:ff:6a:aa:8d:6a:da:38:
88:64:5d:60:38:3e:81:a2:c6:a8:e2:d6:2f:61:a7:bb:f4:1b:
d1:db:4e:7c:cf:df:cf:77:50:bd:e4:9c:6a:1e:a9:2b:ac:bd:
e7:3c:27:a8:95:19:54:38:e6:6d:f8:ba:e6:f9:a4:b9:ab:76:
ee:7c:c7:9f:0c:69:7e:76:96:10:4f:91:e8:ec:2a:2c:9a:bd:
7b:02:38:69:6c:3d:36:93:a6:b1:ab:aa:e5:39:82:60:62:ae:
5c:ed:f3:f3:17:43:4b:9c:b1:3f:de:85:fe:24:f7:aa:79:83:
36:c0:37:b5:77:e1:8a:3f:e8:08:ea:8e:20:fc:65:89:01:35:
ff:87:a2:69:57:61:0a:0a:15:3a:d7:01:a5:a2:9e:5a:b5:4f:
37:5c:80:80:37:6b:bb:dd:f8:82:ca:5f:6a:b2:0a:6e:78:d1:
06:37:fb:f4:aa:0f:56:cc:b3:2d:b4:25:cd:bf:84:de:c1:06:
76:9e:ec:a9:bb:e8:bf:b0:f2:f5:9a:63:5c:08:ed:a8:89:81:
de:f9:ff:ed:f7:57:6e:e6:c2:7c:0e:5b:60:37:8e:ef:6e:94:
09:54:1b:b8:53:3d:66:53:6f:07:79:55:87:fc:eb:4d:bd:45:
77:d8:50:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 22:15:29 2026 by rpki-client