Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
File: KYm1iRINOeoU_1OWO_IxV9Mkleo.mft (raw, json)
Hash identifier: frW3dOL4pebUFxCkhnuvPIbcuF3Fo4cOi08ua3dGMnA=
Subject key identifier: 0E:6F:FB:98:29:79:29:CB:02:BC:93:CC:31:DB:08:99:1E:98:3F:E0
Authority key identifier: 29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
Certificate issuer: /CN=2989b589120d39ea14ff53963bf23157d32495ea
Certificate serial: 019E1FB5C135174783A795C3542C9E1C31D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
Manifest number: 1905
Signing time: Wed 13 May 2026 05:01:05 +0000
Manifest this update: Wed 13 May 2026 05:01:05 +0000
Manifest next update: Thu 14 May 2026 05:01:05 +0000
Files and hashes: 1: KYm1iRINOeoU_1OWO_IxV9Mkleo.crl (hash: 0hf4whUkUdXDi/VddhVFbpoADUXPvcb1oxloE1a3eBY=)
2: Np8PkRIzq2H-mfEgyXXHLw4xA2o.roa (hash: kCme1YTSTXAyOTkajeANzDG66nwpOp5PNkNgd2m+u9c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:c1:35:17:47:83:a7:95:c3:54:2c:9e:1c:31:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2989b589120d39ea14ff53963bf23157d32495ea
Validity
Not Before: May 13 05:01:05 2026 GMT
Not After : May 14 05:01:05 2026 GMT
Subject: CN=0e6ffb98297929cb02bc93cc31db08991e983fe0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:3d:5d:0c:34:8e:3f:c7:94:b8:2a:bb:62:48:
37:f9:4f:7c:1c:96:58:6a:b3:7f:e9:06:5b:12:a4:
d2:63:dc:9a:3e:2e:a8:80:09:86:5b:b9:75:ef:79:
72:9a:60:54:d5:ec:9d:7d:28:89:26:b1:21:87:59:
34:15:5b:4c:ef:1f:01:d4:cc:9c:97:e5:fc:90:10:
a1:05:7f:4f:a2:64:32:ef:4f:45:28:57:34:a7:16:
55:1c:ca:2a:8d:03:2b:26:46:dc:90:4e:fb:29:df:
45:b9:a7:1e:01:7f:80:fc:b0:96:aa:de:db:42:9e:
f6:8a:0f:d8:12:15:ac:b1:f3:30:36:1a:b4:88:7d:
cf:81:02:f3:e1:75:52:80:e2:75:4a:09:45:81:42:
7d:db:72:6a:df:0a:2f:22:08:bb:82:2c:dc:19:02:
f5:3d:2d:58:c7:de:9e:be:a5:21:f3:f8:8d:39:53:
3e:01:a7:c4:ae:b1:40:18:3a:5a:01:45:2d:69:dd:
89:08:5b:86:d6:c0:eb:96:f8:1d:82:c9:a9:a2:70:
f3:d3:66:15:85:22:36:1d:21:67:a3:60:45:90:93:
f8:8d:a2:5f:25:5c:84:ef:26:c6:18:da:a6:8c:40:
0d:9d:ed:2c:c1:8f:f5:73:0e:6b:aa:6e:c7:4f:3d:
78:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:6F:FB:98:29:79:29:CB:02:BC:93:CC:31:DB:08:99:1E:98:3F:E0
X509v3 Authority Key Identifier:
keyid:29:89:B5:89:12:0D:39:EA:14:FF:53:96:3B:F2:31:57:D3:24:95:EA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYm1iRINOeoU_1OWO_IxV9Mkleo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7a/f08170-8d92-4cfa-b733-fbdbe514df5a/1/KYm1iRINOeoU_1OWO_IxV9Mkleo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:ab:df:7c:65:53:81:13:f1:64:97:93:97:2b:0c:83:ee:fc:
e3:ce:a0:5a:80:bf:24:a4:2c:95:c7:4a:e5:03:9f:7c:d5:3e:
c4:b4:70:87:e3:db:e7:63:bc:94:f4:83:81:63:79:68:57:da:
db:8a:02:9c:47:34:0b:fe:5a:dc:2d:dc:b5:f5:2e:2f:34:a3:
e9:4d:60:bd:e9:6e:8a:5c:db:9c:df:f5:dc:46:a7:d1:10:a7:
1a:a0:ce:e8:08:01:66:48:b4:aa:f3:72:6a:e0:b6:84:94:ed:
3c:16:17:fe:0e:81:da:82:5e:bb:af:2b:1a:e4:4c:b9:54:fa:
75:a6:bf:20:ff:d6:f7:e6:f9:23:26:e9:0b:cd:71:2e:7e:8c:
1e:f0:12:40:92:c1:01:1d:da:f9:52:f2:d8:00:7e:42:79:86:
37:14:00:c5:22:a1:28:b0:2d:be:8d:81:b9:ed:c7:5d:6c:68:
46:65:b5:6f:0e:08:cb:09:58:b7:03:5a:71:48:d3:54:ad:ab:
68:d7:d3:fa:c2:53:d1:a4:00:ff:53:bb:19:68:ea:06:28:ef:
1f:33:d2:6f:0a:ea:f1:a4:7e:64:52:5f:b7:c1:1f:ae:18:31:
dd:80:72:28:95:db:f5:c3:ee:20:8a:4f:6b:ae:e0:0d:7a:38:
06:b3:3f:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:44:17 2026 by rpki-client