Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json)
Hash identifier: 9eLzA/KdvWYKe4NBAM4SIoLJh5si/sLWoOubqk7NjX0=
Subject key identifier: 96:8D:A1:33:12:F4:4B:CE:71:06:51:0A:F1:86:05:BC:EA:37:20:C6
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 019E1ED9976D51B45BE5485C85C594BA355F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
Manifest number: 0923
Signing time: Wed 13 May 2026 01:00:36 +0000
Manifest this update: Wed 13 May 2026 01:00:36 +0000
Manifest next update: Thu 14 May 2026 01:00:36 +0000
Files and hashes: 1: _E48T5Kk_YeYZLQhVAgd8hC7YsU.roa (hash: k0dJ8PeVcNyuxj67fWBRQ1gHRoWtlCyhQvB826alDbQ=)
2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: qwkSB2K0iP0UldDwK2Nb0iUzQ2TMRPMBZaC4vPTtnIg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:d9:97:6d:51:b4:5b:e5:48:5c:85:c5:94:ba:35:5f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: May 13 01:00:36 2026 GMT
Not After : May 14 01:00:36 2026 GMT
Subject: CN=968da13312f44bce7106510af18605bcea3720c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:49:d1:88:85:10:75:9c:46:31:53:0f:1b:d4:
19:76:a3:d6:09:57:50:a1:e2:c9:bc:36:32:b9:d6:
c4:16:ec:71:3f:37:47:c7:5d:be:5c:f4:05:70:e6:
20:73:6e:23:a2:55:dc:e0:65:db:30:ee:82:66:e2:
22:b9:9d:eb:e5:18:e9:99:e4:c5:bc:79:c3:2d:e0:
89:06:c7:c9:e2:45:a5:d8:7c:b3:7a:24:ff:3c:c1:
dd:52:cd:9c:69:67:a3:dd:87:14:84:24:26:a2:4c:
cb:9a:d1:68:75:64:3b:b3:72:bd:3d:93:0a:db:20:
cd:06:a9:15:ff:fc:ca:bb:4f:f5:a5:2a:88:76:b6:
ec:d2:e1:1b:13:09:51:88:0d:18:d0:d1:0c:f0:32:
a5:94:23:97:3d:5b:8c:f2:55:5f:85:7b:40:bf:82:
46:a2:e3:bf:49:02:4d:10:68:ab:4e:41:b1:70:e7:
a6:98:d1:4b:54:28:56:2c:2d:17:ac:20:a2:e5:01:
9c:9b:8e:27:13:6f:e6:af:df:5c:c2:a4:f1:c2:49:
d0:06:35:57:bd:2f:3b:38:d8:5b:53:46:d8:ae:75:
16:72:b4:c3:c0:54:b9:f1:73:af:0f:40:61:40:65:
97:0c:c2:ac:49:e3:8c:df:36:89:6a:08:7b:c5:3b:
bd:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
96:8D:A1:33:12:F4:4B:CE:71:06:51:0A:F1:86:05:BC:EA:37:20:C6
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:ec:e2:a4:df:36:d9:94:6a:de:2f:1d:6d:1a:0b:33:aa:5f:
11:f8:fb:5c:d1:cb:32:a0:73:f9:dd:ce:39:15:b9:ac:55:7e:
22:b5:a6:49:8b:d6:dd:08:3d:e4:d4:c1:0e:08:94:75:98:10:
bd:50:b4:60:c4:7a:ff:d0:c4:3b:a3:82:f5:6b:e7:e7:d6:b1:
d3:4e:7d:db:16:e7:ce:09:55:07:aa:08:41:20:1c:49:68:7f:
86:27:94:6d:7a:1e:bf:48:ec:9a:b1:36:93:cb:fa:31:e7:49:
89:75:c4:a5:aa:d0:94:52:50:70:1b:d0:30:b7:48:f5:a1:f8:
52:77:17:11:94:c5:42:9e:52:ea:ff:86:d1:94:82:e7:9d:a8:
f8:43:fb:df:70:11:8d:f1:b9:49:4e:a3:3a:d1:19:8d:08:de:
1f:fe:32:19:ee:41:f2:b9:c6:96:ef:e5:c7:8f:84:2f:f3:b1:
96:fa:0e:43:4c:7a:d5:7d:97:78:11:f1:52:88:bc:bb:39:b0:
21:e6:9b:2f:1e:eb:24:58:5a:f7:81:ac:08:8c:c5:e1:f5:88:
99:43:e2:75:b7:6a:7a:31:1b:83:d1:dd:88:10:24:d7:16:13:
6d:40:cc:7b:6a:a5:ec:71:73:0c:eb:9e:81:c9:98:64:20:4d:
28:9a:4f:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:09:35 2026 by rpki-client