Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
File: knEFydH7BpBVSXH0ZMoh9KRcEGo.mft (raw, json)
Hash identifier: lHu++W/E9Cd7pvyGHpIOiFd9dbqCmTs0Av4QkAFlGZU=
Subject key identifier: F5:2B:B5:C9:4A:20:E4:8D:9F:F5:91:3E:9A:BA:A8:02:1A:C6:C1:DD
Authority key identifier: 92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
Certificate issuer: /CN=927105c9d1fb0690554971f464ca21f4a45c106a
Certificate serial: 019E1DFEBE71B0FB0F7DAB23D79AC21AC200
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
Manifest number: 0FDD
Signing time: Tue 12 May 2026 21:01:34 +0000
Manifest this update: Tue 12 May 2026 21:01:34 +0000
Manifest next update: Wed 13 May 2026 21:01:34 +0000
Files and hashes: 1: YthcC5vfZaqX4lQHCzfAkYHmBn8.roa (hash: e1Wa1MDzLGWDE0S3sqNrMKZLPwUzO14S8dedZF4Jkxs=)
2: knEFydH7BpBVSXH0ZMoh9KRcEGo.crl (hash: 8DUXIltYowgF4yGzQQlgtydVIGodQ8P5DauwT2pyP+0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:be:71:b0:fb:0f:7d:ab:23:d7:9a:c2:1a:c2:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927105c9d1fb0690554971f464ca21f4a45c106a
Validity
Not Before: May 12 21:01:34 2026 GMT
Not After : May 13 21:01:34 2026 GMT
Subject: CN=f52bb5c94a20e48d9ff5913e9abaa8021ac6c1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:71:05:b8:ed:db:99:3a:38:fa:60:9d:4a:36:
91:23:f3:9c:90:22:c4:c6:86:93:fb:72:81:97:e3:
48:fa:dd:28:5b:b7:a5:97:fc:38:77:64:2f:3a:ae:
8b:54:4f:3b:e5:84:ac:d9:9f:94:82:08:7f:ba:c4:
d4:19:df:f5:72:25:18:1f:c6:b5:68:08:85:9e:57:
4a:db:aa:99:30:49:18:b6:a2:8c:6b:a5:76:45:bc:
3f:56:a0:b2:b0:37:3f:67:d4:58:36:6e:f5:38:36:
7a:ae:4d:3e:ea:02:21:40:33:5f:03:de:10:2c:8c:
ae:4e:4b:67:cc:57:23:91:69:ae:a5:44:64:22:fc:
b8:98:08:71:45:62:8a:6f:46:ae:b6:e1:16:8d:b9:
e3:9a:f3:42:9d:dd:e5:c6:bf:63:da:cc:c5:2c:04:
10:75:c9:bb:72:37:be:8d:a6:73:2c:bf:e5:c4:69:
47:71:14:86:70:cb:5d:19:5c:ef:b5:40:af:11:b6:
de:c9:30:39:ac:6c:43:3e:f9:62:3c:91:0d:a5:84:
e7:f4:1b:2d:dd:92:f2:49:c1:30:e4:d8:ed:ad:a0:
f4:e6:d9:bb:8a:ce:b5:cc:9d:7a:0a:4d:d1:85:68:
b7:51:b1:9d:3a:f5:2a:21:aa:24:ae:38:e5:42:53:
15:39
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:2B:B5:C9:4A:20:E4:8D:9F:F5:91:3E:9A:BA:A8:02:1A:C6:C1:DD
X509v3 Authority Key Identifier:
keyid:92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:9e:8c:48:12:0f:a0:a2:bd:a1:78:54:99:ae:21:79:67:83:
5b:ab:e0:91:a2:ff:fe:df:8e:cf:49:77:8b:10:23:ae:17:17:
66:58:30:50:19:30:9a:95:18:43:94:8b:b0:33:55:0b:87:e1:
ef:cb:6d:aa:a3:a9:e7:bf:8a:33:f1:1f:f3:ee:b7:92:8d:5d:
d9:19:12:08:41:2b:e9:98:f0:5f:8b:1e:5e:cc:ed:6c:3b:a2:
0d:e4:76:cf:f6:9b:6e:0a:b1:6c:c9:0c:04:0e:f1:c2:59:94:
cd:52:54:51:18:d2:f8:8e:c4:65:2d:4f:4d:ef:d8:ba:7a:c5:
3e:9c:a8:64:c8:46:e2:3b:ea:cd:85:06:4a:91:df:75:75:aa:
5a:8e:eb:f9:61:1d:f1:f3:b4:3e:cb:06:a8:b8:20:74:d3:3e:
f2:df:77:e3:df:53:9d:09:5c:2c:63:da:02:2d:25:3c:34:ee:
42:67:c5:75:c9:8e:84:82:0e:cf:92:72:82:54:f5:f4:52:33:
95:05:aa:80:fe:bb:f9:53:de:51:9c:70:94:65:1d:7e:d8:8e:
17:cd:ea:55:70:d4:25:24:ea:87:bc:71:2f:81:c2:fd:89:e7:
56:c3:91:ce:d3:82:04:6a:b0:eb:95:ea:84:b7:48:fb:93:84:
c5:77:b5:d1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:20:05 2026 by rpki-client