Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: afXpkuF1XitkFUgRHbOmOh6sUVOpwDIbvukbMdXKRuc=
Subject key identifier: 8B:18:09:2A:61:8D:83:E1:CA:A3:58:BD:DB:43:B7:AF:60:CC:33:36
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 019E1DC701AEA6C1959FBCA5CE64F73B130F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 065D
Signing time: Tue 12 May 2026 20:00:41 +0000
Manifest this update: Tue 12 May 2026 20:00:41 +0000
Manifest next update: Wed 13 May 2026 20:00:41 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: Mzgoz8gDyrdbmaGsGShKfk4YcOt7m8k226z+mNl5r/c=)
2: ir9SuLduq8J9bIwWBVKAyAFiwvk.roa (hash: LeNR5QQthmrMSFvWNxLjb0RXrLTd6w9z7OeC3M8gneo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:00:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:c7:01:ae:a6:c1:95:9f:bc:a5:ce:64:f7:3b:13:0f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: May 12 20:00:41 2026 GMT
Not After : May 13 20:00:41 2026 GMT
Subject: CN=8b18092a618d83e1caa358bddb43b7af60cc3336
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:6e:55:91:d9:69:e5:71:27:ab:e2:ef:36:b6:
7d:eb:6c:63:4f:63:6e:5a:fc:58:83:e3:80:a0:9d:
e2:2f:ce:d4:f0:b2:d5:df:7b:07:b9:4d:61:eb:03:
4d:82:77:65:2f:b9:c6:3c:38:1f:fc:3b:91:8c:68:
3b:f7:57:7f:ef:e9:5d:ec:3e:81:f2:ac:43:01:2d:
97:94:99:d2:70:36:a9:a0:54:65:31:ee:93:4d:64:
81:e1:6d:38:cd:fa:ee:c3:db:62:00:9c:1f:e8:85:
66:be:2a:38:0f:32:78:06:bc:e9:14:98:b6:76:a0:
2b:2e:72:34:4a:7f:f2:59:98:71:db:9d:68:c9:60:
70:ed:c9:ca:79:c2:13:6b:0b:e2:ab:07:19:53:1e:
65:45:6a:1a:5e:d3:e7:14:c0:f0:5d:15:b6:72:3f:
3e:c0:7b:88:62:6c:fc:35:ca:92:08:28:d2:20:d4:
27:55:d9:a4:4c:4e:5a:d0:49:2c:76:1c:74:a7:60:
10:69:ca:42:42:43:a2:02:60:67:5c:15:a9:3f:fe:
eb:ee:a3:d7:e6:fe:d2:c0:49:38:40:1d:32:a5:b2:
f0:2d:8f:2d:32:af:53:9e:c3:17:a8:cf:2c:5a:9c:
6d:aa:b4:7b:b2:fd:8c:7a:1b:d5:c3:d4:86:d2:0e:
cb:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:18:09:2A:61:8D:83:E1:CA:A3:58:BD:DB:43:B7:AF:60:CC:33:36
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:bd:8c:5f:b6:0d:29:2a:d3:84:9d:64:95:8a:eb:23:66:dc:
3c:32:f1:86:68:0d:ba:34:1a:54:fc:d5:b6:ef:13:6d:e7:33:
ea:29:cd:3e:7b:d3:cb:38:39:91:8e:b2:5b:50:db:dd:82:4f:
8d:0e:58:dc:1f:5d:60:39:bd:b5:e1:1c:90:e1:1a:39:94:62:
17:c1:07:e6:2e:28:52:13:fe:a6:2b:a5:ff:31:1f:1d:62:5b:
5b:b2:b4:20:c6:ef:b1:e6:14:0e:4b:d3:82:ae:08:1b:ed:48:
ac:d8:31:a9:5a:25:b6:7f:ed:cb:06:a3:20:a2:db:a6:1d:58:
ab:6b:d0:ed:d1:d5:fe:99:d9:64:d8:e7:e4:b4:d8:22:a2:a8:
6c:9a:80:d5:80:0a:63:ac:02:37:04:87:bc:50:60:ed:03:8e:
ef:7a:47:45:f4:13:c6:ad:14:fb:9b:2f:87:5f:89:30:ec:e5:
c9:d7:06:e7:35:5d:16:25:a7:bd:c3:67:09:bb:a1:73:ae:f8:
0f:62:77:ae:1a:f7:b1:13:d3:a4:e6:31:65:9e:27:9b:01:69:
c4:16:cc:b3:fa:fe:b9:3c:e9:90:d3:53:b3:00:f8:3b:7c:7d:
cb:6d:9d:f0:b7:a5:16:60:0e:04:29:f2:e0:a1:26:3d:42:db:
77:9b:b8:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:28:18 2026 by rpki-client