Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json)
Hash identifier: Tfo1kpd28H95gFmV+Ni5nU3kJOL81nZNu359+GI6ZGk=
Subject key identifier: 5C:C7:3D:B8:82:C6:53:8C:DA:A9:0A:F8:8A:2C:FB:77:84:25:49:E3
Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Certificate serial: 019E1E356924B62E5748FD332A41DB2FC001
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
Manifest number: 1168
Signing time: Tue 12 May 2026 22:01:17 +0000
Manifest this update: Tue 12 May 2026 22:01:17 +0000
Manifest next update: Wed 13 May 2026 22:01:17 +0000
Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: Y033PoIuZydNUwwYghBW87wANLRyRsSmz3guioXF8Is=)
2: hTiJ6cCS_TiS4eI7qxisMIha6WA.roa (hash: RYMk/98nEg7OxXi5y6LpcIy05kfPWnp4XSK+7SVu8ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 20:10:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:69:24:b6:2e:57:48:fd:33:2a:41:db:2f:c0:01
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Validity
Not Before: May 12 22:01:17 2026 GMT
Not After : May 13 22:01:17 2026 GMT
Subject: CN=5cc73db882c6538cdaa90af88a2cfb77842549e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:a0:02:74:0c:74:17:53:92:f8:97:53:fc:23:
43:b8:72:ec:f4:cf:9f:b9:b6:e1:39:2a:f5:92:28:
87:82:61:7e:44:3e:17:32:6c:2f:ea:64:47:06:7c:
10:eb:d1:fe:e6:53:ce:21:f6:28:99:3d:7d:3d:ab:
52:ae:4b:a0:3a:db:61:30:05:8d:e7:4a:a3:f1:56:
77:9a:f7:b7:8f:80:7f:05:c8:6f:de:70:bf:39:61:
69:75:95:70:f3:39:89:df:34:c5:e4:65:0b:4e:a1:
de:ee:e7:b6:23:8c:1e:8c:02:6e:2f:5e:4c:e7:ba:
56:00:ad:7a:a6:ec:01:a3:f0:2a:c9:3e:e0:25:c0:
f0:fa:8c:2d:d4:73:2c:ef:7a:47:1b:0b:5c:bd:96:
6c:35:6c:4c:3b:e1:b3:d9:1d:bd:c6:a7:e4:18:0a:
cc:e6:67:9d:b9:3c:84:f4:21:fd:69:15:2a:0d:1a:
71:0b:dd:dc:c4:f0:15:e4:e7:37:82:99:6a:38:57:
e3:9c:f5:5a:63:69:17:03:9a:b7:19:af:a8:ee:9a:
67:bb:d9:c3:ee:e7:cf:95:d4:2f:28:f1:6c:73:04:
65:c7:e6:30:f3:c7:46:c8:83:06:3d:52:8c:2a:c5:
fc:f4:67:fe:3f:f5:62:70:d2:69:96:3d:3c:61:19:
a2:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:C7:3D:B8:82:C6:53:8C:DA:A9:0A:F8:8A:2C:FB:77:84:25:49:E3
X509v3 Authority Key Identifier:
keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:d2:c8:f7:55:82:aa:70:aa:42:4e:4a:b4:3a:d3:6a:42:42:
b5:a1:d2:e1:2a:18:3e:e6:68:76:82:ec:84:16:62:6c:e5:65:
df:db:88:8a:e2:2e:18:da:3f:25:6a:8a:2b:5a:61:90:9d:28:
14:d8:23:b8:0a:75:d4:4f:f1:3c:55:73:67:13:1e:1c:28:cb:
a5:c9:b6:d8:3b:af:5b:ae:66:f6:1b:21:e0:f7:8a:84:27:27:
e2:fc:a1:97:4a:bd:91:39:8d:73:49:a0:0a:e8:37:5e:68:ca:
9c:74:34:30:22:7d:ce:c2:16:8d:da:ce:21:58:89:66:b5:95:
46:16:d6:a2:1c:5e:25:97:b7:c4:cd:3e:53:c3:42:12:90:33:
84:18:9b:4e:4a:da:6d:2f:83:f8:ce:25:23:78:70:7f:8a:fa:
00:1a:93:f5:85:b3:ca:fd:a3:86:c0:5e:ae:a4:cf:4c:eb:f4:
b0:38:92:3f:37:a0:50:4f:24:9b:04:2f:e1:5f:c5:55:6e:81:
1b:d7:d2:52:ec:a3:71:75:68:a5:01:ad:e7:01:01:af:35:3b:
d1:ac:dc:2b:99:b5:83:c0:61:b2:08:c9:6d:45:7e:66:c2:12:
97:81:55:34:f6:35:b4:bc:54:16:0a:59:8f:21:2b:e0:52:39:
c8:f9:54:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:36:25 2026 by rpki-client