Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
File: K_CgGXhoxtjDTdFrP0TezF5CNvU.mft (raw, json)
Hash identifier: n9MCA4ViFRR1dfxNN4SyF8JGb7e1DG7Q0Be5OjUJXJo=
Subject key identifier: C9:9A:65:6B:D8:ED:BF:71:85:1E:9B:28:2E:4B:18:BF:D2:E6:C2:21
Authority key identifier: 2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
Certificate issuer: /CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Certificate serial: 019E1EA354DC25B805CD9ECE8C2643B6F359
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
Manifest number: 10BF
Signing time: Wed 13 May 2026 00:01:21 +0000
Manifest this update: Wed 13 May 2026 00:01:21 +0000
Manifest next update: Thu 14 May 2026 00:01:21 +0000
Files and hashes: 1: 5MvGTIWvypnynatSCOFj8eEvQKU.roa (hash: zlpMkBrcV9PcuGvhpfeVQrRYScHNx6B9kKbHDGTMD3Y=)
2: K_CgGXhoxtjDTdFrP0TezF5CNvU.crl (hash: N0AeeLh3iHBZa/fl6n8ACIvC/YUwKOf6xJo7drZM050=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:54:dc:25:b8:05:cd:9e:ce:8c:26:43:b6:f3:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bf0a0197868c6d8c34dd16b3f44decc5e4236f5
Validity
Not Before: May 13 00:01:21 2026 GMT
Not After : May 14 00:01:21 2026 GMT
Subject: CN=c99a656bd8edbf71851e9b282e4b18bfd2e6c221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:20:a5:20:f6:fe:3c:49:80:da:a4:9f:54:1f:
5f:54:3e:33:4a:2c:d1:5c:b4:c0:fa:61:eb:2d:02:
23:54:6d:d3:df:63:43:d7:11:c0:60:b8:92:88:f9:
cf:e2:dd:ba:b2:f1:f2:eb:b7:49:18:eb:b9:0c:20:
05:17:ec:27:e5:41:b2:15:90:33:dd:ee:0e:4d:fa:
1b:50:ff:3b:fa:b8:0f:0f:ae:f8:08:9c:3b:32:51:
20:c7:6c:6b:1e:91:a4:cb:b9:f2:11:da:77:7f:43:
81:db:1a:b8:78:93:97:bd:e2:48:0e:10:7d:72:bc:
b2:f6:44:3b:f2:40:ed:14:bc:e1:65:50:50:a0:79:
90:9a:1d:1b:cd:f1:8e:be:f4:db:58:34:fc:94:40:
b4:52:f6:d8:49:77:7e:2e:2b:1a:66:fa:a8:2b:2f:
aa:03:ea:f4:79:3d:81:32:e3:8c:5a:0e:a2:7a:1e:
37:2b:6a:b2:a2:78:aa:c0:3f:d4:1b:0d:ce:5a:fa:
fa:79:12:6d:b1:40:80:1a:b1:c3:6d:16:4b:80:46:
5b:9d:d3:f3:21:2d:4c:d8:e7:e2:8a:82:11:82:81:
26:39:b4:03:8f:04:c5:e8:ef:20:50:d1:52:4d:73:
fd:38:6e:ff:0d:4f:48:1a:2d:1d:23:0f:3b:b8:f4:
a0:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:9A:65:6B:D8:ED:BF:71:85:1E:9B:28:2E:4B:18:BF:D2:E6:C2:21
X509v3 Authority Key Identifier:
keyid:2B:F0:A0:19:78:68:C6:D8:C3:4D:D1:6B:3F:44:DE:CC:5E:42:36:F5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K_CgGXhoxtjDTdFrP0TezF5CNvU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/40d220-621d-46fb-ac9c-48b8366ff23e/1/K_CgGXhoxtjDTdFrP0TezF5CNvU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:ee:b6:f1:e9:24:71:f8:8e:3a:10:ca:27:96:31:92:f6:ac:
d5:de:28:16:55:ab:fe:00:dd:11:32:0d:6c:92:66:1a:cf:1e:
20:f9:c0:26:4d:01:9e:40:b9:22:59:f1:8f:16:36:98:17:93:
db:98:9c:e8:d0:96:34:ee:d1:f7:6f:02:4a:92:0a:79:52:a6:
45:48:7c:09:7d:36:fd:c9:a8:8b:39:9c:c2:83:6f:66:09:98:
ce:5e:8b:ef:f9:30:11:15:5e:2d:cf:ef:3f:1f:7f:90:21:0b:
cb:29:75:d9:b8:32:61:45:52:d5:5e:b8:e7:27:b6:46:74:64:
10:9d:1d:56:43:55:b3:5d:2f:ec:c5:47:dd:24:e5:04:6b:8b:
39:18:6d:57:b1:b1:77:ce:04:39:24:d9:21:c3:e8:ee:b5:c6:
69:f1:b9:2f:e4:06:e1:03:5f:63:ba:c3:fe:4d:88:77:f1:a2:
88:aa:10:68:69:b9:ff:33:6a:58:7a:c4:83:53:1a:2a:6b:d5:
3a:a6:c1:1b:d8:ef:ef:7c:4f:57:f7:5a:78:ee:69:87:0e:04:
e4:05:a5:80:3d:ad:3f:2b:e0:d0:0c:bb:b1:1a:2b:6e:8e:fd:
29:75:9b:37:e1:99:f8:a2:64:6f:6e:f2:58:9d:80:fb:8b:b1:
8e:01:4a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 08:16:54 2026 by rpki-client