Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
File: cKdpKcviHO3ZTAErpYuwtvEpci4.mft (raw, json)
Hash identifier: +XxaRii53JOp5TXKYFuJcN1H+mdg7icFwic0aP6vMCk=
Subject key identifier: 56:DF:1D:D1:46:1D:9A:98:62:67:CC:C6:41:85:D1:EB:42:A1:62:36
Authority key identifier: 70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
Certificate issuer: /CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Certificate serial: 019E1DFE49F448CCAD72EC311F422F38E605
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
Manifest number: 1905
Signing time: Tue 12 May 2026 21:01:04 +0000
Manifest this update: Tue 12 May 2026 21:01:04 +0000
Manifest next update: Wed 13 May 2026 21:01:04 +0000
Files and hashes: 1: aoOpVJxHaq6lirDB7KBfHBY1mPg.roa (hash: yU+Zr+0ARyapGrg/EO3GqqfA2M5mqsDqcwUrOhZ27aQ=)
2: cKdpKcviHO3ZTAErpYuwtvEpci4.crl (hash: 3kUvXyobZVCy1mLM6MsexZmctDMgrcqljZ+T8GnRzps=)
3: hulhdN0Qn-peYoW5Is6weOEdrhI.roa (hash: s79WL7wCJTobjZ+5yZurGdhzF/MfqEzBAkYlfeNPrEU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:49:f4:48:cc:ad:72:ec:31:1f:42:2f:38:e6:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=70a76929cbe21cedd94c012ba58bb0b6f129722e
Validity
Not Before: May 12 21:01:04 2026 GMT
Not After : May 13 21:01:04 2026 GMT
Subject: CN=56df1dd1461d9a986267ccc64185d1eb42a16236
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:61:e6:e2:53:fd:03:e4:a9:e0:5d:9f:78:77:
97:4e:de:7f:bb:46:22:af:6e:1b:33:2e:77:cf:03:
46:81:3a:db:b5:a5:ae:ba:cb:b7:e4:71:ba:b5:f9:
72:cb:a2:79:cb:61:e1:0c:f8:24:91:9b:25:da:c9:
25:b0:d7:2e:9d:6b:65:4a:62:5f:66:ae:b2:57:7b:
97:ab:54:b2:42:37:43:62:13:9c:a9:73:ae:e4:34:
6c:92:9e:de:e2:8d:c2:b9:73:4a:0c:13:30:30:1a:
d5:1d:27:59:f1:3b:51:77:41:96:3b:c7:20:83:23:
2e:f8:fe:0f:24:78:ff:2a:ba:16:c4:63:4b:c6:f7:
f9:05:ea:4f:12:5c:19:e5:9d:d6:95:1b:a5:26:1c:
aa:22:ca:be:44:f4:a6:7a:5b:4a:84:d4:1d:98:fc:
d6:7b:3e:82:73:44:35:76:63:ae:57:75:64:04:d2:
4f:9d:a0:7b:28:45:38:aa:f3:9b:d7:3e:0f:d9:23:
98:1f:6e:c8:bf:74:63:4c:69:7f:d2:d4:42:89:1b:
6d:6f:79:eb:3a:0f:3c:bc:ff:c8:32:6c:06:6d:dc:
6f:43:04:20:a9:53:f9:15:b3:fc:c2:a9:f8:74:33:
6e:db:3b:6d:c4:45:fb:fe:b3:8f:a9:32:86:44:d6:
2a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
56:DF:1D:D1:46:1D:9A:98:62:67:CC:C6:41:85:D1:EB:42:A1:62:36
X509v3 Authority Key Identifier:
keyid:70:A7:69:29:CB:E2:1C:ED:D9:4C:01:2B:A5:8B:B0:B6:F1:29:72:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cKdpKcviHO3ZTAErpYuwtvEpci4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/014f47-628b-4fb8-b344-a409e22a243e/1/cKdpKcviHO3ZTAErpYuwtvEpci4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:c2:6e:61:b2:65:e6:8e:20:86:d9:70:85:e0:90:f7:70:af:
a8:8f:49:8d:81:b6:65:6e:5e:ef:51:c1:c2:51:11:4e:83:26:
66:0d:92:bf:f6:8e:69:35:ed:d9:a7:fc:c9:64:78:5b:79:fe:
8a:22:9c:62:b1:43:35:f2:1e:c6:5e:13:51:44:5a:50:91:3a:
a3:17:ea:db:c1:ff:d9:df:08:f7:f7:49:e5:24:5d:3e:2a:2d:
35:f6:c3:7d:1f:6e:95:e5:37:d8:d1:db:9d:af:c9:da:34:01:
2f:4f:da:8e:ac:0d:b3:bc:e3:f1:cf:9c:66:b4:71:7f:86:91:
9d:00:27:a4:f3:45:c0:c0:d4:33:79:bd:0d:2d:d3:09:25:5a:
94:f4:3f:ff:7b:6c:b2:5c:ef:e7:09:eb:27:42:07:8b:20:af:
08:f6:79:70:e6:8b:bb:2c:69:ce:68:93:19:20:77:b0:fb:e9:
0d:4d:02:19:4b:b0:4f:98:af:7d:d8:5e:ac:6c:b4:46:e8:5e:
15:97:d2:93:12:92:cc:32:d4:46:e3:b8:72:46:98:16:c0:b4:
82:d3:12:b8:80:fb:24:27:8b:99:0f:70:44:66:09:25:a7:94:
f1:ca:ff:89:fd:14:b7:b8:d1:4f:a6:94:7e:b6:d5:2e:43:85:
d3:e2:71:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 05:16:45 2026 by rpki-client