Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
File: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft (raw, json)
Hash identifier: LCRsIDzSUtRdr87ryKJirKWDYUfInzMRG4L7z3X7fgU=
Subject key identifier: 6D:04:45:5C:EA:C4:9E:CA:1A:5C:82:94:60:69:68:03:03:F6:8C:18
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 019D98190A82959CFA573235D6AA8BCB8A50
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
Manifest number: 1772
Signing time: Thu 16 Apr 2026 21:01:11 +0000
Manifest this update: Thu 16 Apr 2026 21:01:11 +0000
Manifest next update: Fri 17 Apr 2026 21:01:11 +0000
Files and hashes: 1: Ego0nl6qnumbw-BU5_acGm_TtM8.roa (hash: 7c/b4633erpOytsAafi0TuyOCeY/FHIybW7GxJJgywE=)
2: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl (hash: lzIO0NkW/g8P+9k0GoWyYCLbHpFRK+jAvASZMpoUpIQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:19:0a:82:95:9c:fa:57:32:35:d6:aa:8b:cb:8a:50
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: Apr 16 21:01:11 2026 GMT
Not After : Apr 17 21:01:11 2026 GMT
Subject: CN=6d04455ceac49eca1a5c82946069680303f68c18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:0d:c3:db:1d:87:92:55:c8:63:5c:46:58:17:
3a:ec:f0:5c:53:85:eb:81:19:b2:63:be:b9:e2:39:
4f:28:78:0f:22:84:54:13:3d:9a:a9:08:41:ee:61:
28:a7:71:06:f6:1b:ed:2e:ad:96:7d:be:78:16:9a:
54:b9:f3:2c:c0:fd:25:0c:bd:5d:52:06:32:1e:45:
e2:ad:6e:0b:94:81:69:41:52:9e:00:b0:05:b4:ad:
2f:6b:01:7b:c7:c2:eb:19:85:ae:5e:94:6a:25:0d:
a2:52:49:0c:d2:11:2e:ad:61:46:07:ef:d8:49:de:
40:8d:cc:83:a8:6e:38:84:c0:57:96:0b:67:4f:ca:
19:2d:c8:7c:9b:82:d9:22:60:86:31:dc:61:91:b2:
74:47:98:32:7f:35:e6:48:f2:b0:a0:3c:58:29:0f:
fa:a2:c6:01:89:d7:2a:12:f3:3a:d0:c7:17:40:b1:
c2:13:4f:4a:09:64:ed:6a:d9:64:1c:a8:23:fe:49:
d2:f6:d0:9f:c3:63:44:24:30:2b:60:8a:a5:3c:90:
4f:a2:65:48:bb:f3:36:86:e1:88:cd:03:1d:77:4b:
74:d3:d6:bd:2f:e5:e9:ac:55:d8:6a:33:85:2e:e4:
61:4c:84:2e:3e:54:d7:8d:72:e5:4b:c6:f9:72:d4:
60:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:04:45:5C:EA:C4:9E:CA:1A:5C:82:94:60:69:68:03:03:F6:8C:18
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:4c:8a:f5:7a:8f:b1:4b:d9:5a:dc:e6:12:e8:37:4d:2a:a4:
6c:40:af:f0:c8:20:8a:10:61:71:4b:c4:c8:a5:de:fd:e8:d5:
66:d8:ca:04:4f:0f:45:70:e6:d9:f7:cb:35:54:ac:aa:f8:1c:
3c:46:c5:be:01:fb:84:9f:4f:b7:f7:2b:9e:90:c6:b9:0a:91:
14:d2:87:70:96:59:f0:0f:b1:dd:b6:3d:eb:f0:12:e1:08:65:
0a:47:38:b9:db:0f:74:11:13:66:a3:13:2d:71:48:fc:0c:85:
9b:8e:44:ca:c4:34:ce:8a:c2:45:ae:33:14:87:a3:3f:10:61:
31:04:21:6f:07:f1:23:de:26:12:23:5f:01:46:03:78:03:05:
9c:9e:42:2b:f7:f1:19:33:16:b7:dc:54:f5:2b:ea:e6:f0:08:
fa:4f:d1:75:a2:d4:d7:cc:68:23:60:a5:95:41:00:c6:45:17:
de:75:f9:02:da:0a:20:2d:43:5e:44:e7:7a:ad:34:44:bd:11:
df:f5:bc:11:a7:a1:1b:71:d4:72:f9:16:27:68:14:43:bb:16:
a8:fa:24:e8:a1:9e:95:c6:26:e0:4b:68:f7:0b:30:f6:94:bf:
a0:50:fc:ce:72:a2:c3:f9:a3:91:46:c5:ff:d0:03:5a:fe:b3:
55:61:c5:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:28:32 2026 by rpki-client