Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: AMjthAzQquG0Bf271rqxpZ/t7GILGkpByl7nBu+bnbM=
Subject key identifier: D1:A4:10:07:C1:FB:02:E5:9C:5D:3F:DC:9E:C7:BA:CB:7A:1B:69:92
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019EC111B4A2E27C231599B173A185614A2D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1967
Signing time: Sat 13 Jun 2026 13:00:23 +0000
Manifest this update: Sat 13 Jun 2026 13:00:23 +0000
Manifest next update: Sun 14 Jun 2026 13:00:23 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: biHABjvgp55Mpfz3TnWofQkf5FN3Fsc2rkCqqx7bOTY=)
2: oPGWWYaAX9Sd9i7DrFXYN9EHrLY.roa (hash: gWn6/oluANX78L0hnctxoTZX7zawfsnjM4XEj/gL06s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:11:b4:a2:e2:7c:23:15:99:b1:73:a1:85:61:4a:2d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Jun 13 13:00:23 2026 GMT
Not After : Jun 14 13:00:23 2026 GMT
Subject: CN=d1a41007c1fb02e59c5d3fdc9ec7bacb7a1b6992
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:0c:96:34:a5:b0:78:10:49:34:87:9d:7b:4b:
f4:41:1d:f9:7d:6d:d8:f0:de:22:5d:d5:fc:07:f4:
d7:08:6f:97:e2:9b:18:a3:7d:a6:a7:27:9a:28:1e:
df:8c:bc:e0:0a:2a:d7:64:8e:4f:75:d3:09:e5:9c:
87:b3:3b:14:e7:b7:09:db:71:2d:f4:be:cf:0f:7e:
18:d8:60:6b:89:72:43:eb:d2:de:db:ee:d4:13:7c:
d4:14:57:f2:01:65:20:21:0b:3f:db:64:da:f0:59:
69:f6:e4:58:f7:90:43:71:1a:ec:10:b4:9c:46:be:
9d:f6:48:ac:dc:36:72:72:a9:cc:38:b1:ca:f1:a6:
07:5c:67:26:de:7f:b6:79:90:4a:03:45:e2:f1:8e:
cb:fd:c0:ed:02:fd:b1:b5:b3:cb:33:a6:65:16:2e:
1f:ca:76:50:8c:be:a3:ea:20:62:11:29:3a:cc:4b:
50:e1:ea:61:fc:66:bd:06:8c:85:8a:14:85:8c:de:
a7:ef:73:9d:a9:05:6e:7c:78:8e:23:5e:e6:d0:04:
58:0e:2b:51:9c:df:86:62:94:c3:eb:45:05:08:66:
d7:b2:04:38:a1:fb:8c:24:11:cc:bc:81:91:90:fd:
71:2c:23:ad:b6:62:f0:f5:d6:4f:47:aa:50:6f:08:
7e:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:A4:10:07:C1:FB:02:E5:9C:5D:3F:DC:9E:C7:BA:CB:7A:1B:69:92
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:c3:1b:fb:4b:40:29:73:ac:bc:51:56:59:0a:a0:86:a0:06:
31:08:14:7c:4e:56:72:55:98:b1:5a:64:e1:ce:fa:7e:dd:13:
13:e5:69:25:74:95:b1:1b:e2:6d:31:bb:74:90:94:2e:90:1f:
18:fa:b7:56:86:ab:09:d8:3f:fb:50:5d:63:41:c1:6e:88:8b:
82:98:62:ee:42:e9:9d:5b:76:b3:73:d2:db:fb:49:e8:57:64:
25:c9:fb:03:17:d0:0c:4c:bb:2e:51:b7:ee:7e:b9:0a:15:bc:
e6:26:fd:ad:a9:36:56:de:1b:db:d7:9c:8e:06:1b:f3:b3:28:
ae:b0:20:65:ac:81:db:b4:28:70:ee:62:10:52:7b:a8:99:5b:
03:4a:3e:b4:56:6a:8f:f0:9a:9d:49:56:d2:89:d6:c5:cc:0a:
13:b3:6f:d2:6f:f1:95:52:61:5c:04:1f:19:a4:6f:35:01:c0:
05:90:97:16:fe:46:06:3b:2d:91:ea:e5:bd:6e:21:1d:f5:36:
ff:d6:1e:f5:e3:c0:3e:c4:27:6e:bf:ac:a5:58:e4:55:5f:fd:
af:ba:84:3e:73:2f:7c:fd:f4:3f:c9:cc:38:5c:bc:dc:c8:c5:
7f:dc:6f:a4:43:b3:e0:8e:00:16:4a:6b:86:05:ee:25:a8:b8:
79:59:7c:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 16:17:16 2026 by rpki-client