Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: wNvSuq5pOAUYMLrudte79ynNtwIkcrciuvFuS/Tb4KQ=
Subject key identifier: 36:AD:AF:3D:18:3B:CC:7F:54:49:BB:F9:48:B0:61:CC:F0:EF:FF:F0
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019EBF234F3D147A92FAE5682977C7C50984
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1966
Signing time: Sat 13 Jun 2026 04:00:22 +0000
Manifest this update: Sat 13 Jun 2026 04:00:22 +0000
Manifest next update: Sun 14 Jun 2026 04:00:22 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: mZbMaLYv39ZKlCwcpeaqOCfV4JwuBM8Z1EgRNQfmK10=)
2: oPGWWYaAX9Sd9i7DrFXYN9EHrLY.roa (hash: gWn6/oluANX78L0hnctxoTZX7zawfsnjM4XEj/gL06s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 04:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:4f:3d:14:7a:92:fa:e5:68:29:77:c7:c5:09:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Jun 13 04:00:22 2026 GMT
Not After : Jun 14 04:00:22 2026 GMT
Subject: CN=36adaf3d183bcc7f5449bbf948b061ccf0effff0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:4f:b3:36:0e:6f:d0:f3:af:91:e8:fb:38:95:
df:36:03:00:cd:cd:9e:28:4b:9a:7e:22:fd:14:d6:
92:9e:bd:c3:33:69:5e:03:fb:27:81:ce:ad:40:c7:
6d:28:d8:95:64:cb:5f:a7:ef:2e:c8:07:78:02:f9:
a4:51:59:dd:30:a3:4e:d7:da:22:45:e2:10:43:99:
47:d0:39:d1:ab:d8:61:21:41:ed:49:b9:79:de:46:
99:26:56:fe:a1:c8:ed:05:eb:9e:ae:57:62:6f:7f:
51:20:7d:43:4f:5d:57:72:82:da:b8:1a:c2:48:f5:
da:31:2e:8f:57:72:b0:c3:15:08:06:bd:55:69:33:
f5:ef:6a:b3:ef:88:2b:b3:46:4a:7e:04:29:6c:4b:
52:4d:82:62:dc:37:01:ff:75:35:80:68:b6:4e:95:
07:5d:ee:24:4c:56:96:a4:ef:50:20:2b:d2:cd:19:
5d:bf:fd:13:80:2c:26:bf:a1:28:88:b4:75:76:2f:
bc:17:f9:7a:4f:5c:fb:0e:f9:3f:56:eb:d8:68:b6:
96:37:e3:fa:31:79:82:1a:03:60:0e:89:d0:8e:4b:
da:ba:f3:a5:8e:84:bd:70:90:ce:ac:62:5d:66:14:
b4:09:3e:b4:2a:ba:37:99:ab:79:88:13:26:d3:bb:
b0:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:AD:AF:3D:18:3B:CC:7F:54:49:BB:F9:48:B0:61:CC:F0:EF:FF:F0
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:89:92:32:13:c1:6f:89:96:11:fe:71:09:db:a3:af:09:41:
59:e9:91:e8:e0:3a:cc:26:35:62:4c:29:82:ce:23:c9:ac:0b:
15:f2:65:84:ad:3f:1b:15:8b:11:b4:95:1f:12:cd:ce:a4:9e:
cc:f1:e0:b5:ca:94:25:9a:84:c5:64:fa:1e:86:39:63:86:7f:
b0:20:31:6a:1d:f6:49:5f:e2:cd:ea:e4:05:46:78:dd:6b:7f:
61:cf:e0:7d:27:de:16:4f:34:7d:16:c0:68:a8:4e:28:2a:a5:
6a:fa:17:67:1a:0f:2f:a9:21:f3:50:2b:52:a3:d8:99:bb:7d:
4e:95:3f:7a:47:e7:04:26:3b:80:f4:97:46:bd:98:48:11:dd:
a6:f4:28:07:4d:78:5f:36:b4:5e:22:6b:59:8a:58:de:d4:70:
01:20:ee:20:ba:f6:9e:d9:0b:0a:21:61:24:3f:e3:93:c3:a1:
46:23:d1:14:90:38:bf:a9:b8:2e:29:61:20:de:51:7b:a2:11:
24:06:72:b1:6c:22:01:0c:6b:62:c7:c7:1b:63:56:eb:36:05:
49:07:6d:49:dc:d0:41:e9:3b:71:00:70:de:00:96:6f:3a:47:
92:6c:9c:21:10:9c:58:6d:5a:28:c9:b4:66:0d:44:4c:40:8d:
78:4a:7b:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:51:55 2026 by rpki-client