Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json)
Hash identifier: KF92uTLAjoTD7q92sulgDWGtt/wJ0pZr/X9SZG24rnk=
Subject key identifier: 2D:4C:7C:A8:AB:DD:15:15:7C:F3:0F:5A:55:79:00:06:84:89:4A:0A
Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Certificate serial: 019EC3DC74143AD0558CB5FFC8683F929046
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
Manifest number: 0746
Signing time: Sun 14 Jun 2026 02:01:05 +0000
Manifest this update: Sun 14 Jun 2026 02:01:05 +0000
Manifest next update: Mon 15 Jun 2026 02:01:05 +0000
Files and hashes: 1: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: aURxCVir0DUJ4KJESWoIB8DxVpTf4sKqORH2DCpSjIA=)
2: ZS3grquCf_l1OKXIoqEGRKP0J6M.roa (hash: 2PBPag/zPM22x9IohJ6q0TulDZRbeQTFCvgCnuCjnz0=)
3: vUdfXnwcRDPW7e3X7ofFMJYqkDk.roa (hash: 4hcskGjMuomfYGEOrtlmJrd0tV2p1HAsJ5FOV+HnCFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:dc:74:14:3a:d0:55:8c:b5:ff:c8:68:3f:92:90:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Validity
Not Before: Jun 14 02:01:05 2026 GMT
Not After : Jun 15 02:01:05 2026 GMT
Subject: CN=2d4c7ca8abdd15157cf30f5a5579000684894a0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:dc:85:d9:cb:f5:b2:74:f8:87:72:52:6a:c8:
43:8e:49:23:22:b1:64:d8:ff:6e:db:48:33:c5:48:
93:43:f2:ce:8f:3f:d7:1f:2d:e2:42:e6:64:54:fa:
5a:bc:42:9b:42:af:24:96:87:80:c9:6e:1d:c6:72:
8b:46:07:28:a4:a5:b9:73:d6:a9:c5:07:c3:a1:e9:
61:6c:72:33:74:67:66:da:fb:96:a1:4b:8e:7f:1f:
43:bf:af:66:14:f8:72:d3:09:2b:42:68:1d:22:33:
3e:36:47:d1:a3:46:9c:93:80:66:fe:72:6e:ee:5d:
dc:e9:c0:4c:28:f2:96:c9:43:f5:9c:b9:e1:ce:4c:
fd:82:d7:5d:0d:43:28:1f:9f:0d:30:c4:0b:4a:bb:
76:bb:cc:cc:fe:69:60:22:17:a9:c7:59:64:f4:eb:
a8:f9:58:27:69:3a:59:5d:6e:2f:8e:9c:ce:7c:24:
9a:c0:a1:69:b2:c2:e4:da:38:c1:03:e6:8d:85:a2:
42:2d:24:d2:b8:06:f2:6f:19:14:38:6b:49:c9:b9:
b8:64:4a:da:fb:7e:f9:c8:fc:d4:2c:f2:bf:57:d5:
6a:80:ce:92:90:a2:4f:51:12:86:48:3b:c8:ae:41:
b3:fe:6e:e4:40:93:13:17:bf:54:c1:2d:9e:85:65:
ce:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:4C:7C:A8:AB:DD:15:15:7C:F3:0F:5A:55:79:00:06:84:89:4A:0A
X509v3 Authority Key Identifier:
keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:58:2c:02:03:87:16:0c:77:61:fb:76:83:86:6e:9c:50:17:
55:f1:7e:80:3c:c2:9f:ad:54:b1:00:e0:30:1c:64:eb:c6:e3:
ea:d0:d4:af:fc:d2:e8:b1:af:0a:08:32:ea:9d:e1:35:c8:03:
c7:66:58:85:7c:99:3a:df:96:ac:d8:c6:a7:b2:5a:52:16:a4:
d5:b4:71:d3:c8:a7:27:a8:72:7f:13:58:ce:da:b1:a2:5e:01:
25:77:12:8e:6a:e6:ac:9e:49:27:59:45:8a:ae:1d:a0:bf:74:
3f:7d:78:40:d4:1d:37:ec:0c:3d:9a:45:76:3e:bb:3d:6f:8f:
df:44:99:08:8d:ba:33:e7:77:6f:32:58:78:58:93:29:cc:f1:
2c:2c:5e:67:ee:2e:1f:16:54:10:bb:5d:20:b2:4b:f8:e6:cf:
fc:2f:a1:c7:8c:82:b2:ff:03:3e:c0:0a:20:3e:68:f1:c7:63:
c4:a6:80:4a:15:a5:55:ef:21:61:82:90:5a:65:41:dc:cc:1c:
f6:ab:2f:ee:c9:e9:4b:ff:58:86:7d:97:23:fb:3e:92:44:3e:
18:43:c9:fa:81:f2:72:40:8c:88:af:5f:34:0a:66:a2:a3:6f:
6f:11:27:c9:2f:70:7e:6f:16:d0:ce:e6:da:9e:fd:3b:1d:cc:
c8:6c:25:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:15:54 2026 by rpki-client