Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: 2cLwRGZbxnEGyztAZOsBxXaqbfXGbLcAn19gWsHOd/0=
Subject key identifier: 94:50:AC:0D:E6:63:15:C7:5A:3B:C7:EE:06:08:85:EF:71:FC:0F:4F
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 019DA378EF0AF3EE8965B239AD33895007B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 0984
Signing time: Sun 19 Apr 2026 02:01:44 +0000
Manifest this update: Sun 19 Apr 2026 02:01:44 +0000
Manifest next update: Mon 20 Apr 2026 02:01:44 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: m49Zuk1tN0FpJlmNSCFyWsurTWa14RPuSc6tDglU4Yw=)
2: yJzTIcAhRcC6ZEzxWsi_CH0k6Sk.roa (hash: YVqSm3FfhpaemLgcMqrRSZQk3gYIEbjzjgNvnaJ9X18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 02:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:78:ef:0a:f3:ee:89:65:b2:39:ad:33:89:50:07:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Apr 19 02:01:44 2026 GMT
Not After : Apr 20 02:01:44 2026 GMT
Subject: CN=9450ac0de66315c75a3bc7ee060885ef71fc0f4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:d5:76:49:c9:b3:53:b4:9e:fc:77:be:e3:b5:
29:87:29:fe:9c:65:fa:53:17:f8:60:26:98:93:1e:
c3:e6:b8:6b:e4:1d:5f:cc:5d:99:2b:40:e3:0b:5c:
be:f0:6f:7b:e2:15:e0:1e:bd:b3:6e:57:8c:9e:3d:
eb:56:fd:4f:c5:b7:bb:f4:e2:2b:91:be:77:1c:5c:
f2:33:7d:da:63:cd:df:16:76:9e:88:b8:af:eb:ef:
f7:37:ee:d2:e7:bd:70:09:70:be:fd:db:1f:7f:41:
e0:0c:c1:85:be:0b:89:47:d4:cb:85:03:58:06:9f:
93:ce:5d:40:a8:95:a6:68:9e:e1:4b:89:a6:29:15:
0c:1f:1a:84:20:53:2a:08:7e:bd:e5:4c:2e:4d:bb:
c8:69:55:af:2d:10:bb:bb:ba:ca:00:e3:78:9f:32:
9a:d7:6a:d1:cc:42:40:e2:28:e9:2d:07:12:68:bb:
3f:3b:f9:50:84:13:2f:e0:66:af:f2:47:0c:6d:59:
83:57:24:ae:c8:a7:c9:b0:71:60:18:32:73:7a:b5:
29:9e:91:e5:29:1e:cb:fb:16:ec:80:b0:b8:37:0e:
3b:34:f7:0b:95:df:f6:ad:7f:20:13:5c:db:a7:45:
0c:a6:1c:e7:f4:68:fe:93:f5:87:ed:99:af:69:74:
58:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:50:AC:0D:E6:63:15:C7:5A:3B:C7:EE:06:08:85:EF:71:FC:0F:4F
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:a0:ec:62:b4:cc:2c:f8:af:dd:28:eb:88:08:3c:4c:71:ca:
9a:f5:a2:25:e9:db:01:48:d0:cf:b5:39:1d:b6:f0:8e:55:c7:
9b:09:36:83:1e:2a:7d:3c:66:59:a9:ea:31:89:c8:bb:22:1f:
8d:a2:08:96:1d:a3:10:c4:29:e6:39:5d:e7:74:60:55:03:9e:
f5:0a:1a:b4:26:fb:00:55:7b:91:62:9b:e1:7e:53:73:c8:1f:
82:30:a3:36:56:21:12:35:91:2e:80:bf:56:a7:ff:ca:08:cc:
56:7a:03:38:f2:80:28:a7:f6:0d:ee:23:25:17:36:e3:7a:28:
a2:7b:d2:d0:3d:dc:4d:03:70:23:03:eb:e0:cb:58:59:70:14:
fb:b3:2d:16:f9:82:1e:71:31:5c:b7:d3:74:7c:ee:5f:a0:eb:
8f:20:c0:58:12:d9:69:f3:74:4c:38:29:2d:16:be:ce:4b:68:
dc:b8:e2:87:81:49:f6:ca:cc:e7:8d:42:3d:0a:72:36:25:ed:
da:50:b9:72:f0:2a:7d:33:c2:06:bc:77:d1:41:eb:40:c4:4d:
13:fa:cc:30:62:d9:4d:3b:e6:42:18:83:9d:94:67:21:3e:eb:
87:cd:37:60:a3:69:f0:bb:90:33:37:1c:7c:06:97:65:a6:53:
e9:7d:65:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 10:24:37 2026 by rpki-client