Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: kkjJ0SEO4WR2po2odCVUabPpBDeU4orfvqi722L67g4=
Subject key identifier: C5:BC:41:0F:8A:70:C1:0A:ED:F6:D5:1A:11:E3:C9:59:A5:53:40:AB
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 019CAE6C1B857CBEFB2E789CCDFF2F02A116
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 12:00:46 +0000
Manifest this update: Mon 02 Mar 2026 12:00:46 +0000
Manifest next update: Tue 03 Mar 2026 12:00:46 +0000
Files and hashes: 1: Mj7AFWu1EqZHOmVJMKOMm7PDVAc.roa (hash: GRpVbHiFHaOYOCNz4Rrq2ZkYp/ciepwMIDmQKZdm5EU=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: spQ0vLowg3rjRQwzEnCkbYAifeJOguWAA98C/bFmOCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:1b:85:7c:be:fb:2e:78:9c:cd:ff:2f:02:a1:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Mar 2 12:00:46 2026 GMT
Not After : Mar 3 12:00:46 2026 GMT
Subject: CN=c5bc410f8a70c10aedf6d51a11e3c959a55340ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:a0:8b:35:29:93:a9:ab:25:0b:0f:86:40:4a:
7b:22:e9:3d:fe:df:7b:22:6a:d6:cb:8e:b3:3d:2e:
73:44:a3:e2:7f:87:40:60:e9:1d:87:95:76:ff:1a:
85:30:01:87:6e:d8:6c:f2:eb:a4:74:56:d8:21:ea:
07:3a:3a:8a:65:d3:eb:09:29:4f:0a:27:a7:f2:c1:
1a:fe:b5:2d:09:fb:1b:f3:b6:3d:fb:b2:d4:7c:f3:
35:48:c2:f4:ca:8c:80:fb:1d:b0:6a:45:b3:bf:22:
cf:7d:31:7a:0e:34:fb:e4:4a:2b:02:9e:37:75:47:
f9:89:39:76:42:8d:86:c6:35:c1:89:cf:28:41:46:
66:bf:ed:43:98:89:fa:5b:6e:e7:ee:ae:b1:45:3e:
98:ff:8d:14:77:80:fb:c3:01:7f:51:50:5b:a1:7c:
ae:c6:64:c8:5d:30:26:41:ce:89:54:7c:35:94:87:
c6:b0:65:94:33:d5:b7:4c:2a:b5:38:a0:9c:aa:8f:
21:58:b0:af:ed:0b:52:37:4c:60:ef:67:d1:cb:0b:
13:ac:32:56:79:9c:ed:42:ec:31:f4:80:27:22:18:
33:60:1e:a2:ba:6d:09:f1:d4:30:cc:6d:e2:55:00:
f6:a5:f8:a1:c6:5c:8b:44:5e:10:9a:60:24:b9:1f:
98:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:BC:41:0F:8A:70:C1:0A:ED:F6:D5:1A:11:E3:C9:59:A5:53:40:AB
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:75:4f:5e:16:5c:77:fc:55:04:1d:fc:56:e0:17:7b:90:75:
82:86:0a:75:ee:08:0d:b9:9d:e6:c9:63:57:bc:43:49:4e:25:
b6:b3:d0:f9:8d:ea:7b:4c:17:2d:b0:bb:30:51:49:f2:c3:6b:
af:bc:0d:81:2f:2e:3b:16:25:0f:a5:e4:42:c3:a7:0e:ed:5f:
e6:9b:e0:64:87:a0:53:05:92:d3:c3:ad:16:2b:b6:d5:61:2f:
ad:96:e2:d2:50:39:00:b7:e7:7b:ed:69:0a:81:99:59:47:dd:
5c:2e:21:07:31:50:8f:12:d3:d5:ab:76:36:0e:63:ff:a0:7f:
24:11:eb:fb:02:8d:70:49:b9:6e:b8:ea:b9:28:e1:0d:91:5a:
9a:1a:c1:ff:d7:ad:a8:b2:60:84:aa:f4:24:0f:06:dd:6e:7c:
f6:ba:60:be:fb:bc:46:47:28:5a:2c:e8:73:9c:3a:3e:64:42:
92:d2:10:4b:c1:b7:cf:30:79:30:38:15:12:97:f9:ce:f3:fb:
a9:e3:64:2d:69:25:fc:1f:dd:29:ef:23:7d:5e:dc:7e:40:11:
16:1b:4a:ca:36:88:4d:06:59:3e:d7:51:c6:a2:c4:74:df:e0:
4d:c3:3f:d0:3c:e5:37:75:2f:df:f2:a3:c3:57:da:16:8e:c8:
92:9d:c3:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:12:19 2026 by rpki-client