Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
File: kYKD14XMiO-FIIYqwWHye1YwvBQ.mft (raw, json)
Hash identifier: 2a36i1o91gkFXcK/E1R8tGM5Ui8AXk9CfZrERx5u4xk=
Subject key identifier: 4D:51:BD:FD:C0:37:BF:A6:1E:DC:47:A0:EB:22:E0:8A:13:9F:5E:58
Authority key identifier: 91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
Certificate issuer: /CN=918283d785cc88ef8520862ac161f27b5630bc14
Certificate serial: 019D9BF51453DDFFFFE45B21698344601004
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 15:00:23 +0000
Manifest this update: Fri 17 Apr 2026 15:00:23 +0000
Manifest next update: Sat 18 Apr 2026 15:00:23 +0000
Files and hashes: 1: Mj7AFWu1EqZHOmVJMKOMm7PDVAc.roa (hash: GRpVbHiFHaOYOCNz4Rrq2ZkYp/ciepwMIDmQKZdm5EU=)
2: kYKD14XMiO-FIIYqwWHye1YwvBQ.crl (hash: QbFjNIshVXEGi/hV9RUZk5+ZlQRdWhfQ6U60twBRa3k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 15:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:f5:14:53:dd:ff:ff:e4:5b:21:69:83:44:60:10:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918283d785cc88ef8520862ac161f27b5630bc14
Validity
Not Before: Apr 17 15:00:23 2026 GMT
Not After : Apr 18 15:00:23 2026 GMT
Subject: CN=4d51bdfdc037bfa61edc47a0eb22e08a139f5e58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:b5:a7:7f:44:b0:65:18:1d:d4:92:dd:c2:b1:
af:b8:33:d4:72:a1:5e:eb:13:33:2c:e3:2c:a8:b2:
e2:c6:a7:6d:3f:fd:88:c9:b4:f2:0b:dc:2f:5b:f8:
e5:e5:0d:1b:a2:8f:94:e9:6a:34:c4:6e:b6:01:a3:
14:93:5e:8a:37:85:dc:c8:9c:44:ab:80:6e:f0:a9:
55:c7:f5:52:e9:50:46:36:02:a0:ba:5b:e7:92:a2:
89:0b:62:9f:23:d1:4c:06:0a:13:9d:d9:db:e6:e5:
e5:07:65:16:02:28:7e:c5:84:c4:6f:42:2a:d9:09:
c2:b0:1b:28:36:bc:ee:19:54:38:be:49:a1:86:8a:
51:74:75:fe:08:7a:7d:37:24:eb:ec:62:9a:9d:fa:
37:a3:bc:b6:ea:12:ea:5c:a5:d5:27:30:49:73:07:
0d:54:1e:92:c8:1a:3d:8b:8b:5c:b3:57:04:aa:4a:
5e:f0:e6:9d:2b:cc:43:f6:46:86:a6:cb:b8:40:03:
d0:55:e5:cb:6a:53:8b:79:34:55:e4:5a:ca:1a:27:
8b:87:04:4c:36:cd:d0:9f:d4:36:d8:ec:86:6a:bb:
92:71:32:3a:5d:8b:07:fe:3e:b3:8c:88:89:b4:0a:
d3:07:46:2a:ed:8e:10:44:a8:a8:a5:7f:19:2f:5f:
df:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:51:BD:FD:C0:37:BF:A6:1E:DC:47:A0:EB:22:E0:8A:13:9F:5E:58
X509v3 Authority Key Identifier:
keyid:91:82:83:D7:85:CC:88:EF:85:20:86:2A:C1:61:F2:7B:56:30:BC:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYKD14XMiO-FIIYqwWHye1YwvBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/cca476-a3c8-4a65-8c0c-f32260e05700/1/kYKD14XMiO-FIIYqwWHye1YwvBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:1a:be:d3:5f:26:0f:dd:be:78:69:a2:7f:af:71:29:10:d0:
cf:5b:bf:f2:0f:c3:e8:35:ba:e8:c7:52:19:3d:f3:07:11:82:
f4:45:cd:40:cd:f5:86:b4:df:c7:07:9a:7f:01:bc:a3:d1:0e:
df:08:f1:ce:a2:b5:5b:66:ec:bb:8d:29:27:b4:ee:00:c3:6a:
0d:9f:90:55:e8:c5:5c:7c:85:e2:9e:4a:46:34:0f:2d:9c:b3:
e7:9e:49:fc:0f:c0:c5:af:1b:3e:2e:10:2f:66:f7:8e:f1:70:
ad:3a:d4:72:21:45:72:31:2a:73:b3:ed:d5:af:c2:2d:5c:f0:
c2:0c:73:7e:da:33:0f:4c:cf:3a:58:af:f9:80:c2:45:d4:fe:
50:74:84:3a:e2:0b:1f:6e:cd:86:97:10:fd:b7:62:9f:3d:bf:
30:a1:4f:c5:de:70:de:d3:12:2f:11:04:be:2c:49:e6:b6:79:
57:00:bf:5f:28:3c:84:6e:e7:c5:10:b6:ca:e5:32:9c:23:ca:
8d:b6:11:20:bd:bc:5d:6f:d9:b6:10:66:95:58:04:f1:62:34:
15:6b:9f:b7:52:ba:cc:2a:f8:bf:e0:f5:f4:50:f9:2d:52:ad:
e2:20:be:c6:14:52:fb:7b:25:fc:01:34:0b:de:ae:0c:1e:25:
96:b8:a9:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 00:06:41 2026 by rpki-client