Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
File: K67n6kgtYqZxBj6sg3ia8585C3Q.mft (raw, json)
Hash identifier: zhGnaMUXry7f6smPFSBpv89o2loDg4aFx95ZHbAs60A=
Subject key identifier: 8E:E8:3A:E5:6B:52:13:3E:D4:F0:CC:5F:0B:97:33:8A:20:82:FE:C8
Authority key identifier: 2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74
Certificate issuer: /CN=2baee7ea482d62a671063eac83789af39f390b74
Certificate serial: 019D9CD1957114D421EDBD125D7A3E822CCD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
Manifest number: 0A81
Signing time: Fri 17 Apr 2026 19:01:14 +0000
Manifest this update: Fri 17 Apr 2026 19:01:14 +0000
Manifest next update: Sat 18 Apr 2026 19:01:14 +0000
Files and hashes: 1: 57OxBTF4X7lyr00PQWTLC_7l0LM.roa (hash: Qu9Cp0fGN2f6UG2Bu1+rVSKBmfLjLGmUIUXyj9DRqEM=)
2: K67n6kgtYqZxBj6sg3ia8585C3Q.crl (hash: pb6ubNj65Til4+AnooYsDEoKu1cWc4hny5UnH1wr1TU=)
3: wLKTHNAi_SKjDTW74BcesnX-WQQ.asa (hash: j48nzI6JGxErzvih/a7iFeEhyD9lYuYhcQYuQ7FCZgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:d1:95:71:14:d4:21:ed:bd:12:5d:7a:3e:82:2c:cd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2baee7ea482d62a671063eac83789af39f390b74
Validity
Not Before: Apr 17 19:01:14 2026 GMT
Not After : Apr 18 19:01:14 2026 GMT
Subject: CN=8ee83ae56b52133ed4f0cc5f0b97338a2082fec8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:84:03:25:4a:6f:1a:db:8c:4e:4e:f0:47:4a:
6b:7d:86:2d:17:19:01:35:79:8f:05:c5:14:75:26:
a2:46:72:4a:f2:b3:66:1e:11:8c:ae:32:16:9b:be:
9b:51:e9:c3:28:7d:9c:bc:6d:e0:21:0a:05:ad:f0:
29:f1:e1:54:ad:2d:44:ac:da:42:72:d5:d4:51:fa:
fa:85:96:0f:93:7a:53:0e:f8:5c:b4:67:87:e4:ca:
0b:80:dc:80:96:3c:a8:cd:4a:1e:ae:c3:7b:c0:cf:
d1:3e:d2:d5:1f:7f:ce:a6:ea:cf:dc:03:2e:83:75:
c0:c4:1c:a3:02:89:76:bf:51:24:9c:af:dc:00:4a:
85:62:b4:f1:2a:b7:e7:08:e0:15:7b:fd:1a:d6:1b:
42:1b:79:88:fa:38:51:ba:c3:5c:05:d5:15:e0:66:
aa:bb:b1:47:67:39:21:df:c4:29:ff:f3:b3:5c:ab:
49:ad:e0:72:2c:2c:25:36:1a:97:c9:b8:2d:1b:67:
5a:99:97:b8:d2:0f:b8:dd:65:d2:f8:1c:07:38:1c:
d3:75:05:e9:7e:65:c1:bf:6b:33:fc:aa:35:1d:22:
cf:76:50:d4:a0:be:bb:62:e7:27:6a:19:f9:43:cf:
3c:6f:78:87:ff:ff:7b:99:c4:54:f4:6a:81:b1:29:
5b:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:E8:3A:E5:6B:52:13:3E:D4:F0:CC:5F:0B:97:33:8A:20:82:FE:C8
X509v3 Authority Key Identifier:
keyid:2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:df:bb:65:c0:db:fc:1f:40:3d:68:f2:78:7e:36:93:9e:4c:
13:a1:05:2d:c9:2a:1d:93:13:21:b3:bd:ae:c6:cf:6c:a0:11:
5b:63:cb:ae:b1:00:8c:79:23:72:73:35:f4:bd:0f:1c:49:42:
4c:1e:19:02:a6:69:c5:45:9f:b4:48:f6:dc:95:2d:de:12:c5:
8a:e9:6b:25:1b:df:e7:eb:d8:48:7a:7a:f5:13:33:b6:95:6f:
1a:c8:d1:80:0e:55:25:df:ae:56:8f:67:69:08:21:7b:7e:ab:
bb:4c:37:a5:ff:63:6a:d1:e5:05:7a:71:e1:84:47:0f:de:d9:
1b:39:44:be:6e:9f:9f:bf:93:fe:33:cf:de:ca:e3:5b:7e:b9:
96:4d:91:c9:46:28:80:dd:25:c8:ed:e0:a4:79:c2:26:b5:06:
a7:1f:4e:e6:52:26:ab:fb:c4:59:ba:5c:6c:3a:e7:6e:d2:91:
37:7d:f3:10:fe:7d:58:9d:05:fe:fb:ae:60:48:4d:be:57:73:
75:00:d9:d2:14:1a:5f:3c:c7:b1:e1:6c:2b:52:d2:3d:f8:5b:
66:6d:c2:44:f6:dd:a4:a8:13:c4:f2:e9:11:32:85:3d:a8:e5:
74:65:6b:1e:64:38:20:bc:54:fa:33:0e:52:cc:31:3f:12:2f:
db:8b:7d:8a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2c0ZVxFNQh7b0SXXo+gizNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYWVlN2VhNDgyZDYyYTY3MTA2M2VhYzgzNzg5YWYzOWYz
OTBiNzQwHhcNMjYwNDE3MTkwMTE0WhcNMjYwNDE4MTkwMTE0WjAzMTEwLwYDVQQD
Eyg4ZWU4M2FlNTZiNTIxMzNlZDRmMGNjNWYwYjk3MzM4YTIwODJmZWM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy4QDJUpvGtuMTk7wR0prfYYtFxkB
NXmPBcUUdSaiRnJK8rNmHhGMrjIWm76bUenDKH2cvG3gIQoFrfAp8eFUrS1ErNpC
ctXUUfr6hZYPk3pTDvhctGeH5MoLgNyAljyozUoersN7wM/RPtLVH3/OpurP3AMu
g3XAxByjAol2v1EknK/cAEqFYrTxKrfnCOAVe/0a1htCG3mI+jhRusNcBdUV4Gaq
u7FHZzkh38Qp//OzXKtJreByLCwlNhqXybgtG2damZe40g+43WXS+BwHOBzTdQXp
fmXBv2sz/Ko1HSLPdlDUoL67Yucnahn5Q888b3iH//97mcRU9GqBsSlbuwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI7oOuVrUhM+1PDMXwuXM4oggv7IMB8GA1UdIwQY
MBaAFCuu5+pILWKmcQY+rIN4mvOfOQt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQt
NzUyMWFmMWNlMjU5LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQtNzUyMWFmMWNlMjU5
LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAd+7ZcDb
/B9APWjyeH42k55ME6EFLckqHZMTIbO9rsbPbKARW2PLrrEAjHkjcnM19L0PHElC
TB4ZAqZpxUWftEj23JUt3hLFiulrJRvf5+vYSHp69RMztpVvGsjRgA5VJd+uVo9n
aQghe36ru0w3pf9jatHlBXpx4YRHD97ZGzlEvm6fn7+T/jPP3srjW365lk2RyUYo
gN0lyO3gpHnCJrUGpx9O5lImq/vEWbpcbDrnbtKRN33zEP59WJ0F/vuuYEhNvldz
dQDZ0hQaXzzHseFsK1LSPfhbZm3CRPbdpKgTxPLpETKFPajldGVrHmQ4ILxU+jMO
UswxPxIv24t9ig==
-----END CERTIFICATE-----
Generated at Fri Apr 17 23:45:14 2026 by rpki-client