Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: /bufvrwjp19GzwBDYFwTmN8hrBcOb/7wOfHKqwgt07I=
Subject key identifier: 20:8F:C4:82:A4:E0:2E:F9:DB:E4:E5:3C:2C:D2:58:ED:A3:57:13:82
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 019EC1EE05192E47552F168D69210FB34BEE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0DA7
Signing time: Sat 13 Jun 2026 17:01:01 +0000
Manifest this update: Sat 13 Jun 2026 17:01:01 +0000
Manifest next update: Sun 14 Jun 2026 17:01:01 +0000
Files and hashes: 1: 4VL55TR7n8zY5sjEwyy-tDqTfgs.roa (hash: 7BDvUnPmZt5rM/QuBJhcT4U2nlJB/FKzg2OukOPZ9uQ=)
2: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: rFv3HXl0PHPSD7ixlQCmYJpHoITZrL/6CrZoHVtEbas=)
3: KnCfg8nTQsfpTcM_cEW8Uzz8x5M.roa (hash: 2VYLtBiQmGKXrUCSv3SxyNnrS3C6FcV2aiRtsHxSXSI=)
4: arOEcwZhUNm3Hj36Uwng_wKeV9E.roa (hash: B20xitz9JymuHol/jxxjXdJ6lXpi2xW/yyUd53yf3d8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:05:19:2e:47:55:2f:16:8d:69:21:0f:b3:4b:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Jun 13 17:01:01 2026 GMT
Not After : Jun 14 17:01:01 2026 GMT
Subject: CN=208fc482a4e02ef9dbe4e53c2cd258eda3571382
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:ee:eb:42:0c:a2:83:8c:0e:bf:ee:06:6d:6f:
03:62:9c:6b:09:97:e3:0b:aa:c6:36:12:bc:e2:70:
a3:9e:95:3d:fa:55:52:5c:28:d7:c1:8f:85:1c:3b:
68:e4:70:c9:ee:9e:db:3e:c1:6c:6a:2f:f3:6e:c8:
8e:35:4b:e4:19:fb:6d:aa:7d:0f:f4:d0:11:85:ed:
6f:5b:e4:6b:11:c8:c9:fa:da:2d:9e:45:8b:d8:b3:
6d:7f:b3:bd:93:12:42:d4:5c:54:6d:1c:5e:b9:69:
d6:dd:c9:92:c6:c7:2a:cb:2a:0c:67:45:98:fb:fa:
08:4a:b0:ac:a8:d8:f1:f7:13:27:5a:d5:b5:da:1e:
ea:b1:42:a3:a1:65:a1:ba:77:71:88:be:c5:5c:5f:
a9:10:77:b6:e7:51:2b:f5:33:d2:00:83:5d:d8:7e:
ee:78:bd:b0:11:8f:10:d5:f8:6e:ba:77:9f:35:40:
18:c9:b6:b3:f6:81:40:40:44:b5:74:e7:0c:e8:6b:
7b:9f:a4:e0:7a:3d:59:93:24:b1:fa:df:b7:05:b0:
8e:08:dd:25:c0:ea:a7:c4:45:c1:84:d4:22:38:81:
6b:8f:4a:87:9a:f7:07:19:68:4d:f0:b2:e1:38:0a:
ca:ce:06:1b:9c:05:f6:98:b3:2c:b5:95:06:f4:49:
5f:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:8F:C4:82:A4:E0:2E:F9:DB:E4:E5:3C:2C:D2:58:ED:A3:57:13:82
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a0:b2:23:1b:04:12:1e:59:4b:aa:50:1a:22:06:78:11:05:
5f:48:b2:a5:8a:16:ac:38:1b:77:1c:9c:33:c8:20:21:e2:ce:
8a:4e:45:77:f5:e3:c2:62:5a:47:c5:f6:dd:8d:58:1e:eb:6e:
ca:df:f8:6d:fb:23:75:4e:82:eb:41:24:40:14:86:96:49:03:
e7:8c:f9:b0:96:42:62:a4:f8:c9:20:8f:c4:ec:0a:39:58:72:
69:c5:b1:71:b7:33:ee:0e:3f:61:a5:34:7d:7d:9f:d5:a3:fd:
c5:c7:83:ed:07:a0:21:0b:c5:29:c4:14:2c:35:8e:81:c9:7c:
bd:ce:f1:1e:ed:94:fc:e2:d1:ba:b2:de:6a:82:1b:f2:0b:8f:
5b:c1:3e:0d:6b:0d:95:ad:77:17:ac:86:b7:2b:99:5c:f5:3a:
46:89:37:25:9c:30:f1:7a:95:2b:f9:f8:7f:2f:57:87:67:1e:
8f:b3:21:f0:ec:68:1d:8c:eb:81:96:0b:03:d4:1d:8f:bb:57:
a6:f3:fc:37:6a:4d:60:64:d3:00:be:a9:d4:65:70:12:35:3c:
1f:09:76:14:de:3e:78:fb:c7:9b:bf:bf:b8:f7:b1:ef:00:48:
3c:3a:1c:dc:ad:f6:d6:71:12:c4:53:af:43:84:1a:4c:2e:98:
f9:e1:9b:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:40:08 2026 by rpki-client