Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: 5fSyG3b1u07VNfLT0cFaPkRgav5F16Crulx6KoiExBY=
Subject key identifier: 95:29:FA:DB:82:16:DD:86:EC:44:06:8A:C0:C9:EA:4E:B9:02:27:BC
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 019EBF5A81A592F00D0B4A0841558996868C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 195F
Signing time: Sat 13 Jun 2026 05:00:40 +0000
Manifest this update: Sat 13 Jun 2026 05:00:40 +0000
Manifest next update: Sun 14 Jun 2026 05:00:40 +0000
Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: 0aHmk8sx3J7nntR8ykfVWiE3FIp9GYK4pM5GGCsl1t0=)
2: Ty9RnsnK3EDnysBvDikYp04oggo.roa (hash: oWmmAPgiMnRBuVQF4Wy8CU51nd17TmIJOxZ3k8HDTIo=)
3: VmNdh6laZxyVCC_g82mHnoN0sjg.roa (hash: fCIZoEHtubiL+1CEYbmHMAzOgcDhgRWMLUT6hfUtnUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5a:81:a5:92:f0:0d:0b:4a:08:41:55:89:96:86:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: Jun 13 05:00:40 2026 GMT
Not After : Jun 14 05:00:40 2026 GMT
Subject: CN=9529fadb8216dd86ec44068ac0c9ea4eb90227bc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:06:a0:9a:70:64:f0:73:58:e6:96:9f:f8:a7:
88:ee:7b:34:3d:be:24:4e:dd:c4:cf:bb:f5:09:a7:
d1:2c:4c:53:b2:47:1b:b4:46:d4:05:52:20:6d:2a:
41:6f:6a:e8:36:79:81:2d:e1:12:f1:63:97:5e:f5:
9b:09:f8:88:40:ad:de:d4:9e:4a:b7:4d:9f:35:15:
fc:73:29:63:74:62:32:ba:9a:fd:d4:c2:0e:1a:84:
51:de:9b:38:29:d1:0e:e7:1f:56:55:14:58:f7:25:
a5:16:c1:28:38:60:81:a2:51:f9:5a:4f:7e:09:47:
13:6f:20:71:15:c9:39:0d:0c:02:d8:21:d8:cc:f8:
6c:d3:6c:6b:fe:80:d6:f5:6b:77:a6:56:7b:c8:a0:
a4:03:19:31:61:54:43:48:9d:d2:be:d8:38:84:f4:
27:00:34:5a:04:a7:6d:26:a8:6f:09:35:9f:55:58:
61:10:11:83:b9:3e:c5:fe:cf:bf:a8:96:1a:ff:ec:
89:91:03:27:af:ea:8c:b7:5c:ec:38:a7:79:a7:6e:
11:b5:f2:88:eb:89:ab:ba:96:f9:8e:a3:bc:1a:36:
17:49:29:6b:81:12:c0:4f:56:fa:d4:69:b6:cf:81:
96:f3:b0:2f:d5:78:db:b2:58:59:ac:94:56:c5:4c:
0d:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:29:FA:DB:82:16:DD:86:EC:44:06:8A:C0:C9:EA:4E:B9:02:27:BC
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:3d:07:1c:45:7e:25:3e:d4:fc:a8:ff:d7:bc:c1:a3:13:c9:
4e:b8:b6:b0:92:93:f3:a3:c2:2c:0d:43:70:74:d2:22:80:dc:
39:d8:ca:f7:c1:38:7f:c5:52:05:82:0a:0b:d2:2d:aa:f8:70:
1f:52:28:4c:58:0f:ad:49:d9:05:ae:77:6e:bd:05:db:ab:12:
b3:ad:69:89:32:0a:07:55:b5:93:ef:b1:46:a4:b5:d2:23:be:
05:ac:62:48:de:45:30:2c:b1:1c:3d:8c:c0:e5:e8:02:ba:3e:
a4:bf:32:63:27:64:4d:55:45:cb:6c:fa:12:47:dc:1a:c5:5e:
d7:ed:d2:9b:09:e5:56:e5:d4:29:3d:f8:34:83:aa:35:1e:99:
08:da:06:1d:b5:6a:9a:4a:d6:ae:62:84:8c:b2:e9:e2:f5:97:
bb:6f:d4:ac:fb:ec:96:df:f4:f2:98:12:8f:47:4f:df:a9:b2:
cb:97:47:9b:42:b2:14:a5:6d:7e:6a:6f:bb:0b:5e:fd:92:5a:
f6:7d:3c:e9:6b:b9:7f:31:b4:0a:20:86:31:35:27:c9:9d:83:
dd:d3:e6:c5:a2:73:c7:5c:a6:3b:c3:06:98:b1:71:fd:75:5f:
38:37:e6:0a:c3:6f:b7:fe:dd:91:44:83:5a:4b:3f:d2:05:38:
79:25:87:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 07:23:11 2026 by rpki-client