Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: kr+5qQnOH59nLksYAwyBhsIjlQRq6AdvO8Dyw3d2tpg=
Subject key identifier: B0:25:F0:24:3E:95:9B:2A:BA:5A:5E:E1:EB:9B:5C:BE:93:18:B2:ED
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019EBEB63967DC8B416371B7FB018256BABE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 08CF
Signing time: Sat 13 Jun 2026 02:01:13 +0000
Manifest this update: Sat 13 Jun 2026 02:01:13 +0000
Manifest next update: Sun 14 Jun 2026 02:01:13 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: h+eJ9dgXNGTgdorW/6Xekf0C6XBrxuytpIK2bSIpPzY=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:b6:39:67:dc:8b:41:63:71:b7:fb:01:82:56:ba:be
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Jun 13 02:01:13 2026 GMT
Not After : Jun 14 02:01:13 2026 GMT
Subject: CN=b025f0243e959b2aba5a5ee1eb9b5cbe9318b2ed
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:84:29:e4:61:ec:f4:c6:f5:54:5f:52:91:d9:75:
3f:7a:51:3c:41:64:1a:a5:31:ca:26:48:f7:94:1a:
bd:68:89:3f:c6:35:06:18:d9:27:b6:f7:02:a0:c8:
e9:d7:42:d3:7e:9b:6a:1a:86:75:d7:a0:15:5e:77:
10:55:af:ad:d4:49:f0:25:b2:09:a5:5b:6a:df:ac:
9a:de:ce:0d:22:4a:54:23:80:21:16:2a:08:3f:dc:
94:87:62:0a:3b:fd:78:c1:80:91:7c:b7:64:cd:7f:
d3:13:c2:cf:2c:13:ea:63:f9:1d:b4:8a:d1:0a:e5:
50:d4:bb:1a:02:e3:18:18:27:f4:11:9e:26:01:f2:
6e:8b:fe:a6:df:0e:01:fd:26:3f:b8:a8:f8:74:13:
3f:c9:75:48:80:09:0a:36:dc:41:f4:a3:e3:24:5b:
c6:5a:96:0c:92:36:b1:a7:26:40:33:bb:0f:c0:a9:
ec:ea:a2:eb:d7:56:13:a4:83:7f:c0:b6:c9:17:e0:
65:06:bb:7d:dd:4f:07:19:10:5c:59:5d:88:df:4c:
e7:35:d6:93:f9:65:4f:d1:a7:9e:4f:a0:10:25:3e:
79:ef:2c:e5:a2:e1:60:37:26:05:5e:f5:9b:14:c0:
b8:77:29:3f:2e:f2:cc:a7:c1:b1:73:b8:c6:ff:1b:
3c:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:25:F0:24:3E:95:9B:2A:BA:5A:5E:E1:EB:9B:5C:BE:93:18:B2:ED
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:57:aa:17:f5:ff:e6:d3:3a:fd:e2:8a:43:62:1d:d0:f7:9f:
c9:99:a8:5e:c2:70:84:e5:e4:00:70:59:fc:a7:57:86:ae:16:
f2:76:a3:8a:51:63:bd:a2:e4:7a:a0:73:f4:1b:67:c5:ef:98:
fe:65:08:c9:b8:cc:3e:cc:01:43:12:9f:43:cd:cf:a3:a3:ab:
b4:44:e6:d3:9f:7a:b2:ae:ab:07:e5:97:95:b3:8d:43:13:57:
40:05:c3:c7:2a:b1:c6:82:9f:9c:24:54:d6:b3:c8:52:99:50:
b3:3d:06:c0:8a:aa:ef:7e:d6:e1:91:cf:bc:b3:07:b0:ef:e9:
7e:cd:db:72:60:3a:6d:a3:c5:02:ba:eb:17:cd:2b:23:67:96:
26:0d:ea:fd:4b:c0:07:00:8a:8c:ba:a0:e6:95:ab:f0:7d:b5:
81:c5:fa:6f:52:55:2f:39:e5:00:6b:c7:65:7d:ad:5e:86:a4:
e9:af:c7:b3:d5:43:fc:6c:84:a0:49:66:6d:12:c3:4c:31:5e:
7d:f4:b2:ef:58:64:cc:c4:fe:d2:a1:e2:7e:5d:11:39:36:2c:
06:d4:c2:bc:2b:a2:d6:54:fc:d7:33:25:98:f6:99:a5:a7:ac:
9e:73:91:bb:d0:83:30:7f:d7:aa:f0:53:39:75:23:15:ac:43:
b5:2c:5d:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:50:57 2026 by rpki-client