Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
File: K6OJMzWM9mz_O2zj97wlF_3UdCE.mft (raw, json)
Hash identifier: T/YxSqbiBBtJudV/tO8n2NHAKzou2PLXLa9gk0wlpuw=
Subject key identifier: 5B:FE:C2:35:71:DA:BF:24:D7:51:4F:4C:DA:CD:21:8B:66:34:75:05
Authority key identifier: 2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21
Certificate issuer: /CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421
Certificate serial: 019D992B3DC5612FE343B7BC7AE957592A8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
Manifest number: 0A37
Signing time: Fri 17 Apr 2026 02:00:40 +0000
Manifest this update: Fri 17 Apr 2026 02:00:40 +0000
Manifest next update: Sat 18 Apr 2026 02:00:40 +0000
Files and hashes: 1: 5x2-8garOOilf6io7nZnF9dIZSA.roa (hash: hdj3plspymuwOcIm8tESK6Qn+W8Q6cC5cyX/oC/V1CQ=)
2: K6OJMzWM9mz_O2zj97wlF_3UdCE.crl (hash: jIWCtdFG/tNO5tMC/EdKRL7qI12tTF8gm5GswsbI6QY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:3d:c5:61:2f:e3:43:b7:bc:7a:e9:57:59:2a:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421
Validity
Not Before: Apr 17 02:00:40 2026 GMT
Not After : Apr 18 02:00:40 2026 GMT
Subject: CN=5bfec23571dabf24d7514f4cdacd218b66347505
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:09:c7:8b:53:52:2b:67:ba:37:3e:01:ac:27:
6e:8d:1f:72:d1:69:ad:3a:cd:6b:44:ef:d6:f2:cd:
ed:6c:06:d4:d7:c6:d2:c7:e9:bd:db:0b:3b:1e:60:
96:23:4c:ec:2a:16:3a:26:93:92:71:d4:a3:fc:f3:
73:83:b9:8f:9c:b1:99:ca:b2:cf:d6:cd:32:90:4a:
82:ac:17:b7:46:b3:bc:31:f3:ee:bb:fc:9d:4c:e5:
44:7c:08:49:95:ff:36:b0:7a:eb:89:e3:6e:2b:a6:
36:95:f7:60:53:fd:9b:3d:72:4e:6b:e5:51:6c:01:
6a:0e:bd:82:ba:0d:9e:f9:fa:cc:a4:ba:32:f0:36:
3e:f8:84:89:c1:89:96:dd:89:73:65:a7:82:46:ba:
da:9c:ff:69:25:8e:3f:65:60:11:1a:11:79:12:72:
85:17:8b:91:98:46:7c:f9:5d:0d:cb:a8:e7:4f:11:
e2:4e:4e:28:d9:3e:53:33:cb:83:10:cf:b5:47:47:
77:8c:44:d9:b6:0f:62:dd:c9:38:6c:54:3f:5b:61:
aa:aa:e6:3f:ad:cf:f5:c7:db:47:61:5e:8e:3c:09:
71:ba:f5:ed:03:a4:58:c9:8e:8c:1e:6d:c3:c3:a2:
26:eb:22:8b:c1:58:96:38:e2:36:7f:54:4d:d4:28:
ed:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FE:C2:35:71:DA:BF:24:D7:51:4F:4C:DA:CD:21:8B:66:34:75:05
X509v3 Authority Key Identifier:
keyid:2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4d:ad:6f:f2:0b:24:d0:85:0c:0b:85:ef:68:e7:be:22:c9:8f:
22:4d:90:b4:69:0c:47:d2:90:da:34:cd:65:3a:8b:3a:8c:f2:
54:12:1d:76:63:ca:8c:60:5a:5f:72:00:5c:4b:01:61:e5:ab:
da:b6:69:99:7d:72:f6:8d:45:14:ab:8e:4f:4c:80:55:75:2e:
ca:d4:e1:27:69:e2:77:cc:19:9a:34:86:a9:f6:24:12:26:62:
b0:fa:fd:2c:09:7e:3d:c5:9b:ac:49:41:72:92:52:8b:c2:7b:
0b:ea:4d:48:d2:5d:22:6a:a8:2b:53:ef:8a:19:90:57:41:ef:
ce:26:b4:fd:ed:79:12:f1:26:e0:4d:85:d7:84:0f:c6:65:12:
0c:68:36:63:4b:66:88:d8:eb:25:14:1e:7a:aa:53:ec:92:b4:
e1:51:1d:52:bf:d4:20:af:62:71:8f:bc:96:69:d8:13:02:95:
06:e7:51:10:d5:ee:31:43:4d:64:7e:76:f0:a4:a9:6b:0e:06:
fe:f3:b1:2e:bf:4b:6f:7c:8b:c8:d3:12:7a:a7:07:04:1d:0c:
59:cc:1b:2d:42:c6:d8:db:96:3c:a5:6a:5f:df:b7:f7:4c:fe:
40:2b:e6:a5:e8:cf:63:6d:db:70:4c:cd:03:e2:94:5c:2d:f3:
53:27:1c:f9
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2ZKz3FYS/jQ7e8eulXWSqOMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYTM4OTMzMzU4Y2Y2NmNmZjNiNmNlM2Y3YmMyNTE3ZmRk
NDc0MjEwHhcNMjYwNDE3MDIwMDQwWhcNMjYwNDE4MDIwMDQwWjAzMTEwLwYDVQQD
Eyg1YmZlYzIzNTcxZGFiZjI0ZDc1MTRmNGNkYWNkMjE4YjY2MzQ3NTA1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngnHi1NSK2e6Nz4BrCdujR9y0Wmt
Os1rRO/W8s3tbAbU18bSx+m92ws7HmCWI0zsKhY6JpOScdSj/PNzg7mPnLGZyrLP
1s0ykEqCrBe3RrO8MfPuu/ydTOVEfAhJlf82sHrrieNuK6Y2lfdgU/2bPXJOa+VR
bAFqDr2Cug2e+frMpLoy8DY++ISJwYmW3YlzZaeCRrranP9pJY4/ZWARGhF5EnKF
F4uRmEZ8+V0Ny6jnTxHiTk4o2T5TM8uDEM+1R0d3jETZtg9i3ck4bFQ/W2GqquY/
rc/1x9tHYV6OPAlxuvXtA6RYyY6MHm3Dw6Im6yKLwViWOOI2f1RN1Cjt0wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFv+wjVx2r8k11FPTNrNIYtmNHUFMB8GA1UdIwQY
MBaAFCujiTM1jPZs/zts4/e8JRf91HQhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC85ODU2ZWUtNjk5Zi00ZmVkLWJiOTgt
ZTA2ZmQwY2QzYjc3LzEvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80NC85ODU2ZWUtNjk5Zi00ZmVkLWJiOTgtZTA2ZmQwY2QzYjc3
LzEvSzZPSk16V005bXpfTzJ6ajk3d2xGXzNVZENFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATa1v8gsk
0IUMC4XvaOe+IsmPIk2QtGkMR9KQ2jTNZTqLOozyVBIddmPKjGBaX3IAXEsBYeWr
2rZpmX1y9o1FFKuOT0yAVXUuytThJ2nid8wZmjSGqfYkEiZisPr9LAl+PcWbrElB
cpJSi8J7C+pNSNJdImqoK1PvihmQV0Hvzia0/e15EvEm4E2F14QPxmUSDGg2Y0tm
iNjrJRQeeqpT7JK04VEdUr/UIK9icY+8lmnYEwKVBudRENXuMUNNZH528KSpaw4G
/vOxLr9Lb3yLyNMSeqcHBB0MWcwbLULG2NuWPKVqX9+390z+QCvmpejPY23bcEzN
A+KUXC3zUycc+Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 06:18:23 2026 by rpki-client