Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
File: KWMrEVG5T_zt9AqK02quGvshYlc.mft (raw, json)
Hash identifier: +c6Og1d2nLZ6FKMpYeJc+O2ATzXcj0POQ4y7pibd3NM=
Subject key identifier: CF:48:20:AC:AE:04:91:6D:A7:20:5F:24:03:33:19:84:C0:82:F2:9D
Authority key identifier: 29:63:2B:11:51:B9:4F:FC:ED:F4:0A:8A:D3:6A:AE:1A:FB:21:62:57
Certificate issuer: /CN=29632b1151b94ffcedf40a8ad36aae1afb216257
Certificate serial: 019D9F2DEE135B4CB7F18E25E79BCA635866
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWMrEVG5T_zt9AqK02quGvshYlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
Manifest number: DC
Signing time: Sat 18 Apr 2026 06:01:20 +0000
Manifest this update: Sat 18 Apr 2026 06:01:20 +0000
Manifest next update: Sun 19 Apr 2026 06:01:20 +0000
Files and hashes: 1: KWMrEVG5T_zt9AqK02quGvshYlc.crl (hash: 23vpw2AEFeEdHqU7S1faD461DAgBqFjXj8wKk4dv+Ak=)
2: R04uk59tL-FqUHxfWd8Y5B17azg.roa (hash: 5f566Fl0rgtpysFtLbApUeRuQVHAZSsSCcfDuYmn3cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KWMrEVG5T_zt9AqK02quGvshYlc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 19 Apr 2026 01:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9f:2d:ee:13:5b:4c:b7:f1:8e:25:e7:9b:ca:63:58:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29632b1151b94ffcedf40a8ad36aae1afb216257
Validity
Not Before: Apr 18 06:01:20 2026 GMT
Not After : Apr 19 06:01:20 2026 GMT
Subject: CN=cf4820acae04916da7205f2403331984c082f29d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:7c:82:ce:bf:03:30:cb:15:2d:0a:9b:9f:dd:
7b:5a:39:b2:13:92:45:09:30:00:d0:d7:dc:c5:e4:
c9:37:9c:1a:bf:9a:4e:2f:54:45:2b:c4:b7:46:a4:
b3:dc:ff:74:94:5f:5d:02:4b:76:22:aa:40:b9:34:
3d:8d:d8:23:b2:bf:ef:1f:a3:2a:c4:04:5e:23:e4:
57:4d:2f:15:cf:ad:9b:d6:35:03:76:92:36:bb:77:
05:94:67:53:23:b0:ba:84:23:b7:de:b6:a5:8b:bf:
84:f9:7a:f5:9c:cb:7d:5e:9c:df:b2:2b:a3:46:71:
c7:8b:c8:ca:fb:72:9f:ba:c2:d8:73:24:94:7a:41:
47:f1:58:b9:18:27:2d:bf:01:94:9d:56:9c:4f:75:
ac:54:be:cc:a2:4e:4d:76:1f:54:f8:04:cf:84:54:
58:0e:10:f2:67:2c:6c:ad:66:71:22:de:cf:35:1a:
97:02:6f:c3:96:f5:6e:3d:ca:09:28:aa:c2:e1:1a:
6f:10:b5:83:37:b2:5f:38:bb:68:94:f6:e4:f9:2e:
fd:b2:83:15:85:be:60:32:7f:cd:7d:9e:9d:6f:48:
04:4d:7b:bf:29:c0:80:37:9a:98:63:6d:52:fe:fb:
ba:e1:f4:b8:29:94:27:80:33:3b:b3:02:e2:47:ea:
07:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:48:20:AC:AE:04:91:6D:A7:20:5F:24:03:33:19:84:C0:82:F2:9D
X509v3 Authority Key Identifier:
keyid:29:63:2B:11:51:B9:4F:FC:ED:F4:0A:8A:D3:6A:AE:1A:FB:21:62:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWMrEVG5T_zt9AqK02quGvshYlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8d:bb:5f:d0:e8:ac:ba:68:2a:fd:48:92:36:f5:bb:c3:1d:b0:
5c:6e:f5:78:f6:05:bb:85:75:e0:f1:f8:d5:92:06:e6:18:b1:
d2:9a:36:3e:73:ce:44:bc:26:97:3e:bb:e3:0a:ba:d3:81:5a:
da:45:84:c3:21:f7:0a:ad:af:f5:d9:c5:d1:62:ce:52:30:7f:
cb:98:36:ec:b5:3a:10:aa:87:68:ff:3e:d8:23:ef:f3:79:1e:
c9:14:c2:92:69:80:af:70:8e:06:6b:93:bc:6a:ea:c4:2c:ce:
36:d2:11:a1:a3:19:c9:fe:c6:0e:a2:58:99:09:09:af:e8:45:
0c:b3:a0:9f:4b:bb:96:3b:3f:6b:20:9d:54:3b:88:57:18:78:
7e:ab:e4:68:94:af:75:b0:06:5a:f6:bf:22:c5:72:46:83:cc:
b8:14:b1:8d:e1:3c:c0:b7:67:54:fa:b5:dc:e8:f0:de:cc:ac:
64:9b:e3:49:2e:d1:0a:ff:56:83:19:dd:2a:27:d0:29:6f:fc:
b2:cb:e0:f6:41:b8:ae:81:fd:d2:07:94:25:72:ae:67:e1:ce:
6e:3d:15:75:6c:2d:e3:e1:36:99:fc:00:3a:76:db:17:82:c3:
a1:8e:71:2a:5f:57:19:b8:7a:4d:af:e5:7d:11:07:0b:2f:76:
90:f2:fd:bc
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2fLe4TW0y38Y4l55vKY1hmMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NjMyYjExNTFiOTRmZmNlZGY0MGE4YWQzNmFhZTFhZmIy
MTYyNTcwHhcNMjYwNDE4MDYwMTIwWhcNMjYwNDE5MDYwMTIwWjAzMTEwLwYDVQQD
EyhjZjQ4MjBhY2FlMDQ5MTZkYTcyMDVmMjQwMzMzMTk4NGMwODJmMjlkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHyCzr8DMMsVLQqbn917WjmyE5JF
CTAA0NfcxeTJN5wav5pOL1RFK8S3RqSz3P90lF9dAkt2IqpAuTQ9jdgjsr/vH6Mq
xAReI+RXTS8Vz62b1jUDdpI2u3cFlGdTI7C6hCO33rali7+E+Xr1nMt9Xpzfsiuj
RnHHi8jK+3KfusLYcySUekFH8Vi5GCctvwGUnVacT3WsVL7Mok5Ndh9U+ATPhFRY
DhDyZyxsrWZxIt7PNRqXAm/DlvVuPcoJKKrC4RpvELWDN7JfOLtolPbk+S79soMV
hb5gMn/NfZ6db0gETXu/KcCAN5qYY21S/vu64fS4KZQngDM7swLiR+oHHQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFM9IIKyuBJFtpyBfJAMzGYTAgvKdMB8GA1UdIwQY
MBaAFCljKxFRuU/87fQKitNqrhr7IWJXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1dNckVWRzVUX3p0OUFxSzAycXVHdnNoWWxjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni8yNTQ5OTUtNGMzOS00ZjM3LTllM2It
YjJmMDU0MWFmYWNmLzEvS1dNckVWRzVUX3p0OUFxSzAycXVHdnNoWWxjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni8yNTQ5OTUtNGMzOS00ZjM3LTllM2ItYjJmMDU0MWFmYWNm
LzEvS1dNckVWRzVUX3p0OUFxSzAycXVHdnNoWWxjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjbtf0Ois
umgq/UiSNvW7wx2wXG71ePYFu4V14PH41ZIG5hix0po2PnPORLwmlz674wq604Fa
2kWEwyH3Cq2v9dnF0WLOUjB/y5g27LU6EKqHaP8+2CPv83keyRTCkmmAr3COBmuT
vGrqxCzONtIRoaMZyf7GDqJYmQkJr+hFDLOgn0u7ljs/ayCdVDuIVxh4fqvkaJSv
dbAGWva/IsVyRoPMuBSxjeE8wLdnVPq13Ojw3sysZJvjSS7RCv9WgxndKifQKW/8
ssvg9kG4roH90geUJXKuZ+HObj0VdWwt4+E2mfwAOnbbF4LDoY5xKl9XGbh6Ta/l
fREHCy92kPL9vA==
-----END CERTIFICATE-----
Generated at Sat Apr 18 10:08:35 2026 by rpki-client