Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
File: kGlKYihmrhWO0ofSUz1AuqvqbX0.mft (raw, json)
Hash identifier: AczPH0BS6k/LF8eVg6uoQjuTAsYr6h2Any+tQt6oaJ4=
Subject key identifier: 9B:60:EE:45:98:88:01:CB:5F:7E:BD:D3:11:60:71:FB:10:DE:D2:12
Authority key identifier: 90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
Certificate issuer: /CN=90694a622866ae158ed287d2533d40baabea6d7d
Certificate serial: 019D9C63822FA9207B8171CCB3954A0F5C76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
Manifest number: 071E
Signing time: Fri 17 Apr 2026 17:01:00 +0000
Manifest this update: Fri 17 Apr 2026 17:01:00 +0000
Manifest next update: Sat 18 Apr 2026 17:01:00 +0000
Files and hashes: 1: CiBYmXE-RogiK1Rw18kHHSv6Lc0.roa (hash: tKtvxHVgjyX0+ghMhYs0J9woVAdgsT0NzRRsOsmIW4c=)
2: kGlKYihmrhWO0ofSUz1AuqvqbX0.crl (hash: MudsCIjaEZghW1lQ+OrzHP+4MwvVRGpc+a/NMAXd68w=)
3: qFCsaANcR70aOKdL9jcGSnp3Nd0.roa (hash: ru6fgoLPFWNbB/rS7n0ntPU242iXsQuLTOqT36UGbKY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:82:2f:a9:20:7b:81:71:cc:b3:95:4a:0f:5c:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90694a622866ae158ed287d2533d40baabea6d7d
Validity
Not Before: Apr 17 17:01:00 2026 GMT
Not After : Apr 18 17:01:00 2026 GMT
Subject: CN=9b60ee45988801cb5f7ebdd3116071fb10ded212
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:5e:8b:ff:dd:28:9e:43:eb:44:0f:17:31:2e:
ed:1c:42:94:93:c1:bb:4b:4e:6b:f5:66:26:b7:37:
3a:d3:1e:1f:54:33:08:e4:a4:fe:5a:7c:b4:9b:96:
0c:b0:13:de:1d:04:68:07:e0:2f:0c:25:53:01:9c:
b1:b4:be:6e:72:d2:fb:1d:e8:21:9e:8b:52:a3:55:
64:20:14:5e:78:9e:ef:19:a6:4d:8d:cf:eb:45:e2:
56:89:28:ee:bf:49:52:8a:17:a7:f5:82:6e:16:66:
fe:f5:42:17:16:d9:8d:03:85:bf:91:58:e5:67:f8:
3b:96:39:92:ba:1f:d8:c3:fc:d7:39:1d:4b:6b:83:
32:d8:14:46:c0:a8:b3:56:0b:49:e1:2b:60:76:53:
5a:ac:a6:26:f9:82:06:04:67:9c:16:64:64:93:cc:
b9:9f:4e:70:2e:a4:be:25:a3:5d:0c:19:e9:89:6f:
43:f9:34:7a:9e:b7:1c:0b:62:bf:b2:80:b1:d4:29:
3e:c3:83:ff:1d:06:cc:3e:70:c3:75:7a:d3:38:09:
d5:89:2b:d4:8c:e3:df:bd:03:b7:e0:d4:4e:f3:70:
16:3a:6e:8f:fc:4a:a0:95:e1:44:b7:73:56:48:6f:
68:49:5e:5a:6b:91:cd:06:46:ad:83:03:df:b7:0c:
e1:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:60:EE:45:98:88:01:CB:5F:7E:BD:D3:11:60:71:FB:10:DE:D2:12
X509v3 Authority Key Identifier:
keyid:90:69:4A:62:28:66:AE:15:8E:D2:87:D2:53:3D:40:BA:AB:EA:6D:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGlKYihmrhWO0ofSUz1AuqvqbX0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/b9e2f7-21dc-42c0-94b0-13c0a633e9f4/1/kGlKYihmrhWO0ofSUz1AuqvqbX0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:bd:e2:1e:05:a6:34:6f:98:a8:10:6b:e0:24:3c:a9:be:04:
26:84:a1:94:1f:2c:87:40:8c:a8:42:9a:cc:36:de:42:9e:18:
50:af:88:87:92:f7:a2:3d:0c:2c:0f:65:40:43:e1:0e:aa:57:
0c:6c:e7:f5:13:ec:dd:81:a6:a1:11:30:c0:e8:40:7c:96:03:
a8:0c:14:7b:bd:39:3d:46:f4:9c:b8:67:13:71:ae:70:84:21:
3e:84:e4:c7:5f:8c:df:ab:1c:09:d3:df:78:13:fe:64:80:01:
6e:c9:bc:e4:c1:45:64:4a:59:82:bb:b2:ca:e9:02:98:e7:1f:
f3:b7:eb:14:36:20:51:db:7f:0b:71:2e:80:cd:c3:87:0a:0f:
a8:f2:89:8d:46:e6:b3:b2:ec:7b:8a:47:b8:36:5b:1a:12:8a:
16:5f:ed:fa:d6:61:57:f2:f8:db:cc:c3:bb:f2:e5:67:7a:ef:
77:48:41:67:3a:46:28:1e:61:a5:4b:e0:da:f3:f2:cb:e4:70:
c4:77:7a:94:b7:71:0c:0d:39:12:18:58:df:8c:64:c6:70:18:
da:ad:46:2b:5e:c3:d8:b3:8c:fb:c1:99:f9:d5:7c:6e:7d:ef:
14:8f:6b:25:8a:5c:3c:7c:d8:32:bb:87:37:fe:71:15:1a:e2:
19:d5:a2:99
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2cY4IvqSB7gXHMs5VKD1x2MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNjk0YTYyMjg2NmFlMTU4ZWQyODdkMjUzM2Q0MGJhYWJl
YTZkN2QwHhcNMjYwNDE3MTcwMTAwWhcNMjYwNDE4MTcwMTAwWjAzMTEwLwYDVQQD
Eyg5YjYwZWU0NTk4ODgwMWNiNWY3ZWJkZDMxMTYwNzFmYjEwZGVkMjEyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA116L/90onkPrRA8XMS7tHEKUk8G7
S05r9WYmtzc60x4fVDMI5KT+Wny0m5YMsBPeHQRoB+AvDCVTAZyxtL5uctL7Hegh
notSo1VkIBReeJ7vGaZNjc/rReJWiSjuv0lSihen9YJuFmb+9UIXFtmNA4W/kVjl
Z/g7ljmSuh/Yw/zXOR1La4My2BRGwKizVgtJ4StgdlNarKYm+YIGBGecFmRkk8y5
n05wLqS+JaNdDBnpiW9D+TR6nrccC2K/soCx1Ck+w4P/HQbMPnDDdXrTOAnViSvU
jOPfvQO34NRO83AWOm6P/EqgleFEt3NWSG9oSV5aa5HNBkatgwPftwzhsQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJtg7kWYiAHLX3690xFgcfsQ3tISMB8GA1UdIwQY
MBaAFJBpSmIoZq4VjtKH0lM9QLqr6m19MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni9iOWUyZjctMjFkYy00MmMwLTk0YjAt
MTNjMGE2MzNlOWY0LzEva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Ni9iOWUyZjctMjFkYy00MmMwLTk0YjAtMTNjMGE2MzNlOWY0
LzEva0dsS1lpaG1yaFdPMG9mU1V6MUF1cXZxYlgwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJr3iHgWm
NG+YqBBr4CQ8qb4EJoShlB8sh0CMqEKazDbeQp4YUK+Ih5L3oj0MLA9lQEPhDqpX
DGzn9RPs3YGmoREwwOhAfJYDqAwUe705PUb0nLhnE3GucIQhPoTkx1+M36scCdPf
eBP+ZIABbsm85MFFZEpZgruyyukCmOcf87frFDYgUdt/C3EugM3DhwoPqPKJjUbm
s7Lse4pHuDZbGhKKFl/t+tZhV/L428zDu/LlZ3rvd0hBZzpGKB5hpUvg2vPyy+Rw
xHd6lLdxDA05EhhY34xkxnAY2q1GK17D2LOM+8GZ+dV8bn3vFI9rJYpcPHzYMruH
N/5xFRriGdWimQ==
-----END CERTIFICATE-----
Generated at Fri Apr 17 19:31:25 2026 by rpki-client