Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: CvV2o3N9RUZqwb17VQO+joW7gx5xBBlZHUr5XaO8D0I=
Subject key identifier: 3F:35:9C:03:DE:C3:E2:19:2E:8D:97:75:FD:CD:8A:78:22:E3:83:D0
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 019D9818C333D59EC3371B93717FF21BC51E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 05B2
Signing time: Thu 16 Apr 2026 21:00:52 +0000
Manifest this update: Thu 16 Apr 2026 21:00:52 +0000
Manifest next update: Fri 17 Apr 2026 21:00:52 +0000
Files and hashes: 1: 5HzcZ6a4XAtwOavRhWgPVbFXunY.roa (hash: WuFbSIBYf/9ZwaN+lOrty44DR9s11eIeBklLm/eyCus=)
2: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: R36dtzKfIlM3qWn0YCCgO5U/biBqNI3frD++zQotxJ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:c3:33:d5:9e:c3:37:1b:93:71:7f:f2:1b:c5:1e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Apr 16 21:00:52 2026 GMT
Not After : Apr 17 21:00:52 2026 GMT
Subject: CN=3f359c03dec3e2192e8d9775fdcd8a7822e383d0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:64:0b:50:4b:a0:40:9f:2c:f1:bf:2a:b5:db:
1f:71:b1:a4:e3:ed:58:45:8e:93:e2:42:fc:3a:32:
a2:f1:97:cf:7a:74:93:9e:55:9b:31:6a:93:26:44:
ce:ac:91:d9:3c:00:bc:74:e9:91:7e:06:1f:57:f1:
b5:a1:34:54:da:c9:a4:ee:87:a0:e0:5c:3a:0c:44:
f7:e8:a7:40:15:09:7b:10:7a:40:4a:1f:f8:3e:74:
25:78:0e:9e:85:0f:ac:bf:b3:7e:65:4c:0a:3d:2a:
15:7b:ab:79:41:16:22:01:4a:3d:42:aa:2c:74:ef:
6c:51:57:84:b6:2d:72:35:41:eb:78:80:94:a8:6c:
40:ad:7b:c5:ca:21:78:28:ef:26:b9:cc:6a:75:a8:
57:d9:95:16:cc:0f:b2:bf:5a:97:a6:70:29:a7:f9:
56:e5:65:c7:00:f0:89:75:fc:b8:84:fa:df:8a:ce:
2e:92:7f:88:d2:85:8b:5c:28:16:09:4f:0b:2c:5f:
2e:c1:2f:dd:d4:3c:11:1a:a0:9d:a9:5b:c9:f1:c1:
58:4d:1f:8a:fb:32:a5:67:ea:22:8d:fe:c6:66:2e:
7e:b3:05:61:08:4d:fa:8b:8f:61:db:a2:02:66:ec:
b5:35:64:9e:e0:a7:e5:e0:84:59:aa:92:a2:58:da:
0d:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:35:9C:03:DE:C3:E2:19:2E:8D:97:75:FD:CD:8A:78:22:E3:83:D0
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:c2:9e:93:be:b0:b3:86:0f:ff:84:8c:ce:97:37:35:24:9e:
14:6f:e2:10:2d:60:7d:66:52:da:9f:e9:31:c9:fe:84:2f:66:
ce:95:a4:61:c0:9a:00:00:b3:5b:f9:e7:31:4d:23:78:28:70:
97:cf:2f:f8:2a:0a:53:48:52:4e:48:71:81:2c:c6:71:22:76:
5c:e2:17:41:2c:6d:63:11:04:26:d8:4d:48:d1:11:ea:40:db:
7b:b4:70:e8:7b:2c:de:6a:1b:73:e5:bb:62:1a:3e:44:7f:da:
e1:40:d1:ff:ac:f4:1d:9a:11:3c:96:3d:03:b8:6c:e8:8b:c6:
82:05:87:e5:58:7f:4d:ff:e6:1d:eb:65:f4:f2:7a:f7:97:89:
56:3a:20:f2:a1:1f:d1:ad:ce:b9:99:a4:c1:5d:a8:94:71:55:
b1:19:7f:65:9b:81:c3:a7:e1:44:31:05:dc:23:ef:67:9a:e1:
d4:ac:73:1a:02:bd:3f:d1:e6:9d:0c:d2:84:73:a2:ef:72:b6:
f9:c7:dc:e5:2d:c4:b5:a4:9d:e3:aa:90:f2:d1:b0:7a:c6:21:
17:fa:23:15:e2:b5:4d:89:b9:56:16:68:df:15:ca:36:18:6d:
31:1e:17:0b:04:b5:24:0a:d0:17:78:ca:6b:88:e8:73:85:0e:
38:35:d0:65
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:33:29 2026 by rpki-client