Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: Zi0X0JvKP4LZnSw2/DNEcHxe4DmEf9hH/vR7nmpNJPA=
Subject key identifier: 57:B7:5F:B7:E7:96:7F:FD:79:9A:A2:5F:12:43:40:B6:2D:99:01:98
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 019EC337DEB4ABF1CE17C1950811A402E467
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 195D
Signing time: Sat 13 Jun 2026 23:01:18 +0000
Manifest this update: Sat 13 Jun 2026 23:01:18 +0000
Manifest next update: Sun 14 Jun 2026 23:01:18 +0000
Files and hashes: 1: WMTxNqy5dxe24um7JtSXmDnNRnM.roa (hash: TxZKxHcS8Fj+JFe1cwBosTBaRiZeeZ2HacumzoOW+L8=)
2: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: a1l9pCsx5Z6zovJO3BvhT1CF5ZeNab5XE7n6C2zAYiA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 23:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:de:b4:ab:f1:ce:17:c1:95:08:11:a4:02:e4:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: Jun 13 23:01:18 2026 GMT
Not After : Jun 14 23:01:18 2026 GMT
Subject: CN=57b75fb7e7967ffd799aa25f124340b62d990198
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:d6:d9:a5:34:21:45:e0:fb:c7:64:84:40:93:
67:4e:4c:b8:54:3d:67:99:63:6f:c1:b1:e0:8a:05:
5c:3e:99:da:cd:94:39:c2:3d:18:29:31:7c:e3:b8:
ed:96:cd:4f:99:57:24:f8:9a:d1:e0:c8:11:a9:20:
ca:52:b0:d2:7e:ea:b1:14:0b:fd:a6:4f:63:80:ca:
48:e1:37:62:85:38:64:f2:d4:ac:30:07:ec:f5:6c:
5d:88:84:61:f9:fc:5b:8e:ba:45:2e:49:89:6e:01:
f2:61:08:29:34:4d:73:d9:3b:3c:ea:d6:c2:70:37:
53:d7:2e:44:3d:b6:cb:c4:92:8b:54:0c:90:f8:c8:
ae:1b:bf:35:ce:60:8e:49:4b:e1:f1:f2:24:bb:ef:
0a:5c:0c:0c:c2:92:8c:28:56:d0:4a:9a:9a:0b:d9:
c6:c1:4f:5e:4b:a4:0c:3f:fa:62:01:4b:53:69:2c:
db:30:b7:5a:f8:c0:e1:b9:17:89:c6:eb:eb:82:71:
c8:fe:a3:69:be:05:5f:a8:10:b6:db:cf:d6:0b:eb:
45:8a:47:63:48:b8:71:e6:30:97:05:c9:2f:da:f6:
0e:c6:f9:b0:6a:23:14:36:c3:cb:83:7c:5f:89:1e:
74:dd:84:c9:4b:ee:93:55:27:cf:4b:52:ca:bd:17:
4b:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
57:B7:5F:B7:E7:96:7F:FD:79:9A:A2:5F:12:43:40:B6:2D:99:01:98
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:a5:c1:51:a3:19:1a:15:d6:e6:77:3f:41:7f:da:22:10:45:
5e:59:9d:75:da:e9:ae:3b:f4:0b:63:f6:0f:7b:f3:d5:fa:3c:
96:d8:aa:f8:2c:a7:ec:7a:fc:3e:f6:f3:9e:ab:3c:4b:2f:d4:
07:f5:3b:90:82:32:7f:24:bd:5d:9c:33:cd:5c:07:f3:25:92:
4f:d4:10:4b:99:94:fe:98:4b:ea:5f:6d:ef:14:c0:a1:28:20:
18:39:e4:90:b5:e4:cb:b2:a3:b4:01:90:02:b1:0d:6c:d0:36:
9f:c9:ef:b9:98:30:a4:ed:78:55:6f:bd:61:e8:93:57:3d:78:
26:5c:88:87:24:1e:6e:ed:98:27:04:3b:13:41:2a:f1:74:c1:
f3:f4:31:21:85:3f:3d:7d:0b:73:67:10:07:f9:ef:96:bf:e3:
6b:d0:eb:c8:a9:85:27:88:b9:7a:33:66:ee:05:09:0e:1f:9c:
05:a4:52:e8:15:19:62:c8:12:5b:b4:12:35:6d:a6:5d:a9:35:
6c:7c:73:de:14:2c:f7:3c:5e:9f:ec:ad:99:d3:28:d6:74:b3:
02:1c:6c:06:c6:18:da:77:1a:c2:54:ad:96:f3:6b:b0:fb:2e:
fa:4c:f3:b8:cd:e1:7c:f9:8b:6a:96:b1:65:59:c5:4b:4f:2c:
94:20:a9:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 07:09:39 2026 by rpki-client