Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: SnmPTwwZtk03WfhNoDvKZzTEP/AeRlO0YGLszrr0b9c=
Subject key identifier: 6F:CB:0B:BC:78:7F:C2:09:94:B4:3A:5D:B5:D2:74:A3:CB:F3:2D:04
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 019EC1EE4DF297EF27038D1F8EB042945B16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 1960
Signing time: Sat 13 Jun 2026 17:01:20 +0000
Manifest this update: Sat 13 Jun 2026 17:01:20 +0000
Manifest next update: Sun 14 Jun 2026 17:01:20 +0000
Files and hashes: 1: JL_bv1rE4SOiwiRn1jc2s_87lQQ.roa (hash: dWOsdKuE7dNLYI4NP8+n+WEeun5in1SyaWv26Okq8QI=)
2: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: 2fRhRlQArqjKF5SE4q7FiHPeDxkQmiauagOJSalf2/o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:4d:f2:97:ef:27:03:8d:1f:8e:b0:42:94:5b:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Jun 13 17:01:20 2026 GMT
Not After : Jun 14 17:01:20 2026 GMT
Subject: CN=6fcb0bbc787fc20994b43a5db5d274a3cbf32d04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:05:7e:1c:bd:cc:29:d8:88:bf:28:4e:b6:ab:
ae:38:af:40:d5:86:6d:7a:22:e4:ca:53:4a:18:1c:
40:2f:3a:d0:a6:d4:1c:55:95:67:52:40:f6:78:5d:
7b:5c:28:ce:01:8c:f3:a0:1e:8c:ad:cd:29:61:cc:
6a:6d:4b:63:02:c4:8f:fb:54:6e:3d:33:c7:88:b8:
5e:51:90:07:a3:d1:1f:db:8a:b6:20:7f:7e:09:dc:
d7:f7:80:50:72:36:7d:03:ee:5e:2e:7b:ec:72:29:
43:7d:ce:21:5c:98:5e:2f:9d:af:cf:74:c2:f1:a8:
fc:f8:59:dd:d7:f1:0a:3e:fa:14:bf:1a:1d:03:4c:
2b:05:7b:cb:1a:1b:25:9e:66:a0:de:e1:7a:ad:32:
27:76:37:49:21:18:7b:d0:b8:9f:5f:96:38:09:09:
24:3a:20:71:af:a6:55:2f:42:a0:04:3e:2c:c9:3c:
b6:25:be:ba:32:19:82:1d:aa:37:09:12:ab:6a:e5:
08:c8:a5:33:29:a4:f5:9a:a9:b3:b3:e5:58:1f:c8:
81:b7:70:4f:73:a7:c5:86:89:65:b9:fe:4e:ee:fd:
18:e1:fc:6c:6d:e9:ce:f4:2b:ce:fb:19:67:be:60:
1c:ef:e5:1f:0f:d2:63:fb:15:d0:94:dc:fe:86:f3:
22:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6F:CB:0B:BC:78:7F:C2:09:94:B4:3A:5D:B5:D2:74:A3:CB:F3:2D:04
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:1f:89:3c:df:04:dd:6a:ab:cf:6c:f5:85:d7:5b:34:45:9f:
e2:12:c0:b8:8b:15:00:65:a2:50:00:40:e2:70:39:ed:57:63:
58:26:0f:5b:8a:76:a0:7b:f9:89:2d:6a:0a:b6:5d:28:09:10:
ce:d3:45:4d:ab:b0:87:01:97:99:9a:ab:b2:92:91:b0:0e:b4:
05:49:6c:bd:a7:17:95:26:9a:73:2a:78:88:bd:7e:9f:ee:a2:
e9:05:c9:10:c0:cf:fe:46:1e:33:e7:56:e2:5b:03:55:3e:9a:
93:12:f7:5e:6e:06:07:21:45:98:24:f8:f2:5e:34:aa:9c:5d:
9f:ba:16:c1:07:28:1a:ec:46:85:eb:d4:d9:fa:04:a8:92:40:
b0:cd:19:0b:47:46:05:be:89:4d:eb:52:29:f3:6a:44:32:3a:
65:3e:9f:82:94:c2:43:17:18:a6:f4:e4:7a:4b:8d:c4:35:86:
ba:cd:22:21:c2:25:98:29:e4:0c:62:8c:e4:98:df:06:bc:7b:
f3:6c:b7:97:96:a7:66:36:21:95:df:b6:0d:5b:9b:1f:58:86:
36:36:81:62:84:c4:be:7a:3e:90:c9:b6:c5:9c:42:32:e7:c1:
94:97:4e:41:aa:57:66:05:4a:74:60:44:d2:20:2a:5d:ba:f2:
fa:f3:df:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:05:08 2026 by rpki-client