Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: p5RPlVMhZ8q2abMRT7G+oWyIoFMPSrG9HO2qtge5RCg=
Subject key identifier: E6:89:69:31:09:59:38:E3:3F:17:C3:A2:2E:35:BB:C5:B4:3B:BC:B7
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 019EC337C57DB2A09D47913E6775AC7273EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 0461
Signing time: Sat 13 Jun 2026 23:01:12 +0000
Manifest this update: Sat 13 Jun 2026 23:01:12 +0000
Manifest next update: Sun 14 Jun 2026 23:01:12 +0000
Files and hashes: 1: 8KaJwIuZexyBoZjYRmZrjQf9lJQ.roa (hash: LrRg49gpH/+ELMxEyexBUIqT8W2t/5VIfE4dXyblhxM=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: 1CwSstPrBQNzjfjtZz475PUZbcDdEzXU3GeMQX/DbDc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 23:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:c5:7d:b2:a0:9d:47:91:3e:67:75:ac:72:73:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Jun 13 23:01:12 2026 GMT
Not After : Jun 14 23:01:12 2026 GMT
Subject: CN=e6896931095938e33f17c3a22e35bbc5b43bbcb7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ab:5c:f4:bc:8d:38:5a:91:d1:19:8a:3f:c5:
e4:e3:38:26:78:b3:6a:3c:a4:72:6c:49:77:23:96:
51:0a:e3:3d:e4:53:af:22:e9:a1:01:b6:b0:ee:d0:
57:c8:78:eb:90:58:2f:33:e4:a6:06:c7:32:4f:a4:
6d:fb:c7:87:12:59:ed:57:54:d4:19:42:83:f6:3c:
6f:cd:5d:34:1e:2c:f7:a6:02:15:42:7f:5e:3e:3d:
e5:16:e0:5a:91:11:9f:19:fb:69:85:ba:a0:97:d6:
8d:14:fb:7e:cf:54:95:ff:60:64:68:ff:fa:17:03:
76:97:8c:09:7e:50:82:0e:f8:c3:e8:17:ae:8e:9b:
2a:36:5c:d7:75:37:03:a5:bc:50:3f:21:7f:a4:0f:
49:aa:0f:b3:cd:4a:ed:48:05:33:4e:15:67:6b:ec:
d8:f3:45:9f:3e:63:25:83:1e:7f:68:73:a4:45:7d:
90:97:6e:03:11:8d:f6:25:bc:55:9f:d7:8f:71:be:
d2:4d:f4:4d:de:4f:df:1c:bf:41:4e:1c:1f:20:fd:
66:ba:ae:de:74:69:ae:17:96:66:a6:4b:83:6a:47:
0c:ea:67:6a:5b:e9:f1:fe:f5:c1:69:40:68:0b:03:
42:5b:d6:d0:36:f5:71:4e:8e:f5:c3:b9:28:09:e1:
22:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E6:89:69:31:09:59:38:E3:3F:17:C3:A2:2E:35:BB:C5:B4:3B:BC:B7
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:ab:f1:35:5c:2e:48:72:19:9e:bd:79:90:41:c8:fc:4f:2b:
0a:9c:68:87:b9:8c:ce:1e:4d:be:a2:3d:74:6d:4d:6f:b4:76:
fc:e4:ed:98:59:1a:5c:59:83:23:da:ca:37:70:46:49:80:db:
95:85:ed:e7:65:1c:df:08:79:f3:d7:2e:1f:8b:fe:ea:e4:8a:
86:fe:d4:5d:d5:35:33:e6:a0:50:49:5a:d0:65:c4:af:82:9e:
be:9a:49:85:8f:a7:f6:4f:b1:08:b6:2d:3a:78:02:33:6f:d9:
29:b2:b1:b5:e1:18:14:9c:c9:15:44:94:d3:14:65:6a:89:0e:
3c:13:21:d8:30:5a:f0:64:26:d6:24:65:b2:a0:41:1d:23:65:
ed:db:93:b8:21:77:f9:0b:dd:db:c3:8c:9b:9e:8f:b4:ae:6d:
c0:ee:c6:3d:7c:4b:f1:79:d1:d9:93:81:87:0c:06:5d:fc:7e:
cb:02:7f:e3:70:7e:a5:0f:d6:2c:d9:86:73:f1:2f:4e:db:32:
5a:7f:6d:46:78:a0:a7:eb:d1:d5:d2:ea:dc:2e:12:66:32:43:
9c:ad:74:be:3a:16:c3:32:56:ed:38:e3:8a:b9:69:84:e1:b2:
e9:69:3f:1a:63:2d:a9:f8:7c:5a:05:3f:8c:dc:19:1c:30:2f:
e6:49:70:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 06:36:03 2026 by rpki-client