Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: foV9h/ZLn9dCHAq24tE99s8lCkD7swHMg3b8Ndjw1qc=
Subject key identifier: A6:95:0A:BA:15:E6:DA:8D:44:9B:C3:A5:6C:4C:98:CA:77:90:34:73
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 019D99CFC9B2115F1A4535B41494F73B59C9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0DA8
Signing time: Fri 17 Apr 2026 05:00:24 +0000
Manifest this update: Fri 17 Apr 2026 05:00:24 +0000
Manifest next update: Sat 18 Apr 2026 05:00:24 +0000
Files and hashes: 1: 0d0jGfKX-gxJysHLosjRpYlTW5Q.roa (hash: CvfYQwzjI8vLt2H1NJc+s052pBAhojbFkOv6NxHUB/E=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: 3tKPJ7oAh7IOUtjMqkQzNvgHW6Ma9Uu3ujibDV5Yx0o=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:c9:b2:11:5f:1a:45:35:b4:14:94:f7:3b:59:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: Apr 17 05:00:24 2026 GMT
Not After : Apr 18 05:00:24 2026 GMT
Subject: CN=a6950aba15e6da8d449bc3a56c4c98ca77903473
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:6a:3e:d5:fe:ea:66:ee:22:ae:b6:95:ab:66:
51:e8:83:53:3b:19:d4:94:67:c5:5a:62:b3:60:cc:
5a:2a:5b:d7:25:97:68:d9:16:16:50:4b:d4:22:71:
fe:4e:1e:d4:91:4a:b7:eb:6a:78:02:89:71:62:06:
65:4f:fa:c2:b6:2d:2d:d8:fc:f7:14:53:b6:06:5b:
b3:1e:14:94:ec:33:25:63:41:64:eb:62:46:5d:b8:
54:cc:d1:cc:01:ee:2c:d9:00:1e:31:3d:e0:d6:d8:
12:ce:7b:90:9a:d1:98:af:ae:11:61:7b:44:84:3b:
43:be:f1:ed:a5:2c:c8:23:e6:94:77:6d:7c:26:31:
f4:f6:b5:83:c6:57:a7:10:3d:88:9a:93:8a:64:3c:
84:0a:80:6f:95:c8:8a:66:73:a3:c9:c5:e2:87:cf:
d9:c4:40:ef:25:6e:a4:8a:98:41:bb:31:ec:38:9e:
e0:b6:85:9f:bc:17:72:07:5f:2d:51:c4:29:ce:eb:
26:03:42:8b:e1:29:36:20:00:26:ec:d5:d6:36:bc:
32:dc:6e:3b:c5:9b:46:62:88:13:b9:95:ed:38:dd:
51:3a:ae:1f:04:fa:47:e7:5b:80:a7:7e:1c:f8:27:
ca:b6:09:bc:cf:ec:eb:7e:09:ee:49:b8:f7:8a:ee:
ee:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A6:95:0A:BA:15:E6:DA:8D:44:9B:C3:A5:6C:4C:98:CA:77:90:34:73
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d4:9c:3f:7a:83:5c:90:58:36:d6:d2:71:79:b1:b9:3a:19:67:
30:09:45:99:22:de:f2:10:97:e1:f9:b1:83:12:3d:92:a0:18:
6c:6e:61:c7:55:9d:14:a9:75:d4:a9:28:58:9e:7b:6e:33:c5:
6e:ad:df:1e:ef:05:2a:12:c1:c3:1c:97:91:bf:b3:1e:da:1a:
2b:00:94:2f:10:b3:5d:a3:bf:78:a5:23:5a:9a:28:dd:f4:c1:
05:28:8c:7b:96:6e:13:60:ea:e6:d5:0c:2a:90:bc:9b:67:55:
bd:28:66:3a:34:db:5f:29:b3:d2:99:5a:bb:f4:ac:de:59:b9:
19:7b:f1:9a:94:08:21:33:00:76:06:72:9c:6a:be:d2:ae:d1:
49:77:00:8c:2a:3f:fb:cf:61:08:76:61:5f:d7:43:05:34:fd:
0b:bc:13:8f:5e:ad:ba:e0:fe:52:47:de:ff:7c:bd:c4:5b:1b:
c2:8e:ae:d2:7c:aa:85:fb:70:f0:01:01:81:2f:6c:59:fa:63:
70:0c:6a:80:8c:54:0f:62:ae:28:42:8e:5f:74:e1:a7:9f:dc:
12:f8:e6:7f:96:85:2e:ca:91:a2:8f:0a:57:80:c1:6e:14:75:
d3:98:e4:4e:c8:fc:fd:3f:5a:ac:6b:16:39:ec:f9:aa:23:ac:
8c:7e:a8:60
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2Zz8myEV8aRTW0FJT3O1nJMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Y2I1ZjNmYjk1NzI1MWFhZDRiYTA5ZDBiYWI3MzUyYjc0
YmIwN2QwHhcNMjYwNDE3MDUwMDI0WhcNMjYwNDE4MDUwMDI0WjAzMTEwLwYDVQQD
EyhhNjk1MGFiYTE1ZTZkYThkNDQ5YmMzYTU2YzRjOThjYTc3OTAzNDczMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyGo+1f7qZu4irraVq2ZR6INTOxnU
lGfFWmKzYMxaKlvXJZdo2RYWUEvUInH+Th7UkUq362p4AolxYgZlT/rCti0t2Pz3
FFO2BluzHhSU7DMlY0Fk62JGXbhUzNHMAe4s2QAeMT3g1tgSznuQmtGYr64RYXtE
hDtDvvHtpSzII+aUd218JjH09rWDxlenED2ImpOKZDyECoBvlciKZnOjycXih8/Z
xEDvJW6kiphBuzHsOJ7gtoWfvBdyB18tUcQpzusmA0KL4Sk2IAAm7NXWNrwy3G47
xZtGYogTuZXtON1ROq4fBPpH51uAp34c+CfKtgm8z+zrfgnuSbj3iu7u7wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKaVCroV5tqNRJvDpWxMmMp3kDRzMB8GA1UdIwQY
MBaAFCjLXz+5VyUarUugnQurc1K3S7B9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUt
MTUzNmZjNzgzODVkLzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUtMTUzNmZjNzgzODVk
LzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1Jw/eoNc
kFg21tJxebG5OhlnMAlFmSLe8hCX4fmxgxI9kqAYbG5hx1WdFKl11KkoWJ57bjPF
bq3fHu8FKhLBwxyXkb+zHtoaKwCULxCzXaO/eKUjWpoo3fTBBSiMe5ZuE2Dq5tUM
KpC8m2dVvShmOjTbXymz0plau/Ss3lm5GXvxmpQIITMAdgZynGq+0q7RSXcAjCo/
+89hCHZhX9dDBTT9C7wTj16tuuD+Ukfe/3y9xFsbwo6u0nyqhftw8AEBgS9sWfpj
cAxqgIxUD2KuKEKOX3Thp5/cEvjmf5aFLsqRoo8KV4DBbhR105jkTsj8/T9arGsW
Oez5qiOsjH6oYA==
-----END CERTIFICATE-----
Generated at Fri Apr 17 08:01:29 2026 by rpki-client