Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
File: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft (raw, json)
Hash identifier: 1Fp/l/kQFe4pJce5ejgpltJ4qApnptY3suZ77yNnt8E=
Subject key identifier: AD:34:B7:75:87:12:D9:38:08:C6:27:65:04:9A:6F:1E:56:D9:54:8F
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 019EC06D6AEE62BC3B442D8F9C5EAC5876C3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
Manifest number: 0530
Signing time: Sat 13 Jun 2026 10:00:56 +0000
Manifest this update: Sat 13 Jun 2026 10:00:56 +0000
Manifest next update: Sun 14 Jun 2026 10:00:56 +0000
Files and hashes: 1: 77Whh77iKwt1yOOYU4DtYorlBOk.roa (hash: tO7vF8xusHO1O0mKViJ8yyoCaEKBRB4DR9BPRK3Lwnc=)
2: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl (hash: Ph0+O0Efiwv0b9a1ZacBy2nhBaKeEOn0gScoGboWqkQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:6a:ee:62:bc:3b:44:2d:8f:9c:5e:ac:58:76:c3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Jun 13 10:00:56 2026 GMT
Not After : Jun 14 10:00:56 2026 GMT
Subject: CN=ad34b7758712d93808c62765049a6f1e56d9548f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:8c:88:8b:64:24:a9:71:c4:39:c3:aa:7a:1c:
16:4c:53:70:7b:b8:11:2a:7c:4e:09:52:68:5b:dc:
c5:c5:3e:03:6a:8d:62:d5:7e:4c:ea:0e:cf:84:88:
6f:e3:3d:bd:71:92:28:8e:b7:b4:36:fd:cb:26:dc:
4b:02:15:20:a4:5c:d4:80:a9:95:df:00:c9:c2:36:
07:a2:35:ad:e8:5c:d8:64:3d:17:53:22:43:6b:07:
01:eb:37:6f:a1:f8:17:ad:b6:1e:9f:fc:79:21:6e:
6a:db:6d:67:46:19:d9:de:cf:5e:ea:fc:29:f9:fd:
dd:b8:bc:c0:c2:a4:6c:03:e3:41:47:47:8c:d1:61:
06:7b:42:cf:9a:e0:37:bc:e9:74:47:9f:62:74:49:
2d:b2:64:5e:16:2a:f0:09:a0:49:68:29:b5:23:1c:
b9:f3:37:1f:1a:c5:73:d3:fe:95:1b:c3:aa:25:f4:
39:ee:2a:b1:3b:fd:39:42:89:16:54:b8:c5:78:a2:
00:8a:c4:9c:7d:ea:5f:14:63:92:2c:16:3c:e0:0f:
e3:f4:ef:88:a9:c3:0a:79:9a:8f:45:ef:13:2d:5f:
74:51:79:9c:5c:03:05:d8:35:41:6a:32:98:0b:12:
5e:1b:48:b4:76:92:23:21:d1:66:3d:2b:ed:1c:6d:
f9:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:34:B7:75:87:12:D9:38:08:C6:27:65:04:9A:6F:1E:56:D9:54:8F
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c8:74:5f:f0:42:e5:0f:9d:dc:2e:fd:f1:2d:4d:d7:28:60:cc:
68:2a:a5:95:27:ab:84:8a:70:b3:44:d4:a5:6c:27:48:06:f8:
40:35:a1:13:7f:b6:87:0d:fa:6d:2c:00:e6:23:1a:5e:3f:8c:
d7:e6:54:c4:5a:55:f2:53:b1:60:3e:7e:14:6c:f7:86:5b:22:
57:5e:00:77:86:8b:3d:11:90:e9:39:71:56:3e:65:bf:b9:19:
df:2e:26:d7:c2:ee:37:7a:40:1e:e9:1e:c5:e3:e8:99:cc:dc:
da:95:13:49:f9:d8:a4:74:0e:aa:21:d1:e6:da:25:58:4d:67:
2a:33:aa:75:97:a1:40:d7:fe:db:6f:f6:92:53:0b:79:fa:0b:
cc:de:a5:03:8b:34:9c:e9:7a:60:ea:4a:fc:34:fd:52:a1:43:
2c:9d:7e:f5:56:f2:cd:fc:6c:66:f6:11:8c:56:7a:a2:55:1d:
06:f1:f1:63:ff:8d:fd:21:2e:92:30:42:8f:33:a5:44:8e:0a:
44:9f:6b:a7:bd:66:84:d0:9a:7e:ef:ea:e0:48:74:bc:63:b2:
f5:4f:29:5e:2f:5f:16:f3:95:df:c3:e6:15:f6:1d:3c:c2:74:
62:c9:0e:d0:f0:ab:07:b8:55:2b:16:07:79:e6:1c:1c:cc:83:
f0:28:f7:bf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:05:36 2026 by rpki-client