Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
File: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft (raw, json)
Hash identifier: IDaQORP+vessTzlOxWIJWXCWu9CPzy3seVg5r5ewq4Q=
Subject key identifier: FC:6F:53:20:52:E6:D1:05:A8:A0:C8:E4:AF:E9:86:DA:50:76:63:12
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 019D9AE2B02F9EAF1B37FA030F243E1F0E59
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
Manifest number: 0498
Signing time: Fri 17 Apr 2026 10:00:40 +0000
Manifest this update: Fri 17 Apr 2026 10:00:40 +0000
Manifest next update: Sat 18 Apr 2026 10:00:40 +0000
Files and hashes: 1: 77Whh77iKwt1yOOYU4DtYorlBOk.roa (hash: tO7vF8xusHO1O0mKViJ8yyoCaEKBRB4DR9BPRK3Lwnc=)
2: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl (hash: ddPiaOtwaRc9kGLQIrp6Au7vjLNMGAjdywt/kFqg3tg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 10:00:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:b0:2f:9e:af:1b:37:fa:03:0f:24:3e:1f:0e:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Apr 17 10:00:40 2026 GMT
Not After : Apr 18 10:00:40 2026 GMT
Subject: CN=fc6f532052e6d105a8a0c8e4afe986da50766312
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:c7:ae:5e:14:25:33:42:48:86:a7:f9:74:d9:
45:cf:ee:0c:ee:28:c9:90:5a:af:0c:3a:fb:8d:8a:
b2:46:7a:95:e7:21:1f:85:1f:60:7c:16:f7:46:32:
20:c4:ad:aa:d3:9b:49:e1:e3:4b:5d:af:70:69:4f:
1b:a3:6a:e2:36:e2:11:68:cc:0f:8a:e2:c0:22:6d:
0e:49:13:b6:43:e1:13:19:0b:e3:82:2a:93:24:a5:
50:58:40:1f:9c:fd:84:92:64:d0:8f:22:b2:72:fe:
47:bc:65:93:b0:46:ea:e8:6e:78:95:4e:fd:97:a8:
90:5d:a7:1a:05:b3:36:aa:d6:bf:c6:c2:ce:62:65:
97:34:5a:82:56:30:e9:8e:99:5a:b4:d6:36:12:d8:
e7:f2:36:03:54:9a:ec:f5:d8:65:f7:0a:66:2d:0f:
f6:57:ba:a5:11:81:0c:0c:f1:18:11:aa:4f:99:79:
1a:b6:79:0c:c0:00:0e:3a:1b:fe:0b:1d:63:d8:be:
9e:58:17:6a:61:d7:a2:96:2a:dd:06:72:fa:dd:6f:
68:06:02:e5:91:cc:cd:f0:99:07:40:08:a1:eb:17:
b4:ca:f0:66:cc:ab:82:bd:46:4e:1a:6c:cb:d0:d6:
91:5f:c8:46:18:be:06:d5:97:7f:db:89:cc:cb:98:
5c:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:6F:53:20:52:E6:D1:05:A8:A0:C8:E4:AF:E9:86:DA:50:76:63:12
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:8e:ab:5a:45:36:e3:51:d7:41:fc:eb:4d:cf:ad:01:3a:6e:
af:08:95:e9:9f:d0:7f:c1:ec:9d:ad:66:fc:19:00:db:b4:51:
07:f3:7a:2b:45:87:f3:04:d5:f0:b7:ca:a9:bf:82:8d:51:b0:
72:d4:e3:0a:f0:96:3c:b4:d8:12:f0:19:81:b5:08:13:0b:4e:
c5:a2:c3:31:ad:9d:62:9d:07:6a:ab:24:11:1d:1c:05:03:d1:
6d:f8:d8:96:89:d9:03:e3:09:6f:e4:f0:92:aa:62:47:e6:aa:
c6:a8:0c:e1:4f:89:4a:71:06:3e:95:67:fa:dd:43:53:fb:48:
2d:98:8b:ff:0b:c8:6d:13:4b:47:8f:c5:23:74:7b:d7:68:d8:
ba:d4:eb:fd:4c:46:9a:bb:51:02:21:7a:35:a9:9c:e0:28:6d:
c8:0c:00:b9:1a:99:00:98:c1:77:79:e4:ce:7c:c0:63:e8:ad:
4d:8a:1f:d8:f3:0d:37:36:e3:51:71:06:d9:c3:53:8f:00:d5:
a4:fc:9c:b2:33:8f:05:c1:08:43:a0:3b:9b:6b:2e:c9:c8:f6:
d1:c3:a3:72:52:b1:1f:f7:61:ef:3d:18:28:62:45:68:aa:74:
43:ea:f2:b5:7f:19:65:54:e4:35:97:c4:99:d9:c0:24:a6:bc:
45:63:9d:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 18:57:13 2026 by rpki-client