Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
File: KMID1l3y1lvbzzyINELdq1WjvN4.mft (raw, json)
Hash identifier: BYhI11u1m/aqoe4cbal+Xsdt6xiYMzYxWQkBKdu1spA=
Subject key identifier: 5B:9F:BC:B8:B9:1D:CA:1B:77:27:31:53:BF:8F:A4:38:F8:83:C5:6E
Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
Certificate issuer: /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Certificate serial: 019EC36DFE72A1008CF0062B801868CA1D4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
Manifest number: 0F4A
Signing time: Sun 14 Jun 2026 00:00:26 +0000
Manifest this update: Sun 14 Jun 2026 00:00:26 +0000
Manifest next update: Mon 15 Jun 2026 00:00:26 +0000
Files and hashes: 1: 4Okejz2k1ubGfI-GRgB_ARKBmuk.roa (hash: wHN9epTREmpbGi1iOO1PMq2WQBeGFf6WjNTcLZ9jeLg=)
2: KMID1l3y1lvbzzyINELdq1WjvN4.crl (hash: DD2cUTAECreL5sCC4TXGNUDyymLKyhAWDK/86UMikAQ=)
3: PcKBEnG4Fc83PTLXnIgOvRcy3V4.roa (hash: dksZAzhosBbHaXLsuDmV40VTdGY6aq3NK9xY13PmQvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:6d:fe:72:a1:00:8c:f0:06:2b:80:18:68:ca:1d:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Validity
Not Before: Jun 14 00:00:26 2026 GMT
Not After : Jun 15 00:00:26 2026 GMT
Subject: CN=5b9fbcb8b91dca1b77273153bf8fa438f883c56e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b6:3a:3c:2c:17:7f:76:ad:58:ab:69:19:be:
53:d5:80:43:a9:33:d3:11:4d:b8:cd:6d:53:83:9b:
27:87:87:ad:25:02:13:0e:86:cb:aa:68:5f:88:a9:
54:27:de:34:e8:5a:d7:4f:c5:58:75:fc:92:0d:11:
fe:a6:8d:f9:27:15:eb:49:c1:7a:2b:b0:10:81:96:
1e:a7:b6:ae:7c:6e:98:e1:d4:b8:e3:98:92:7e:ec:
d9:25:2d:6f:a1:9b:79:3e:27:04:ec:f1:45:1a:7b:
5d:96:e1:a7:5f:d0:4b:59:7b:6a:10:ec:fc:8f:05:
e5:37:1d:79:36:9e:2a:96:0f:8f:1a:32:d2:97:ef:
9d:aa:6b:a5:2b:f6:db:35:40:22:09:e1:0f:98:bb:
a5:2f:a4:60:6a:ee:7f:0e:49:90:28:a0:bd:ba:1b:
3d:b6:36:6a:27:bd:be:6d:06:71:82:ce:1e:64:40:
be:67:07:41:31:56:38:81:48:d1:c7:22:ad:aa:ae:
d4:dc:a7:99:c3:05:f4:f7:fe:1d:5d:07:bb:0a:93:
b3:72:7f:c7:d1:1e:25:93:48:08:be:53:a1:bd:0a:
3e:36:31:73:cf:69:6a:ba:07:81:27:67:46:29:ae:
76:eb:6a:d5:17:00:f2:06:2c:51:e9:84:94:ce:46:
8f:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:9F:BC:B8:B9:1D:CA:1B:77:27:31:53:BF:8F:A4:38:F8:83:C5:6E
X509v3 Authority Key Identifier:
keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:49:3b:dc:bb:60:d3:ef:8c:17:02:56:10:d5:38:37:14:11:
05:3a:b9:a3:8d:88:96:77:e5:ea:60:79:17:03:68:91:9d:90:
25:5d:f6:84:9f:4c:cd:92:ca:2f:ac:88:3d:73:79:10:38:7d:
24:bc:06:f4:cf:7c:84:95:d4:79:2a:c7:28:36:58:a4:cf:65:
c5:a9:06:c6:c4:27:6f:0a:f1:f3:1a:72:66:cd:21:14:b3:f2:
22:81:6f:64:ea:e0:b6:ff:06:b1:21:56:82:fe:cf:52:f1:42:
ef:b1:ac:5b:cb:8c:71:01:5c:6e:6e:3b:0e:0c:9a:85:36:9e:
0c:13:7c:04:4c:b8:6a:b4:51:12:65:2b:b4:0d:b0:2a:46:a0:
b1:fc:8e:0c:c3:b8:ce:77:c3:87:5d:23:9f:01:81:90:81:9d:
ce:81:db:f6:30:7f:96:f2:e6:3f:33:bb:cf:c5:6c:ee:b7:21:
11:8d:8f:29:d3:f3:59:db:01:94:2e:d7:bf:09:f7:73:43:45:
14:83:04:2c:d1:44:43:6e:b3:86:3e:d5:01:d7:37:fb:0d:46:
46:c9:1e:77:3a:e8:cb:46:58:61:96:21:88:f7:c3:df:e4:bf:
07:fe:f5:f2:30:29:6e:7a:2f:82:31:12:7f:bb:a8:ad:8e:91:
9f:6c:d9:a7
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7Dbf5yoQCM8AYrgBhoyh1MMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YzIwM2Q2NWRmMmQ2NWJkYmNmM2M4ODM0NDJkZGFiNTVh
M2JjZGUwHhcNMjYwNjE0MDAwMDI2WhcNMjYwNjE1MDAwMDI2WjAzMTEwLwYDVQQD
Eyg1YjlmYmNiOGI5MWRjYTFiNzcyNzMxNTNiZjhmYTQzOGY4ODNjNTZlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbY6PCwXf3atWKtpGb5T1YBDqTPT
EU24zW1Tg5snh4etJQITDobLqmhfiKlUJ9406FrXT8VYdfySDRH+po35JxXrScF6
K7AQgZYep7aufG6Y4dS445iSfuzZJS1voZt5PicE7PFFGntdluGnX9BLWXtqEOz8
jwXlNx15Np4qlg+PGjLSl++dqmulK/bbNUAiCeEPmLulL6Rgau5/DkmQKKC9uhs9
tjZqJ72+bQZxgs4eZEC+ZwdBMVY4gUjRxyKtqq7U3KeZwwX09/4dXQe7CpOzcn/H
0R4lk0gIvlOhvQo+NjFzz2lqugeBJ2dGKa5262rVFwDyBixR6YSUzkaPfQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFufvLi5HcobdycxU7+PpDj4g8VuMB8GA1UdIwQY
MBaAFCjCA9Zd8tZb2888iDRC3atVo7zeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmIt
ODg1OTIwNDMwMjZmLzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mNS80OWMzZTEtMWY3Zi00ZTU4LWIwMmItODg1OTIwNDMwMjZm
LzEvS01JRDFsM3kxbHZienp5SU5FTGRxMVdqdk40LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASEk73Ltg
0++MFwJWENU4NxQRBTq5o42Ilnfl6mB5FwNokZ2QJV32hJ9MzZLKL6yIPXN5EDh9
JLwG9M98hJXUeSrHKDZYpM9lxakGxsQnbwrx8xpyZs0hFLPyIoFvZOrgtv8GsSFW
gv7PUvFC77GsW8uMcQFcbm47DgyahTaeDBN8BEy4arRREmUrtA2wKkagsfyODMO4
znfDh10jnwGBkIGdzoHb9jB/lvLmPzO7z8Vs7rchEY2PKdPzWdsBlC7Xvwn3c0NF
FIMELNFEQ26zhj7VAdc3+w1GRskedzroy0ZYYZYhiPfD3+S/B/718jApbnovgjES
f7uorY6Rn2zZpw==
-----END CERTIFICATE-----
Generated at Sun Jun 14 09:56:31 2026 by rpki-client