Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: 1uyKkHUnyLFkcUQLxh3AzP422Dmew1fIQNH/kshJsMs=
Subject key identifier: 42:A5:45:21:68:84:13:D1:74:BC:40:43:A1:E3:ED:E1:38:55:D0:2A
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019E1E350129B31D62742CE2B1B0CDE4D056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 06B5
Signing time: Tue 12 May 2026 22:00:50 +0000
Manifest this update: Tue 12 May 2026 22:00:50 +0000
Manifest next update: Wed 13 May 2026 22:00:50 +0000
Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=)
2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=)
3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: tiZA/FNq90sfS5e60Ug1/A173gtxU1+wIJ7dZLrePa0=)
5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=)
6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 22:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:35:01:29:b3:1d:62:74:2c:e2:b1:b0:cd:e4:d0:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: May 12 22:00:50 2026 GMT
Not After : May 13 22:00:50 2026 GMT
Subject: CN=42a54521688413d174bc4043a1e3ede13855d02a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:6b:2c:61:0c:44:02:c4:45:61:19:5f:5a:19:
90:6d:3c:4b:27:65:4c:6d:72:74:19:69:16:c6:0c:
66:bb:79:ae:ed:0a:e0:ba:a3:2c:fe:c4:25:b1:e6:
e5:93:3d:f7:6b:a3:ba:97:89:1e:bf:b8:83:8d:13:
48:f3:2e:b3:78:23:5a:4d:9d:4e:8b:a7:62:9d:f4:
a5:c2:f1:57:61:a8:1a:7a:2d:a3:47:81:14:4a:40:
06:11:72:c4:49:ea:b7:60:c3:c0:b9:9b:ec:b6:26:
22:2b:9a:c0:78:25:d6:a9:d1:9b:26:a0:29:8f:f6:
2f:e4:69:f7:ae:91:4c:e8:f9:0f:a0:ae:d3:7b:9e:
df:b8:12:0f:2d:b4:d6:35:0c:7e:13:c7:cb:e3:75:
25:a7:e9:77:31:e5:f8:c1:4c:3a:7d:a6:14:fa:70:
0b:46:87:a6:e5:b7:3d:79:46:60:50:6f:31:29:b5:
7b:4a:1d:69:6d:cf:e4:5b:f7:11:fd:f7:b8:e1:90:
73:2c:00:11:e0:06:e4:2d:f3:15:c4:eb:c5:63:84:
08:31:e0:8a:46:eb:c7:bd:60:34:9e:51:66:d2:2f:
f2:a1:f1:c3:af:84:22:de:65:30:92:27:11:22:0f:
e4:29:65:1b:83:2c:98:93:c1:85:be:56:df:0e:51:
a5:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
42:A5:45:21:68:84:13:D1:74:BC:40:43:A1:E3:ED:E1:38:55:D0:2A
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
52:3d:7c:4c:b0:97:d0:2a:8d:f0:fa:17:1a:8b:72:1f:aa:71:
27:f0:5c:52:44:95:8f:ae:38:8d:1a:56:ec:ae:a3:24:2c:93:
e8:72:fe:ac:02:df:d0:a9:41:0a:26:c3:23:f4:eb:80:ea:ad:
29:ea:84:70:3c:b2:5d:dd:a7:6a:4e:7f:a0:36:31:f0:d2:27:
f9:bc:ab:42:6d:5c:10:d0:b2:2e:0c:f5:c4:9a:5a:53:42:12:
69:70:c5:cf:90:de:fb:86:25:00:b4:bc:9a:64:21:fb:c5:f6:
bb:2c:75:f4:fe:44:e4:b7:5a:10:7c:86:25:39:28:b7:d2:6c:
95:32:96:eb:45:05:1b:68:c0:0b:88:d8:fb:fe:26:e7:e3:0c:
f3:8b:c4:c3:f8:41:73:e5:38:73:55:ef:8e:53:fc:f9:17:dc:
d4:19:18:31:cc:79:5a:fd:4d:62:69:c1:3b:b4:38:a9:5f:cf:
2b:a8:5e:95:df:f9:a5:32:8f:62:ba:8b:dd:37:5e:c9:00:0e:
2f:44:71:88:ac:d6:b2:b3:72:bb:e3:0f:74:44:2f:37:39:92:
41:e6:94:31:39:b3:69:45:78:e9:d5:6f:41:9a:25:4c:71:ed:
f1:13:bd:bd:d2:ca:59:bd:ce:95:9e:94:c3:ef:ae:a2:4e:b5:
89:c8:67:04
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eNQEpsx1idCzisbDN5NBWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjYwNTEyMjIwMDUwWhcNMjYwNTEzMjIwMDUwWjAzMTEwLwYDVQQD
Eyg0MmE1NDUyMTY4ODQxM2QxNzRiYzQwNDNhMWUzZWRlMTM4NTVkMDJhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmssYQxEAsRFYRlfWhmQbTxLJ2VM
bXJ0GWkWxgxmu3mu7QrguqMs/sQlseblkz33a6O6l4kev7iDjRNI8y6zeCNaTZ1O
i6dinfSlwvFXYagaei2jR4EUSkAGEXLESeq3YMPAuZvstiYiK5rAeCXWqdGbJqAp
j/Yv5Gn3rpFM6PkPoK7Te57fuBIPLbTWNQx+E8fL43Ulp+l3MeX4wUw6faYU+nAL
Roem5bc9eUZgUG8xKbV7Sh1pbc/kW/cR/fe44ZBzLAAR4AbkLfMVxOvFY4QIMeCK
RuvHvWA0nlFm0i/yofHDr4Qi3mUwkicRIg/kKWUbgyyYk8GFvlbfDlGltQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEKlRSFohBPRdLxAQ6Hj7eE4VdAqMB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUj18TLCX
0CqN8PoXGotyH6pxJ/BcUkSVj644jRpW7K6jJCyT6HL+rALf0KlBCibDI/TrgOqt
KeqEcDyyXd2nak5/oDYx8NIn+byrQm1cENCyLgz1xJpaU0ISaXDFz5De+4YlALS8
mmQh+8X2uyx19P5E5LdaEHyGJTkot9JslTKW60UFG2jAC4jY+/4m5+MM84vEw/hB
c+U4c1XvjlP8+Rfc1BkYMcx5Wv1NYmnBO7Q4qV/PK6held/5pTKPYrqL3TdeyQAO
L0RxiKzWsrNyu+MPdEQvNzmSQeaUMTmzaUV46dVvQZolTHHt8RO9vdLKWb3OlZ6U
w++uok61ichnBA==
-----END CERTIFICATE-----
Generated at Wed May 13 06:53:17 2026 by rpki-client