Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: xhXQvY8rEEPdKMk99dFb6kqyaW5LSBm8Tlngeub014w=
Subject key identifier: 02:BA:C9:46:F4:73:81:81:CD:D6:D4:33:47:2A:06:7A:89:23:90:33
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 019E1EA39C071436F30F83DE99E2A66CEE93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 1646
Signing time: Wed 13 May 2026 00:01:39 +0000
Manifest this update: Wed 13 May 2026 00:01:39 +0000
Manifest next update: Thu 14 May 2026 00:01:39 +0000
Files and hashes: 1: 1-z20vDfkn7oH-6wUhtZ7pUOpXYs.roa (hash: 4MFRLpbPJz7onF3ec6CHT+GVAOztKot1i4cNl9/RUGQ=)
2: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: Zosz4tBC4h/YLEG10sYbab7YWR5zYUvJUD+CFcFmax4=)
3: O21Shcq_z6RKIQVhghQ8x3iEUgo.roa (hash: PftCITy+sH9MILDPnvPA0rgTafRE24Enke6NGZ2wU40=)
4: kip9OEz8XKCqejVGiyHb4UeVJqw.roa (hash: 2JQk1BgdQDCMPFy2Bnpli4/vgD3QHxPKM4wyX0aSciw=)
5: qFN4BBxdmHy_3BcnNOupfLTZLMo.roa (hash: BnnmcXeCam4+KhT/CdouCX5HwDOQfbwphY/d8ikHz1E=)
6: uak-SP6C0SdGYf4Tcy5QLvzCEvQ.roa (hash: 5hi2l5GuzQIHHEKLjg//xukNKdrAlFGmuJKbjmJZ2aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 00:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:a3:9c:07:14:36:f3:0f:83:de:99:e2:a6:6c:ee:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: May 13 00:01:39 2026 GMT
Not After : May 14 00:01:39 2026 GMT
Subject: CN=02bac946f4738181cdd6d433472a067a89239033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:07:c7:55:51:d3:8d:7e:42:c7:b3:8a:21:f5:
a5:a6:e5:25:0a:fc:8b:6e:12:08:a4:64:d9:80:87:
d6:e7:27:fe:ae:b1:7b:0a:3f:d2:12:7c:88:a8:6b:
51:2f:ba:2b:bd:ef:bc:75:34:36:55:d6:82:3a:f6:
7b:f2:13:96:42:a4:f0:3f:15:ed:29:1b:c2:49:da:
23:3e:94:54:1a:f5:12:0e:25:5d:17:3a:29:cc:dc:
f0:0f:2f:5c:bd:f2:77:f2:58:38:7f:79:0a:30:6a:
29:e2:40:f5:94:75:68:36:fa:41:c2:d9:48:b0:6c:
97:0e:2d:86:5a:97:68:47:b2:ef:84:d0:3e:16:7a:
b1:1c:76:62:b6:aa:67:49:af:23:f7:d5:06:ee:f2:
58:be:16:9a:43:3e:6b:d5:da:e0:a9:3e:38:66:88:
b0:94:b1:3e:f3:d3:d3:5d:06:9e:ca:ed:de:06:44:
01:d1:77:91:f8:22:af:c5:c5:d6:d6:cb:12:51:95:
c6:89:ce:73:63:aa:ba:02:eb:7a:8c:31:98:89:d4:
dd:60:b3:4a:0f:b4:f6:c4:bb:3d:41:ea:88:39:ef:
b4:ea:c2:2e:22:3e:9d:8f:60:23:d1:67:5f:00:06:
e6:a8:b6:fd:a9:62:fc:42:73:73:f3:2d:cc:b3:f0:
69:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:BA:C9:46:F4:73:81:81:CD:D6:D4:33:47:2A:06:7A:89:23:90:33
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
22:f6:20:d4:17:52:f7:f3:b0:ab:5b:1b:66:1d:e9:b9:b7:dc:
32:a7:20:2c:81:bb:28:20:65:b2:e9:d7:73:cc:e8:ac:dd:6e:
d6:33:7c:11:10:bc:a9:96:7c:1f:7a:76:e6:6f:32:2f:b7:bc:
9c:49:1f:68:7e:e1:89:ee:ec:0d:f0:b5:40:a3:5a:91:b2:83:
f0:9e:eb:ec:f9:ae:53:b6:98:e3:45:92:b8:b3:c1:33:b8:19:
46:8b:cb:f1:65:bb:61:fd:f1:97:11:e6:86:38:fa:1b:34:6f:
93:49:ea:51:0c:bc:39:5b:1a:1c:2d:dc:87:d7:1f:db:4c:da:
a6:59:54:bd:29:84:76:7b:d1:f4:3a:9c:84:ad:ce:23:bb:db:
31:0e:e3:4b:b6:30:9f:de:c5:43:f7:f8:b0:c2:62:19:ed:73:
4b:a5:3c:b9:bc:85:43:2b:e1:29:84:05:01:7d:7b:fa:f4:bc:
9a:74:4f:ca:b0:ec:b8:0c:0b:b6:e3:8e:0c:e0:55:5f:0d:a1:
84:01:38:90:26:15:7c:bf:5e:cf:6d:d0:bb:f5:80:17:da:df:
f1:4c:e4:62:4d:93:04:c7:1e:68:45:38:9d:76:66:4d:dc:8c:
01:12:3a:49:13:28:9a:d3:38:cd:9a:19:52:db:e1:f5:c9:2a:
6a:8d:71:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4eo5wHFDbzD4PemeKmbO6TMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhZjVlNDg2NmJhMDk4MjAxMjRhNmU1MTExMDRmYzQxZmE1
NDE5OTUwHhcNMjYwNTEzMDAwMTM5WhcNMjYwNTE0MDAwMTM5WjAzMTEwLwYDVQQD
EygwMmJhYzk0NmY0NzM4MTgxY2RkNmQ0MzM0NzJhMDY3YTg5MjM5MDMzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsgfHVVHTjX5Cx7OKIfWlpuUlCvyL
bhIIpGTZgIfW5yf+rrF7Cj/SEnyIqGtRL7orve+8dTQ2VdaCOvZ78hOWQqTwPxXt
KRvCSdojPpRUGvUSDiVdFzopzNzwDy9cvfJ38lg4f3kKMGop4kD1lHVoNvpBwtlI
sGyXDi2GWpdoR7LvhNA+FnqxHHZitqpnSa8j99UG7vJYvhaaQz5r1drgqT44Zoiw
lLE+89PTXQaeyu3eBkQB0XeR+CKvxcXW1ssSUZXGic5zY6q6Aut6jDGYidTdYLNK
D7T2xLs9QeqIOe+06sIuIj6dj2Aj0WdfAAbmqLb9qWL8QnNz8y3Ms/BpKwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAK6yUb0c4GBzdbUM0cqBnqJI5AzMB8GA1UdIwQY
MBaAFCr15IZroJggEkpuUREE/EH6VBmVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2Qt
YzMyMGU1MGEzYzc5LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8yNTI3NjEtMDE5YS00ZGU1LTk1N2QtYzMyMGU1MGEzYzc5
LzEvS3ZYa2htdWdtQ0FTU201UkVRVDhRZnBVR1pVLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIvYg1BdS
9/Owq1sbZh3pubfcMqcgLIG7KCBlsunXc8zorN1u1jN8ERC8qZZ8H3p25m8yL7e8
nEkfaH7hie7sDfC1QKNakbKD8J7r7PmuU7aY40WSuLPBM7gZRovL8WW7Yf3xlxHm
hjj6GzRvk0nqUQy8OVsaHC3ch9cf20zapllUvSmEdnvR9DqchK3OI7vbMQ7jS7Yw
n97FQ/f4sMJiGe1zS6U8ubyFQyvhKYQFAX17+vS8mnRPyrDsuAwLtuOODOBVXw2h
hAE4kCYVfL9ez23Qu/WAF9rf8UzkYk2TBMceaEU4nXZmTdyMARI6SRMomtM4zZoZ
Utvh9ckqao1xGA==
-----END CERTIFICATE-----
Generated at Wed May 13 11:03:14 2026 by rpki-client