Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
File: Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft (raw, json)
Hash identifier: fA6ougv4qAMzCoPO8NO/kWjwgWXW7Ncj4TF+RzN3hpI=
Subject key identifier: E3:04:21:48:6C:D2:1A:A3:11:A7:3F:B5:7D:B2:AB:31:96:43:71:93
Authority key identifier: 29:B8:75:5B:C5:3E:F1:77:46:BD:29:6E:F2:8B:A9:00:CD:98:FB:E0
Certificate issuer: /CN=29b8755bc53ef17746bd296ef28ba900cd98fbe0
Certificate serial: 019E1D90334A6050DBF1F19CC667043E5F9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
Manifest number: 0258
Signing time: Tue 12 May 2026 19:00:49 +0000
Manifest this update: Tue 12 May 2026 19:00:49 +0000
Manifest next update: Wed 13 May 2026 19:00:49 +0000
Files and hashes: 1: 6DNwF30LCDUKZspUSvniSglbK78.asa (hash: ct9NJHmgg+w+Ve0ZATSvPFBlaRSn0jlVfWPGuCu05Cw=)
2: Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl (hash: DwprKcFgQYwYeFo+t7NH5g8bhn23g0Yrx0a9AMnvavw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 19:00:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:90:33:4a:60:50:db:f1:f1:9c:c6:67:04:3e:5f:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b8755bc53ef17746bd296ef28ba900cd98fbe0
Validity
Not Before: May 12 19:00:49 2026 GMT
Not After : May 13 19:00:49 2026 GMT
Subject: CN=e30421486cd21aa311a73fb57db2ab3196437193
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:aa:bb:a3:0a:06:c3:9d:f3:dd:b9:24:af:cd:
be:9d:2d:b5:a1:22:71:2e:4d:a2:6b:1e:bc:51:ea:
46:f2:64:3e:b7:85:40:5a:25:dc:bf:d6:78:07:81:
ef:ad:ac:5f:76:0a:7a:b9:99:9e:44:b8:0a:eb:46:
1f:c4:da:7f:23:eb:70:47:b5:34:61:7e:b8:ff:b2:
c0:8e:1d:3a:a4:94:03:d1:0d:a3:ad:1b:9e:cf:6c:
b1:d1:1e:7d:96:58:b5:bd:aa:4c:af:63:55:23:60:
ca:aa:31:4c:f2:a0:30:99:24:3b:80:0e:74:31:e4:
ab:c6:72:7e:7e:73:6a:d0:3a:e9:b0:d4:8d:c8:fd:
e5:a5:c6:4a:5b:74:36:0e:35:4b:0b:f4:c5:9d:aa:
37:2d:e4:bd:32:7c:6e:50:62:71:a8:00:81:78:03:
20:6b:51:18:ed:f3:48:ab:e1:af:b1:25:3b:c0:ee:
51:60:90:9d:8c:f9:3b:fd:19:2d:c9:93:ea:d4:bd:
83:0c:3d:5a:a0:e1:8e:ac:3a:f1:58:e2:b6:41:22:
c7:78:d6:81:42:a6:e8:95:80:18:1a:2c:6d:77:64:
eb:a3:0a:d0:e1:d8:80:d3:24:7c:21:12:82:0f:65:
8f:43:2a:d3:3d:20:01:66:47:45:c3:9c:71:48:6e:
a4:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:04:21:48:6C:D2:1A:A3:11:A7:3F:B5:7D:B2:AB:31:96:43:71:93
X509v3 Authority Key Identifier:
keyid:29:B8:75:5B:C5:3E:F1:77:46:BD:29:6E:F2:8B:A9:00:CD:98:FB:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:d7:cd:1b:f9:09:3f:1a:70:97:1f:b7:3b:e5:d5:9e:e1:4b:
00:b7:45:f1:38:d2:c0:40:63:68:c9:3b:26:b2:23:3e:0a:d0:
56:e0:76:7c:9f:76:33:dd:3e:cb:2d:0c:f8:91:2e:51:ed:20:
e8:96:8c:e7:fd:6e:56:cb:e0:6b:38:ea:f6:99:d5:8c:52:b0:
20:b4:12:71:d6:e2:04:e7:32:8f:11:eb:01:0e:af:79:00:bf:
8b:6d:b3:2f:90:b6:e8:32:06:0a:0a:f0:a7:59:bc:6d:6b:80:
ef:26:e2:94:44:3a:e1:2c:44:79:11:23:ac:b5:9d:df:fb:08:
df:45:3a:fe:de:ae:65:9e:15:9a:6f:da:ff:e2:65:94:65:65:
68:f0:5b:0d:d5:aa:ec:40:a5:ab:ce:56:4a:4d:52:12:63:ae:
15:62:a0:3a:56:5b:5f:f9:d7:6b:a1:45:6f:0b:ee:52:15:88:
47:32:4c:88:96:8c:11:ea:4a:af:0f:22:48:84:ba:be:10:d0:
fa:87:43:3a:8d:20:ea:49:dc:c6:37:10:5d:73:87:9b:78:94:
93:11:01:cc:1f:79:86:c2:d2:5c:7e:35:31:9b:f9:f5:c1:70:
42:25:fd:6e:df:24:60:50:f7:08:fb:c4:90:f9:e8:0c:68:d4:
8e:8b:aa:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 03:39:19 2026 by rpki-client