Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: 6hsvtNV0R8O5yoyBAXw9ZdGADmh4rK0orSAaBzBLc6k=
Subject key identifier: D2:94:E5:15:67:4E:F5:F5:65:93:E9:CE:87:27:0C:75:40:8B:FF:56
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019E1F7F889AAE05FD362555B68A976DAF7E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 04FA
Signing time: Wed 13 May 2026 04:01:51 +0000
Manifest this update: Wed 13 May 2026 04:01:51 +0000
Manifest next update: Thu 14 May 2026 04:01:51 +0000
Files and hashes: 1: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: o5jCSBOkgRsWBCPUL91Ba1tSsZaYUKJH4fBbmqcezLU=)
2: bHxNQUrJC8Eh62QodMXQrjbnmgg.roa (hash: 1d3ZqMZQAbRLtC6TZNo/vpwZQcPk90gTwtcmQgBCgII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 04:01:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7f:88:9a:ae:05:fd:36:25:55:b6:8a:97:6d:af:7e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: May 13 04:01:51 2026 GMT
Not After : May 14 04:01:51 2026 GMT
Subject: CN=d294e515674ef5f56593e9ce87270c75408bff56
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:90:43:29:61:02:ef:c2:90:ce:4a:05:e2:bb:
0f:40:d5:06:6c:18:ef:f9:9b:61:a9:67:ae:76:d2:
40:02:08:d4:6e:1a:dd:11:40:3d:c8:29:ca:d7:4a:
59:76:82:c1:6e:97:03:d9:f8:9b:d6:8d:61:36:26:
fb:4f:16:1b:be:cb:de:78:b4:9c:16:eb:2d:58:ac:
99:17:7e:6f:cf:1b:e2:3c:17:3e:e1:3b:85:48:84:
09:52:6d:3c:0d:c8:89:55:21:dd:f0:4e:d9:4c:c2:
56:85:79:a9:1c:af:da:ae:4d:18:23:8e:2b:7b:17:
f0:0e:09:73:df:a0:d1:7d:c6:87:d1:c3:ec:9c:40:
8a:cf:76:0d:ae:0e:f5:40:3e:5a:50:bd:4a:9c:d3:
82:0f:67:b2:ae:27:23:7c:0a:2b:56:6f:a8:72:8c:
e9:bc:24:5b:83:9c:e5:20:bb:ec:c3:0e:56:a9:20:
71:83:19:b1:69:f2:15:bb:87:2f:c3:b1:0e:ff:05:
95:f2:a6:24:66:ac:69:0e:4a:48:46:70:b7:94:fa:
fd:36:5d:2b:b9:a8:4e:cd:a1:b6:9c:8f:3e:50:8e:
e6:fe:87:31:32:49:20:b9:77:ad:60:5a:69:59:e5:
94:35:09:53:ac:43:b7:02:21:5c:f1:e7:98:e9:ab:
62:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:94:E5:15:67:4E:F5:F5:65:93:E9:CE:87:27:0C:75:40:8B:FF:56
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:29:76:1e:e5:46:ed:25:d2:db:1e:03:46:1b:3e:1c:20:b5:
bc:37:89:08:1b:b9:12:08:23:aa:bc:57:d6:88:fc:b0:34:01:
36:00:18:04:81:a2:21:68:22:58:48:bb:76:29:d8:53:af:d4:
83:1a:fc:25:9b:6a:21:19:f8:96:eb:34:e0:5f:d5:47:f0:ec:
01:e1:21:e8:b7:7a:6b:ce:2f:3b:ef:16:46:a7:3e:02:86:9a:
87:d8:83:77:55:81:51:f6:16:56:58:62:af:c4:31:13:ca:b1:
fa:bc:85:5f:8a:cc:62:df:58:11:6c:b6:12:95:f8:34:d6:37:
5e:17:3a:32:86:33:6c:e3:dd:51:a8:ed:73:0a:eb:56:d0:22:
af:6f:61:c7:a6:dd:95:47:03:c7:05:54:e9:31:ba:75:87:90:
52:7f:18:9a:34:ec:ed:63:c8:1c:a4:d1:c6:75:86:d5:c7:16:
d7:ec:9a:98:91:26:11:16:a9:ba:56:a6:2f:c5:3f:d7:79:6e:
dd:4e:e2:d6:da:07:2f:95:22:6e:00:e0:dc:e0:98:c6:c5:59:
b0:62:32:c8:5b:0d:5f:e1:88:fc:3f:ad:40:15:f4:cc:5e:6e:
18:02:0b:b3:1f:65:f9:47:a2:91:f4:f6:b6:0b:10:20:1b:50:
75:63:47:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:04:00 2026 by rpki-client