Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: 4TEYepSCMbyx9DTLSgCCtHd8swUwChsI2lk5KHu9wJk=
Subject key identifier: 35:D9:30:2C:77:1E:D0:D0:E5:00:F1:B3:13:53:7E:9D:31:FC:E7:1E
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 019E1F10C6A6DD15436DF0DF0D32583607FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 190C
Signing time: Wed 13 May 2026 02:00:53 +0000
Manifest this update: Wed 13 May 2026 02:00:53 +0000
Manifest next update: Thu 14 May 2026 02:00:53 +0000
Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: 7msia7KwjE1W6dnU6W6x/xso9jWd6RWuXr1eg472gC0=)
2: Ty9RnsnK3EDnysBvDikYp04oggo.roa (hash: oWmmAPgiMnRBuVQF4Wy8CU51nd17TmIJOxZ3k8HDTIo=)
3: VmNdh6laZxyVCC_g82mHnoN0sjg.roa (hash: fCIZoEHtubiL+1CEYbmHMAzOgcDhgRWMLUT6hfUtnUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:10:c6:a6:dd:15:43:6d:f0:df:0d:32:58:36:07:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: May 13 02:00:53 2026 GMT
Not After : May 14 02:00:53 2026 GMT
Subject: CN=35d9302c771ed0d0e500f1b313537e9d31fce71e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9d:2f:f0:3d:69:c2:ba:49:4a:ba:f3:23:8a:80:
1b:fe:87:4d:90:41:2d:3b:93:13:83:28:70:69:77:
f3:27:01:6a:67:70:57:63:5a:9a:6c:89:47:4c:1b:
13:ba:d6:af:3c:fa:61:22:3f:72:fb:ed:8e:1d:33:
0e:c7:84:0f:56:5a:2a:90:f8:0a:df:48:1c:51:26:
b7:37:82:b1:02:85:85:66:ed:63:03:d7:0d:2d:38:
03:45:a2:72:bc:f8:1c:5e:b2:06:f1:a7:00:be:b1:
ec:8e:14:3b:73:cf:68:7b:6e:c2:ea:5d:42:72:72:
ce:7a:77:40:e5:b6:c3:c0:12:bd:0c:64:7b:9a:ee:
89:2f:51:d9:4a:6f:f2:f3:e7:41:2f:51:57:c5:9a:
6f:44:24:65:07:aa:3a:ba:93:47:22:bd:89:6b:5f:
33:83:40:0a:7c:09:96:cc:04:0e:7e:7c:2e:08:08:
e3:9d:f3:70:15:21:11:91:95:fa:6b:58:d9:bd:8e:
41:9c:7c:86:18:5d:1c:a8:f3:18:4f:be:2c:4d:8f:
57:ae:97:97:4c:c0:fe:3d:8f:0b:2b:ba:6e:91:60:
d1:2e:c9:eb:57:c4:35:5f:13:9e:5f:7e:37:d2:26:
e4:1c:6a:82:7e:38:93:ee:56:0a:de:29:5a:8d:5a:
5c:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:D9:30:2C:77:1E:D0:D0:E5:00:F1:B3:13:53:7E:9D:31:FC:E7:1E
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:19:0e:b9:79:30:8f:23:bd:52:ac:b7:6f:15:56:91:37:49:
5f:73:e9:68:40:73:45:bd:d5:e7:4f:a4:83:29:60:bc:5f:21:
dc:80:06:64:54:6d:98:73:1e:38:2e:bd:e9:cf:6a:7a:00:5e:
72:a6:83:8d:66:cd:b1:15:6f:40:7e:fb:e1:e4:c6:d1:30:3e:
3c:78:1e:53:d1:d1:8b:cf:8e:34:36:1b:b8:30:a6:10:ce:e5:
e5:d1:1a:b6:42:18:18:74:7b:3b:a4:92:c2:5a:cb:d5:60:31:
08:d0:0f:3d:55:f7:e9:81:91:c8:c5:e5:13:2c:c1:08:17:38:
39:19:1e:94:83:0d:d8:12:a7:51:7c:b3:f4:d5:87:bb:fd:df:
ec:8f:13:30:48:ed:11:92:4f:1d:6e:ba:b6:f3:fa:e1:2a:93:
33:c0:74:e9:50:27:0d:c3:db:94:b5:aa:34:03:60:c7:72:c8:
6d:65:9d:c2:94:fd:af:da:81:30:4e:58:1c:2c:0d:06:7b:38:
3e:98:72:8d:58:a6:7a:46:d0:6e:fb:07:f0:88:21:7d:63:ab:
06:da:aa:bc:90:85:ad:d7:53:9e:ee:c9:be:02:94:92:47:0e:
a5:c1:5b:6b:a5:b7:5b:1d:68:df:4b:ff:2a:b6:15:bd:d2:35:
9b:57:9a:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 12:03:59 2026 by rpki-client