Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
File: kpbYTmTVXsgSR2-4BvD-daCL-ys.mft (raw, json)
Hash identifier: /WUcGB5u7Ba3+J2vXMyIaAe+Mq6g4Jk6xEZiixSEjR4=
Subject key identifier: 6D:C7:DA:B2:40:C0:F3:CD:62:AD:1D:4D:DB:3B:8F:46:01:AB:63:15
Authority key identifier: 92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
Certificate issuer: /CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Certificate serial: 019E20FFB81AADE1E0F8482218CE354EDA3F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
Manifest number: 1909
Signing time: Wed 13 May 2026 11:01:30 +0000
Manifest this update: Wed 13 May 2026 11:01:30 +0000
Manifest next update: Thu 14 May 2026 11:01:30 +0000
Files and hashes: 1: WMTxNqy5dxe24um7JtSXmDnNRnM.roa (hash: TxZKxHcS8Fj+JFe1cwBosTBaRiZeeZ2HacumzoOW+L8=)
2: kpbYTmTVXsgSR2-4BvD-daCL-ys.crl (hash: Bw4fXPnyvjPBWSJVUZdI69aGyv42WYW7Wj4RVVSBJ3g=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 11:01:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:ff:b8:1a:ad:e1:e0:f8:48:22:18:ce:35:4e:da:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9296d84e64d55ec812476fb806f0fe75a08bfb2b
Validity
Not Before: May 13 11:01:30 2026 GMT
Not After : May 14 11:01:30 2026 GMT
Subject: CN=6dc7dab240c0f3cd62ad1d4ddb3b8f4601ab6315
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:92:ba:14:01:aa:66:61:d7:ef:ae:dc:82:f3:
a7:ef:9e:c1:29:ea:34:92:8a:ba:7c:5b:eb:d3:25:
16:05:4c:1e:04:f4:d3:54:87:82:ae:0e:da:0f:89:
66:8d:99:de:96:7f:9f:14:08:da:83:a6:19:68:fb:
85:2c:a6:9d:c1:0c:9d:9d:b7:ea:77:98:8a:71:12:
f0:77:11:25:78:48:0e:7a:2a:0e:97:a1:12:d0:e7:
98:5c:65:a6:ae:6d:09:cc:ea:e7:8b:79:9c:86:52:
84:ea:45:7f:32:6f:82:89:d8:c9:bf:cd:8d:98:57:
ef:29:b2:26:73:4b:e0:7f:9a:e2:02:fb:5d:ef:92:
bf:99:13:d9:94:3d:c1:39:5a:bd:b5:47:e3:b2:51:
88:c6:cd:b4:05:06:a4:2b:9e:11:d8:46:3b:05:cb:
09:ca:26:eb:55:b0:32:68:0b:ba:04:23:7d:ae:13:
75:b8:40:48:09:da:55:49:95:92:0a:57:f7:fc:63:
db:5c:e5:a8:a6:6a:21:2c:a6:12:2b:02:b0:ee:21:
4a:2f:02:ec:2f:eb:4d:d2:9b:5c:5a:9a:4d:b0:1c:
0f:30:ba:ea:75:ba:de:9d:35:1e:43:17:21:8b:ab:
e2:dc:c9:9c:77:4d:32:7c:54:e8:5e:e5:d4:1f:aa:
17:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:C7:DA:B2:40:C0:F3:CD:62:AD:1D:4D:DB:3B:8F:46:01:AB:63:15
X509v3 Authority Key Identifier:
keyid:92:96:D8:4E:64:D5:5E:C8:12:47:6F:B8:06:F0:FE:75:A0:8B:FB:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kpbYTmTVXsgSR2-4BvD-daCL-ys.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/a54eb1-33de-401f-935a-f349284509b7/1/kpbYTmTVXsgSR2-4BvD-daCL-ys.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:d3:39:58:08:e7:40:4d:a3:6e:ae:6e:21:dc:a4:67:dd:04:
ec:ef:06:3a:0c:44:69:5b:c4:4d:fc:e0:da:0d:1b:80:67:16:
5a:df:36:2b:7f:da:89:ce:40:d0:47:4a:b4:fd:ad:51:aa:e4:
de:33:fe:9c:99:4e:0e:c6:de:11:90:2b:b8:36:74:4e:e9:21:
b7:d9:e2:31:f4:b0:8f:97:6c:3a:08:a8:4a:a1:bb:a2:c8:9e:
91:c5:da:f1:75:bb:c8:4e:11:6e:04:76:33:da:9f:1c:1c:11:
99:f6:50:a1:0e:b2:0c:11:b6:7f:45:1c:2f:06:00:b6:0a:51:
c5:e5:bc:6d:47:4c:ec:c5:05:30:e2:68:7d:e3:d5:37:0a:56:
a8:dd:0d:40:11:44:46:0e:93:5a:52:0c:e3:75:18:89:d3:1a:
4e:0e:33:4a:86:d6:4e:36:73:67:cd:f0:82:8e:3f:4a:aa:c4:
7b:f2:2e:77:88:86:a3:3b:08:12:5a:c2:99:76:80:45:f7:a5:
44:0f:5b:51:74:d4:ab:45:49:c5:52:03:ba:0d:73:2a:26:1a:
b0:16:9c:c1:86:e6:83:83:72:55:9f:0f:dd:4b:fb:f2:1f:d8:
61:b7:0f:41:69:8f:5d:6c:bb:4c:a9:46:f8:31:ea:2c:3d:8b:
e4:c0:2a:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4g/7gareHg+EgiGM41Tto/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyOTZkODRlNjRkNTVlYzgxMjQ3NmZiODA2ZjBmZTc1YTA4
YmZiMmIwHhcNMjYwNTEzMTEwMTMwWhcNMjYwNTE0MTEwMTMwWjAzMTEwLwYDVQQD
Eyg2ZGM3ZGFiMjQwYzBmM2NkNjJhZDFkNGRkYjNiOGY0NjAxYWI2MzE1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ZK6FAGqZmHX767cgvOn757BKeo0
koq6fFvr0yUWBUweBPTTVIeCrg7aD4lmjZneln+fFAjag6YZaPuFLKadwQydnbfq
d5iKcRLwdxEleEgOeioOl6ES0OeYXGWmrm0JzOrni3mchlKE6kV/Mm+CidjJv82N
mFfvKbImc0vgf5riAvtd75K/mRPZlD3BOVq9tUfjslGIxs20BQakK54R2EY7BcsJ
yibrVbAyaAu6BCN9rhN1uEBICdpVSZWSClf3/GPbXOWopmohLKYSKwKw7iFKLwLs
L+tN0ptcWppNsBwPMLrqdbrenTUeQxchi6vi3Mmcd00yfFToXuXUH6oXTwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFG3H2rJAwPPNYq0dTds7j0YBq2MVMB8GA1UdIwQY
MBaAFJKW2E5k1V7IEkdvuAbw/nWgi/srMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEt
ZjM0OTI4NDUwOWI3LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC81My9hNTRlYjEtMzNkZS00MDFmLTkzNWEtZjM0OTI4NDUwOWI3
LzEva3BiWVRtVFZYc2dTUjItNEJ2RC1kYUNMLXlzLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEtM5WAjn
QE2jbq5uIdykZ90E7O8GOgxEaVvETfzg2g0bgGcWWt82K3/aic5A0EdKtP2tUark
3jP+nJlODsbeEZAruDZ0Tukht9niMfSwj5dsOgioSqG7osiekcXa8XW7yE4RbgR2
M9qfHBwRmfZQoQ6yDBG2f0UcLwYAtgpRxeW8bUdM7MUFMOJofePVNwpWqN0NQBFE
Rg6TWlIM43UYidMaTg4zSobWTjZzZ83wgo4/SqrEe/Iud4iGozsIElrCmXaARfel
RA9bUXTUq0VJxVIDug1zKiYasBacwYbmg4NyVZ8P3Uv78h/YYbcPQWmPXWy7TKlG
+DHqLD2L5MAqjA==
-----END CERTIFICATE-----
Generated at Wed May 13 19:48:52 2026 by rpki-client