Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft (raw, json)
Hash identifier: if976SyPLXDirp2SKGWoBS1Q04DIJiePTLbt0m2ohzc=
Subject key identifier: B6:0C:78:1F:EB:B0:5D:50:93:1B:C1:CC:00:85:26:7A:85:E8:8F:45
Authority key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Certificate issuer: /CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Certificate serial: 019E1F11873472F31CB64882E04DDE702C23
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
Manifest number: 0FA1
Signing time: Wed 13 May 2026 02:01:42 +0000
Manifest this update: Wed 13 May 2026 02:01:42 +0000
Manifest next update: Thu 14 May 2026 02:01:42 +0000
Files and hashes: 1: 8MjIJrMCtESuP4QqUGedaulHiEY.roa (hash: vbuM2+Vw7my75+nhubY19iz46sd5x6zE3G/wV0tOkZ8=)
2: KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl (hash: wwFBhqffUc49Cen4794tBFdWmnZrRiDWgC/RbhRaBXg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:87:34:72:f3:1c:b6:48:82:e0:4d:de:70:2c:23
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Validity
Not Before: May 13 02:01:42 2026 GMT
Not After : May 14 02:01:42 2026 GMT
Subject: CN=b60c781febb05d50931bc1cc0085267a85e88f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fa:3d:43:7a:87:f4:02:9e:70:5f:01:39:f1:
40:fe:11:2e:e2:ab:a9:9a:6b:e6:01:7f:af:36:eb:
6a:c6:22:bd:49:cb:a7:01:f2:9d:53:bd:b3:31:71:
ab:45:82:55:d9:72:41:9f:55:d6:5f:9f:27:10:d9:
7b:31:3c:5f:a6:ac:b1:7f:48:9c:58:19:b6:73:4a:
05:5c:e6:df:a6:39:17:1d:9a:03:36:f1:06:35:ca:
fd:a7:c3:a1:e3:1d:f6:28:79:ec:45:af:67:45:d8:
ad:8a:ce:f9:09:95:9d:3f:bc:e0:f0:a3:3d:1e:f8:
4f:19:dc:fe:55:4f:5c:0a:ee:5a:e7:69:9e:a4:32:
f6:75:69:39:bf:7b:02:b8:dd:24:f8:16:e4:78:d9:
44:cf:8e:3f:57:c5:a4:db:b5:3b:4e:73:51:4e:bc:
89:9a:53:1a:93:9a:d6:0a:9c:87:29:bd:3b:5a:7c:
96:c4:95:a8:7e:0c:fe:7a:e3:88:1b:e8:c8:69:f4:
bf:56:30:6c:54:d4:dc:d3:80:ea:95:33:39:2b:fa:
06:4f:63:29:ef:33:81:a9:5b:9c:44:6b:58:96:09:
23:be:2a:69:3d:39:49:2d:ca:5a:16:33:91:7e:dd:
e1:85:45:23:7c:cc:22:3a:0b:eb:9b:eb:fc:94:65:
c2:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0C:78:1F:EB:B0:5D:50:93:1B:C1:CC:00:85:26:7A:85:E8:8F:45
X509v3 Authority Key Identifier:
keyid:29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:24:42:00:23:77:ba:63:9e:78:26:32:dc:d3:e7:8e:e0:8d:
fd:2b:71:cb:76:9d:c4:09:16:c3:93:61:b4:b2:9c:4d:ff:a6:
f1:6d:be:a9:c5:16:0e:19:bb:c8:45:15:48:5d:af:46:03:69:
f9:ee:41:10:0e:bf:bf:e7:41:1b:08:24:1a:fc:cf:bc:36:34:
91:e1:d3:53:d3:3a:58:60:cf:41:bf:54:94:c2:f8:84:e7:7c:
95:ca:77:5b:6d:3e:c0:34:33:63:36:0f:42:c7:01:6c:a4:59:
8b:b9:c5:fb:71:39:35:c1:9c:f2:ed:b3:7f:3a:1a:9c:f7:1a:
57:b3:7c:29:ff:e5:88:09:c0:e2:f0:c6:35:1c:30:6b:8f:d1:
71:d2:7e:9d:4a:e5:a8:a0:4b:41:d4:9c:df:6a:0c:7c:86:05:
fd:cd:00:b0:4b:6c:96:f2:f1:50:ef:1a:da:91:cd:27:64:32:
05:76:78:cf:c9:58:cb:2e:04:bf:ae:07:6c:ac:96:3c:bb:6c:
79:e5:14:6b:d2:58:10:f0:53:c4:0a:04:78:7f:98:d9:1e:86:
f8:86:57:9c:4c:a9:7e:9d:3c:10:78:d1:8c:28:17:d5:26:4e:
06:87:a5:01:c7:51:9b:3e:f4:84:3b:93:87:a2:44:84:ce:1a:
6d:60:d4:18
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4fEYc0cvMctkiC4E3ecCwjMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5NzE5NGY0YjUyYjlmZjQzM2YyYmYwZDE2YjU4YzExYzdj
ZjExMzEwHhcNMjYwNTEzMDIwMTQyWhcNMjYwNTE0MDIwMTQyWjAzMTEwLwYDVQQD
EyhiNjBjNzgxZmViYjA1ZDUwOTMxYmMxY2MwMDg1MjY3YTg1ZTg4ZjQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/o9Q3qH9AKecF8BOfFA/hEu4qup
mmvmAX+vNutqxiK9ScunAfKdU72zMXGrRYJV2XJBn1XWX58nENl7MTxfpqyxf0ic
WBm2c0oFXObfpjkXHZoDNvEGNcr9p8Oh4x32KHnsRa9nRditis75CZWdP7zg8KM9
HvhPGdz+VU9cCu5a52mepDL2dWk5v3sCuN0k+BbkeNlEz44/V8Wk27U7TnNRTryJ
mlMak5rWCpyHKb07WnyWxJWofgz+euOIG+jIafS/VjBsVNTc04DqlTM5K/oGT2Mp
7zOBqVucRGtYlgkjvippPTlJLcpaFjORft3hhUUjfMwiOgvrm+v8lGXCVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLYMeB/rsF1QkxvBzACFJnqF6I9FMB8GA1UdIwQY
MBaAFClxlPS1K5/0M/K/DRa1jBHHzxExMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1hHVTlMVXJuX1F6OHI4TkZyV01FY2ZQRVRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS84MGI0YzAtMDZjYi00NDI0LTlkZDUt
NWE5ODg5MzFlYTMzLzEvS1hHVTlMVXJuX1F6OHI4TkZyV01FY2ZQRVRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84NS84MGI0YzAtMDZjYi00NDI0LTlkZDUtNWE5ODg5MzFlYTMz
LzEvS1hHVTlMVXJuX1F6OHI4TkZyV01FY2ZQRVRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHCRCACN3
umOeeCYy3NPnjuCN/Stxy3adxAkWw5NhtLKcTf+m8W2+qcUWDhm7yEUVSF2vRgNp
+e5BEA6/v+dBGwgkGvzPvDY0keHTU9M6WGDPQb9UlML4hOd8lcp3W20+wDQzYzYP
QscBbKRZi7nF+3E5NcGc8u2zfzoanPcaV7N8Kf/liAnA4vDGNRwwa4/RcdJ+nUrl
qKBLQdSc32oMfIYF/c0AsEtslvLxUO8a2pHNJ2QyBXZ4z8lYyy4Ev64HbKyWPLts
eeUUa9JYEPBTxAoEeH+Y2R6G+IZXnEypfp08EHjRjCgX1SZOBoelAcdRmz70hDuT
h6JEhM4abWDUGA==
-----END CERTIFICATE-----
Generated at Wed May 13 05:31:12 2026 by rpki-client