Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: Ab3HSz4iPyqlAF0IPG3wq6ylTjIgQdHn1ES9qcJn3X8=
Subject key identifier: 84:C6:A1:CA:6B:2F:E6:DE:74:85:42:BF:12:FB:2F:BF:91:CA:A7:2C
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 019E1DFE33419673F628078E885DC0C8267A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 1296
Signing time: Tue 12 May 2026 21:00:58 +0000
Manifest this update: Tue 12 May 2026 21:00:58 +0000
Manifest next update: Wed 13 May 2026 21:00:58 +0000
Files and hashes: 1: G6JTgK9c0CWNOmQ8QvDityy_X10.roa (hash: 9vVxC4L/PjyVKOIEKo3Aptt5+zq+QCcL31nKvvorwHs=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: cN8uDT7ndbTcdmhMNtxRZEwCqHNIWbSyHn97UbMiojs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:33:41:96:73:f6:28:07:8e:88:5d:c0:c8:26:7a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: May 12 21:00:58 2026 GMT
Not After : May 13 21:00:58 2026 GMT
Subject: CN=84c6a1ca6b2fe6de748542bf12fb2fbf91caa72c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:5b:11:93:38:a8:62:2c:e7:7c:33:3a:24:d9:
9e:c1:81:08:7d:27:38:1e:9a:18:d2:0e:5a:cf:9e:
09:f2:05:12:f9:a1:df:24:06:b4:ba:e9:09:f1:bd:
06:09:93:4c:66:aa:b8:d2:dd:0b:19:93:87:7a:5b:
dd:df:ad:fc:3a:1b:a7:91:e8:c7:5b:2f:35:63:b6:
9b:8b:af:cd:7f:18:a9:6d:36:17:b0:db:3f:9f:78:
2f:93:43:74:5d:d7:85:aa:af:de:d6:68:56:0f:25:
f2:ea:3d:7b:cf:c5:db:2c:c6:b8:16:4d:b0:ce:95:
46:e0:25:da:ac:29:31:12:96:e5:b0:d1:e1:33:90:
e2:c6:98:93:f6:28:3d:c1:46:eb:e4:0d:b0:e3:7d:
9e:61:c2:12:59:7e:86:df:cd:eb:8f:c5:13:11:ea:
3e:76:7e:bd:47:0a:5d:6a:a5:4f:7d:0c:7c:6d:f9:
c8:7b:4e:4b:05:b5:80:54:96:5c:6e:58:8b:dc:a6:
c7:bc:54:ab:8e:7f:62:2d:95:11:97:aa:bd:55:a5:
da:41:79:63:18:6c:e6:3e:11:3f:57:e9:85:1b:38:
de:bc:c0:1c:d1:80:9a:5a:b0:de:af:62:2b:bd:3e:
97:d7:27:c7:df:63:21:d2:84:34:2f:c0:5d:39:00:
99:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:C6:A1:CA:6B:2F:E6:DE:74:85:42:BF:12:FB:2F:BF:91:CA:A7:2C
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:f9:63:b8:0a:ff:78:ba:d7:c0:13:c3:83:e2:91:d0:9f:89:
98:06:4e:65:6c:b2:47:80:e3:bb:5f:13:71:8c:ea:e7:1f:ac:
22:81:fa:8a:f2:3c:d9:55:87:e4:9e:d1:c2:59:8e:d0:ae:4e:
2f:09:a2:44:10:b3:f3:f8:7f:83:ff:02:82:eb:32:30:11:5b:
3d:84:ee:15:66:b3:8f:33:b5:8d:82:a5:03:2f:98:7b:71:01:
06:d2:89:bc:93:1e:41:23:79:53:0e:05:93:c5:24:13:64:d9:
df:45:2a:c4:8f:05:d9:cb:f6:b2:50:16:5b:20:37:5b:c2:93:
88:5c:d1:67:77:da:e1:de:5a:a2:94:f3:49:c6:35:73:69:a3:
ae:01:2f:0e:ed:3e:7f:04:7b:bf:19:13:19:d1:c2:9a:75:ba:
e5:6c:00:3e:c9:8a:bf:4a:34:cc:14:ca:89:d3:b7:e6:84:92:
e0:51:df:82:87:f6:bd:01:4b:e7:fc:f5:b0:28:c9:e3:99:c9:
57:5e:52:6e:0a:38:ab:b6:86:87:32:bf:9e:b2:06:ed:f3:3f:
58:31:e2:d3:69:03:07:cc:01:1a:b1:1d:0f:1c:91:05:7f:aa:
a5:97:27:d5:7c:fd:04:c4:55:d3:51:f3:3b:7d:d0:97:48:fc:
ff:56:51:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 04:41:10 2026 by rpki-client