Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
File: KMID1l3y1lvbzzyINELdq1WjvN4.mft (raw, json)
Hash identifier: Z0j30l+7dM8fYSAUGEOcayxjXczerhSXz/F7ceEFjdU=
Subject key identifier: 08:0B:ED:19:17:E7:E9:A0:5E:8F:0B:C9:B4:27:72:D2:2A:01:18:D4
Authority key identifier: 28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
Certificate issuer: /CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Certificate serial: 019E1F47983B70541CA1DB57AEF21E4D5064
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
Manifest number: 0EF5
Signing time: Wed 13 May 2026 03:00:46 +0000
Manifest this update: Wed 13 May 2026 03:00:46 +0000
Manifest next update: Thu 14 May 2026 03:00:46 +0000
Files and hashes: 1: 4Okejz2k1ubGfI-GRgB_ARKBmuk.roa (hash: wHN9epTREmpbGi1iOO1PMq2WQBeGFf6WjNTcLZ9jeLg=)
2: KMID1l3y1lvbzzyINELdq1WjvN4.crl (hash: M5vRwKQhSmF0F/O+wyw202LFLTwP4Dv5ekpZsAqG/oE=)
3: PcKBEnG4Fc83PTLXnIgOvRcy3V4.roa (hash: dksZAzhosBbHaXLsuDmV40VTdGY6aq3NK9xY13PmQvE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 03:00:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:47:98:3b:70:54:1c:a1:db:57:ae:f2:1e:4d:50:64
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c203d65df2d65bdbcf3c883442ddab55a3bcde
Validity
Not Before: May 13 03:00:46 2026 GMT
Not After : May 14 03:00:46 2026 GMT
Subject: CN=080bed1917e7e9a05e8f0bc9b42772d22a0118d4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:ab:7b:53:91:05:d6:ff:cb:1e:84:73:25:6b:
6b:9b:3a:2a:30:7d:b7:82:2f:74:f0:21:9b:87:4b:
b9:8f:12:02:86:94:24:53:e8:df:f6:ed:7e:28:9e:
1a:6d:e5:98:7d:43:de:22:69:a6:48:66:66:88:bf:
e5:de:03:80:46:a0:c9:d8:bf:e3:9f:cb:b3:c9:b9:
06:35:12:b8:78:67:87:a2:c3:c8:cb:b4:25:73:d7:
81:ba:f8:38:10:28:8f:2e:48:b1:05:d2:bf:2f:82:
87:86:b0:25:f3:42:4a:a0:2c:c4:4f:e0:fe:29:42:
b8:37:80:2f:e1:66:6c:50:47:1c:7d:6a:28:f1:74:
c3:a9:fc:67:52:02:7f:3a:d4:3f:a5:fb:1c:49:83:
07:9e:5f:57:c4:99:fc:7e:b8:4f:a7:52:0e:c7:34:
7e:3d:77:9a:bb:e8:ac:e6:2d:1f:85:18:30:bf:1a:
61:2f:3d:2a:ab:23:50:7f:4a:6c:44:0f:2e:d9:3c:
99:d7:bd:bb:d4:a9:27:df:b5:d5:ad:0c:26:dd:92:
f8:40:e1:12:cc:bd:48:15:bc:d7:ea:28:95:7a:78:
0f:f6:a7:23:f8:b4:5e:61:0e:45:3b:9e:02:15:ce:
2c:c4:94:a4:3f:d7:3e:02:3b:0b:53:c4:4a:c1:9d:
b4:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:0B:ED:19:17:E7:E9:A0:5E:8F:0B:C9:B4:27:72:D2:2A:01:18:D4
X509v3 Authority Key Identifier:
keyid:28:C2:03:D6:5D:F2:D6:5B:DB:CF:3C:88:34:42:DD:AB:55:A3:BC:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMID1l3y1lvbzzyINELdq1WjvN4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/49c3e1-1f7f-4e58-b02b-88592043026f/1/KMID1l3y1lvbzzyINELdq1WjvN4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3f:2e:ed:93:30:5d:f5:14:00:c7:b8:aa:d1:e7:4c:23:d1:8b:
6d:38:37:c2:0f:ce:df:c1:05:bf:83:8e:5e:2e:40:cd:51:d0:
2c:3f:8c:e7:cd:6f:66:fe:4b:81:74:d8:8b:42:dd:df:ea:f5:
7b:7f:bb:50:bd:67:22:03:e6:f9:0a:bf:9e:54:10:a3:c6:34:
04:90:92:4c:dc:97:73:98:c0:a3:0a:0e:c3:91:c3:8f:d3:3b:
4c:ef:6f:5b:b8:2d:69:e0:00:12:95:91:f8:a2:18:07:f0:d0:
e3:a6:aa:ec:24:b7:8a:52:11:b6:3d:cf:de:e9:09:c0:f1:64:
8b:5d:d5:30:3d:9f:fe:c5:c5:b3:4e:a3:0e:dd:40:08:6d:3e:
8b:da:9d:88:d1:7c:75:be:c7:f6:ff:23:71:b1:cd:52:4b:8f:
d0:91:69:3b:d6:ca:41:46:26:72:21:c5:5c:92:23:66:a7:c0:
f5:85:2a:43:f1:40:69:f4:4e:c4:6e:40:4c:bc:b2:63:30:26:
db:18:e9:6f:7c:2c:6c:df:61:86:2c:13:5b:da:9e:60:e2:14:
06:8e:d9:f4:98:f4:8a:84:59:c8:9b:25:ee:96:16:d0:e9:bb:
8e:f4:8e:45:b9:59:98:4f:c7:ff:ae:99:8b:7d:bf:9e:39:57:
6c:30:3c:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 13:12:00 2026 by rpki-client