Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: PI19vpspT0E5Eia8bV6f56+dG/fIGJZjvkFB0Yqyhmg=
Subject key identifier: B4:35:3B:36:55:70:16:04:08:03:82:AF:E8:A7:B8:4B:B7:6C:2F:2A
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019F1378DF3156EE13AB24AAFE0A7AC42385
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 0734
Signing time: Mon 29 Jun 2026 13:01:56 +0000
Manifest this update: Mon 29 Jun 2026 13:01:56 +0000
Manifest next update: Tue 30 Jun 2026 13:01:56 +0000
Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=)
2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=)
3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: o4JOxeNPhcjURHQE4Gvv17exOFeYd9LJOkJI6Vpqzic=)
5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=)
6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 13:01:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:78:df:31:56:ee:13:ab:24:aa:fe:0a:7a:c4:23:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Jun 29 13:01:56 2026 GMT
Not After : Jun 30 13:01:56 2026 GMT
Subject: CN=b4353b3655701604080382afe8a7b84bb76c2f2a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:a0:b9:fa:d2:1c:8f:04:52:3a:41:67:29:77:
17:51:7f:75:7b:e7:0a:07:c6:54:fd:b9:ee:6e:7c:
b4:aa:d1:0e:a0:8a:96:72:11:87:26:a7:4d:e8:07:
63:bf:66:fd:4b:f6:81:0e:c0:dc:3e:72:57:5d:6a:
6a:61:48:2b:0c:b9:df:a8:ab:ce:9f:9a:30:ac:38:
cb:c6:b4:36:fa:f1:42:e1:54:fc:7a:8a:c6:82:46:
7a:65:21:03:4c:e8:e2:ff:dc:80:76:40:29:09:f3:
2f:ef:fe:25:1b:68:9b:04:e9:62:6c:27:94:84:7d:
18:83:e7:82:f6:80:15:d4:08:ea:d3:0e:4c:db:ab:
29:32:4e:25:3c:5c:75:81:ca:66:37:a8:59:5d:34:
17:5d:0e:30:f1:89:2f:d0:b4:33:28:b9:a9:fb:82:
ba:00:a6:41:07:1c:f6:4f:db:74:2a:a8:9f:86:a1:
cc:2e:15:b2:34:eb:4d:e9:9d:73:ff:11:86:b9:7d:
be:7d:a1:f8:84:66:0a:93:74:05:16:c7:35:60:f0:
2c:7b:df:37:1d:cb:78:78:52:2e:d5:8a:34:a4:02:
58:9c:50:8c:b1:d2:a9:d6:51:59:e5:fe:8f:15:e4:
c6:0e:74:bd:f9:85:83:00:d3:20:92:b2:f3:c7:e6:
24:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:35:3B:36:55:70:16:04:08:03:82:AF:E8:A7:B8:4B:B7:6C:2F:2A
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:a3:25:2d:14:ce:2e:4c:b6:7f:24:23:0d:56:41:f1:71:ef:
c4:ed:18:76:ab:67:d9:9f:f6:27:2a:bf:52:28:87:0f:d1:15:
bb:89:8d:85:21:8f:99:50:b3:31:c6:9c:69:fa:5f:a7:02:6c:
a0:24:f5:c0:2b:12:c9:bb:28:3b:8f:ef:db:3b:a6:1f:e6:55:
53:53:e6:d5:93:e6:ab:0a:8e:ea:25:a1:71:72:89:87:43:a5:
1b:e0:da:c8:6a:ae:29:93:16:fe:48:f4:1d:4f:5a:4a:26:7f:
6f:a0:17:40:b3:02:31:da:19:3a:e3:63:7b:35:36:94:84:2b:
c8:72:40:bb:0d:83:6b:c9:ef:66:fc:c4:fc:0b:66:70:44:64:
6c:fc:87:1c:28:59:22:31:f3:30:5f:86:93:26:81:cd:04:91:
9e:04:89:98:b7:eb:3c:d1:a9:27:1a:fc:1f:ea:6b:cd:c5:28:
ed:1e:f9:3c:46:5c:81:ae:f5:6d:f5:7d:ad:e3:60:83:23:23:
10:08:c3:b7:7c:ad:9f:38:dd:8a:57:54:53:02:41:b3:d4:2e:
31:89:15:c3:42:7e:ea:23:f1:6b:a2:15:e7:a1:ca:85:8e:e6:
bd:87:62:ec:5e:58:57:80:31:86:18:77:13:02:49:b5:e2:b4:
54:8d:98:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 16:36:03 2026 by rpki-client