Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
File: KD3ro7EwXJpI03S6Rzab8fgn7gg.mft (raw, json)
Hash identifier: 1PD/GnuBmHq08QmUfIn5rCtKWtW6pSI3P3C8fe6IUKI=
Subject key identifier: E2:18:FF:5C:0B:F3:D0:97:6F:54:E1:2D:C6:6C:46:74:F5:2F:27:CA
Authority key identifier: 28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
Certificate issuer: /CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Certificate serial: 019EDCC18222176723CF1C48B2A5530D5DFA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
Manifest number: 0CB7
Signing time: Thu 18 Jun 2026 22:02:09 +0000
Manifest this update: Thu 18 Jun 2026 22:02:09 +0000
Manifest next update: Fri 19 Jun 2026 22:02:09 +0000
Files and hashes: 1: KD3ro7EwXJpI03S6Rzab8fgn7gg.crl (hash: 7T0bASP2I9JOHQ6YOtQBVPP0JwRg/k67g25gRGmKX6Q=)
2: OQ2Ehq2LNnkoW69ybvSmF7Wii1o.roa (hash: R70NXYY+s+0zLQXH0/qTZ8MSPj794apmQlMiNuT9CX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 19 Jun 2026 20:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:dc:c1:82:22:17:67:23:cf:1c:48:b2:a5:53:0d:5d:fa
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Validity
Not Before: Jun 18 22:02:09 2026 GMT
Not After : Jun 19 22:02:09 2026 GMT
Subject: CN=e218ff5c0bf3d0976f54e12dc66c4674f52f27ca
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:49:d4:c9:da:71:65:54:8d:69:f9:db:4c:21:
75:cb:ba:56:be:69:b7:be:f9:1a:e8:df:8e:d6:93:
67:df:72:fd:23:18:c4:bf:48:0b:b2:7d:d6:43:cb:
a3:1c:41:e3:8f:1f:3e:10:b5:20:73:4b:25:f2:de:
8d:3b:01:90:ee:ed:f7:7b:46:66:0b:7a:1c:2e:5f:
66:41:f0:59:ec:6a:c6:ad:09:03:7f:73:3e:86:1f:
e6:81:42:2f:cb:10:06:34:53:3d:c2:a5:18:93:e6:
7a:27:31:de:14:59:8a:50:ce:99:80:4d:9e:5c:d5:
b0:65:95:a6:83:36:cb:7d:cd:eb:e4:4a:4a:27:43:
2c:b4:92:a7:ba:b0:0b:4f:1f:0a:7a:e9:6d:d3:95:
8a:5a:7e:52:c1:5f:93:ce:12:00:90:38:c8:9b:26:
d0:75:67:86:04:2a:1c:b0:d9:28:a5:4b:08:33:75:
f4:0f:1a:d6:00:62:a6:f7:f9:1c:ac:c3:6f:c9:44:
a2:95:52:a1:29:db:c0:e6:33:a4:12:76:c1:40:7f:
45:0b:bf:77:45:a0:de:20:5d:73:f9:83:2c:a6:3d:
07:0e:25:e8:82:04:9e:60:2d:03:4f:01:2a:b2:9d:
e0:5c:ea:f4:41:07:0a:3d:80:58:60:67:0c:80:c5:
b9:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:18:FF:5C:0B:F3:D0:97:6F:54:E1:2D:C6:6C:46:74:F5:2F:27:CA
X509v3 Authority Key Identifier:
keyid:28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:98:0d:24:76:cf:58:20:62:f2:b1:fe:b6:e6:cd:d3:d8:9a:
e3:8b:a7:38:18:ca:c5:66:c8:19:a1:71:f0:92:11:ca:81:f4:
45:5f:21:9b:be:67:31:39:66:01:c4:d5:07:c5:83:b4:c9:ed:
95:ac:da:0b:7b:2d:b9:80:eb:37:c5:2a:00:84:87:93:37:b7:
38:dd:f8:e1:9c:bd:08:8d:e7:8f:3f:9a:10:d8:2f:72:63:f4:
4b:4b:e2:05:eb:ac:6c:e2:0c:ba:ac:dd:f6:8e:37:b2:81:0a:
49:ac:9f:8d:61:51:32:9f:77:e4:67:9a:c0:c3:13:16:33:c9:
bf:fe:2b:2f:fc:83:bc:38:1d:75:77:d8:80:98:10:c6:78:3f:
3a:68:b3:8d:aa:ed:8d:73:10:08:47:bd:4a:7d:af:4c:02:d8:
42:a1:d0:f4:44:36:79:e1:8d:7c:17:12:c0:33:e3:d8:88:52:
62:1a:1e:a6:1a:53:a2:d7:9d:f7:fc:91:69:0e:75:4a:2c:0a:
c1:ea:1b:63:f9:fc:fc:b6:e1:be:52:eb:b6:41:e3:52:9c:a6:
90:60:9a:b7:16:27:2f:eb:d2:6f:27:ee:fd:02:22:9e:ee:13:
75:8e:68:4d:e4:df:8a:67:fa:31:b9:7d:84:1c:43:3c:c8:b0:
6d:12:c6:31
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7cwYIiF2cjzxxIsqVTDV36MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4M2RlYmEzYjEzMDVjOWE0OGQzNzRiYTQ3MzY5YmYxZjgy
N2VlMDgwHhcNMjYwNjE4MjIwMjA5WhcNMjYwNjE5MjIwMjA5WjAzMTEwLwYDVQQD
EyhlMjE4ZmY1YzBiZjNkMDk3NmY1NGUxMmRjNjZjNDY3NGY1MmYyN2NhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlUnUydpxZVSNafnbTCF1y7pWvmm3
vvka6N+O1pNn33L9IxjEv0gLsn3WQ8ujHEHjjx8+ELUgc0sl8t6NOwGQ7u33e0Zm
C3ocLl9mQfBZ7GrGrQkDf3M+hh/mgUIvyxAGNFM9wqUYk+Z6JzHeFFmKUM6ZgE2e
XNWwZZWmgzbLfc3r5EpKJ0MstJKnurALTx8Keult05WKWn5SwV+TzhIAkDjImybQ
dWeGBCocsNkopUsIM3X0DxrWAGKm9/kcrMNvyUSilVKhKdvA5jOkEnbBQH9FC793
RaDeIF1z+YMspj0HDiXoggSeYC0DTwEqsp3gXOr0QQcKPYBYYGcMgMW5CwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOIY/1wL89CXb1ThLcZsRnT1LyfKMB8GA1UdIwQY
MBaAFCg966OxMFyaSNN0ukc2m/H4J+4IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0Qzcm83RXdYSnBJMDNTNlJ6YWI4ZmduN2dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYS9lNWRmYTktNTE5Ni00OGNkLTkxNzgt
NWEzMWY2MjBiMDRhLzEvS0Qzcm83RXdYSnBJMDNTNlJ6YWI4ZmduN2dnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYS9lNWRmYTktNTE5Ni00OGNkLTkxNzgtNWEzMWY2MjBiMDRh
LzEvS0Qzcm83RXdYSnBJMDNTNlJ6YWI4ZmduN2dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADJgNJHbP
WCBi8rH+tubN09ia44unOBjKxWbIGaFx8JIRyoH0RV8hm75nMTlmAcTVB8WDtMnt
lazaC3stuYDrN8UqAISHkze3ON344Zy9CI3njz+aENgvcmP0S0viBeusbOIMuqzd
9o43soEKSayfjWFRMp935GeawMMTFjPJv/4rL/yDvDgddXfYgJgQxng/Omizjart
jXMQCEe9Sn2vTALYQqHQ9EQ2eeGNfBcSwDPj2IhSYhoephpToted9/yRaQ51SiwK
weobY/n8/LbhvlLrtkHjUpymkGCatxYnL+vSbyfu/QIinu4TdY5oTeTfimf6Mbl9
hBxDPMiwbRLGMQ==
-----END CERTIFICATE-----
Generated at Fri Jun 19 03:35:52 2026 by rpki-client