Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
File: kfWJGibPpDaiPn4f-XZki-5573c.mft (raw, json)
Hash identifier: j6z+AjVZsb5hU+z51D1r9F8a7lV+ZNpouyea8azR+t0=
Subject key identifier: B0:F1:3E:EE:31:78:67:1B:D8:CC:9D:39:60:59:E2:AE:21:F6:3E:5E
Authority key identifier: 91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
Certificate issuer: /CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Certificate serial: 019F19E87CE2686C6E81AE9958CAB74AF1A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
Manifest number: 17F8
Signing time: Tue 30 Jun 2026 19:01:34 +0000
Manifest this update: Tue 30 Jun 2026 19:01:34 +0000
Manifest next update: Wed 01 Jul 2026 19:01:34 +0000
Files and hashes: 1: 13pODHcx3eQP7xOkMHNEefG7IIQ.roa (hash: qlJleMO2jwSLSXtFMrN9K1iB2b/o+2MJHkGDE9iSiW4=)
2: kfWJGibPpDaiPn4f-XZki-5573c.crl (hash: yqNVtraPAgxnaP5Syp0udaTGHn97+AF2h7xamZC9sBM=)
3: n4Dsi3C82jo2ZtBfzJElgZJ-w5k.roa (hash: 3luKXeODer9xKHZYN0At3nnyayOvshr2VqXrwUa+RzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:e8:7c:e2:68:6c:6e:81:ae:99:58:ca:b7:4a:f1:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91f5891a26cfa436a23e7e1ff976648bee79ef77
Validity
Not Before: Jun 30 19:01:34 2026 GMT
Not After : Jul 1 19:01:34 2026 GMT
Subject: CN=b0f13eee3178671bd8cc9d396059e2ae21f63e5e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:f8:4e:23:d8:2d:2f:96:3c:bb:95:7d:32:b9:
8a:1f:74:11:36:f4:e0:99:fb:60:65:8b:f9:1e:63:
ff:00:b5:fa:7e:f6:80:42:aa:44:7b:70:b5:a0:d6:
e2:d4:55:b0:15:76:cf:24:52:07:ed:91:6e:08:9c:
ed:47:be:19:23:76:28:8f:7b:16:81:14:ce:b9:46:
aa:fb:2e:d7:ae:78:56:aa:6a:ac:fa:77:02:53:22:
fb:43:a2:bb:6a:09:52:d7:5c:fe:0f:e1:9b:62:fe:
89:ba:e7:0e:70:88:c3:c4:b2:81:2c:2a:dd:da:5f:
09:83:0c:0c:af:f1:b6:f5:90:ef:30:99:32:dc:a9:
96:eb:8a:80:d9:61:1f:8a:f3:80:b1:80:7c:ae:87:
b6:e1:64:53:d3:54:1d:3c:b7:29:40:ce:aa:f5:d7:
6a:6f:08:ae:f3:3b:2a:c1:93:0b:27:12:f9:04:e4:
ae:87:6e:b8:e1:5c:eb:e9:10:96:ab:20:d4:40:9b:
5a:52:06:4e:dc:45:b1:7f:f7:ce:0d:e5:6c:ba:b7:
3a:c3:5a:c1:97:e5:86:99:76:e5:e9:e2:f4:13:67:
d3:b6:0d:3d:3f:fe:08:1d:fd:4f:7b:c6:08:f4:e3:
77:1c:70:be:17:7a:9d:22:3e:a0:96:4b:ff:43:3f:
e3:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:F1:3E:EE:31:78:67:1B:D8:CC:9D:39:60:59:E2:AE:21:F6:3E:5E
X509v3 Authority Key Identifier:
keyid:91:F5:89:1A:26:CF:A4:36:A2:3E:7E:1F:F9:76:64:8B:EE:79:EF:77
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kfWJGibPpDaiPn4f-XZki-5573c.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/7f1b74-c8d7-4a0d-8a39-daa7390b5ba7/1/kfWJGibPpDaiPn4f-XZki-5573c.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:61:e5:03:72:16:30:ed:df:45:8e:47:2f:c5:46:71:99:0a:
14:ca:7a:88:9d:27:c3:b1:44:2a:49:76:72:06:8b:5a:42:65:
10:d4:75:2c:0d:c5:68:88:cc:77:a4:e2:24:81:75:e8:e4:35:
60:cc:20:cf:2c:74:0e:83:f3:07:48:d2:fb:aa:5d:cd:b2:24:
ae:ed:2e:6e:7f:08:52:42:ef:dd:af:82:06:74:7e:b2:94:f4:
ea:f1:91:c6:d8:3e:41:b7:0e:ef:10:d9:1c:88:5c:7a:63:05:
f2:4c:a9:17:b3:48:c9:d8:f1:b6:06:a2:e3:62:14:85:45:98:
3b:12:8f:67:1f:a0:5b:02:0a:67:02:b3:43:e0:68:31:e3:42:
0e:59:42:a0:7c:eb:cb:c0:5a:dc:a8:8e:b9:8e:1e:fb:16:60:
e7:d2:be:25:26:1b:53:03:f7:9a:84:da:af:48:63:c8:86:e8:
63:e9:50:c7:00:90:15:c8:08:88:40:4a:0b:e7:26:03:51:77:
8b:86:2e:28:2d:f8:bf:f6:73:a7:11:2d:1f:0b:21:89:79:cb:
6b:e3:39:9c:42:70:e0:c6:7e:b9:67:a2:f6:06:a6:12:dc:d8:
5a:9c:05:71:22:9a:7c:c7:9e:e0:83:64:38:d4:0f:36:52:5e:
6d:dc:87:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:39:56 2026 by rpki-client