Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: IPMYktkPofM6btCfcKEPp/4JhPrHAPB2Z9totldRKys=
Subject key identifier: 45:58:E9:30:E1:52:EE:AB:34:7A:B6:9C:C5:8D:0B:A6:3A:0E:95:C5
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019E30E0508DE1B97058997ACC95B90AB8E5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 0503
Signing time: Sat 16 May 2026 13:01:07 +0000
Manifest this update: Sat 16 May 2026 13:01:07 +0000
Manifest next update: Sun 17 May 2026 13:01:07 +0000
Files and hashes: 1: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: Zn9i6+nHGryBGfXV3+OEDTggiowsa9Pog0PZ/n5p3eM=)
2: bHxNQUrJC8Eh62QodMXQrjbnmgg.roa (hash: 1d3ZqMZQAbRLtC6TZNo/vpwZQcPk90gTwtcmQgBCgII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:50:8d:e1:b9:70:58:99:7a:cc:95:b9:0a:b8:e5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: May 16 13:01:07 2026 GMT
Not After : May 17 13:01:07 2026 GMT
Subject: CN=4558e930e152eeab347ab69cc58d0ba63a0e95c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:89:07:07:23:da:a4:00:a9:e4:c1:31:de:12:
25:05:96:f5:a0:b7:f2:30:45:91:f3:61:ec:18:bd:
85:8d:96:6a:ec:a6:94:da:98:36:d7:52:7d:38:57:
c0:48:aa:27:0b:c5:51:48:5b:2c:a4:f8:27:57:2b:
1a:98:2b:62:0d:90:57:51:e9:8b:3a:6e:b2:44:66:
4d:b3:9b:0f:61:08:97:cf:f8:1f:fc:8f:74:6a:93:
81:0e:e2:f9:6d:16:3e:c0:ca:98:36:07:08:71:af:
15:e4:8a:8c:c5:f4:b9:25:9c:9c:ee:d2:e1:ad:2d:
ed:e5:f4:5c:e0:52:95:09:16:06:b0:22:16:2d:82:
15:ed:ea:23:9f:83:e2:b9:69:d5:8d:fd:f6:8d:b8:
48:c0:90:44:14:7b:e3:34:26:8b:6c:98:47:62:54:
66:d7:8e:0c:08:3e:0d:ac:0c:7b:7f:bf:c3:51:e6:
d0:82:04:1f:9b:04:f2:2c:e9:2d:d0:14:df:a7:ae:
ea:b9:bf:99:67:9d:20:4b:2c:d4:69:42:27:63:96:
1f:c8:e3:d7:f9:34:96:a9:4d:63:79:cb:7b:23:de:
3e:0c:86:43:ad:19:f2:9a:e9:da:d0:24:1f:56:3e:
2b:cc:77:f0:f4:32:a8:28:2d:80:cd:f2:6f:8b:2a:
9e:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:58:E9:30:E1:52:EE:AB:34:7A:B6:9C:C5:8D:0B:A6:3A:0E:95:C5
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
70:54:1c:3b:2a:06:33:4b:c0:8e:d9:08:4a:79:51:ea:d9:29:
1f:c4:0d:0a:32:ee:31:78:e9:78:e8:1f:70:d7:51:5f:6c:6f:
5a:27:6c:db:19:a7:b5:31:c4:d0:b1:e1:0c:17:d0:14:dd:62:
ea:c0:21:5b:d5:f1:fb:86:59:00:89:2c:4d:b3:2a:a2:0a:06:
95:cf:21:4c:e8:7d:3e:2f:b8:a8:bf:ef:c6:24:be:62:2d:5d:
f0:97:79:8c:2b:0e:24:e9:39:31:19:4a:e3:dc:1a:0d:ab:74:
09:15:66:cf:83:65:df:be:9a:b7:23:6f:97:ee:a8:32:f7:6d:
81:67:10:f8:d6:0a:87:2e:70:10:86:2d:83:ec:fd:a5:e8:ec:
ec:b3:be:17:9c:6a:87:18:91:91:72:a1:18:ad:93:14:7e:74:
4d:72:ea:6a:e8:03:a5:35:d4:43:b3:98:aa:f6:14:0d:0f:bb:
c3:d2:ca:63:97:c2:d4:c1:2b:9d:a7:fd:f5:4a:33:da:2e:eb:
de:02:23:9a:13:88:1c:44:71:20:1f:fa:c6:fa:ce:80:0b:70:
60:d8:ba:9b:9b:49:e3:82:cb:fa:e3:e5:c0:c2:df:54:4b:28:
f4:5c:84:f8:dd:6f:0a:92:06:8f:d8:ea:dc:78:16:98:0c:09:
f3:c7:eb:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:20:08 2026 by rpki-client