Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: f+Fv4F8tqtADdGt3AoGGVl0DLZoukkg06y6Z/8EMfQc=
Subject key identifier: AE:46:F1:CC:D8:50:AB:8B:06:D3:81:DC:92:36:66:E1:8B:32:03:0A
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019F189EFB723123E523A32C7AE02725B304
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 057B
Signing time: Tue 30 Jun 2026 13:01:39 +0000
Manifest this update: Tue 30 Jun 2026 13:01:39 +0000
Manifest next update: Wed 01 Jul 2026 13:01:39 +0000
Files and hashes: 1: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: JubhGpEjLePRjen5qRPmwJk72QhnyXgmhBlNJWJ8aMQ=)
2: bHxNQUrJC8Eh62QodMXQrjbnmgg.roa (hash: 1d3ZqMZQAbRLtC6TZNo/vpwZQcPk90gTwtcmQgBCgII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:fb:72:31:23:e5:23:a3:2c:7a:e0:27:25:b3:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Jun 30 13:01:39 2026 GMT
Not After : Jul 1 13:01:39 2026 GMT
Subject: CN=ae46f1ccd850ab8b06d381dc923666e18b32030a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:ae:e7:fb:75:d0:1a:b7:fb:9c:84:f2:d0:3f:
5d:b4:0d:45:8f:08:30:d9:ba:19:43:82:17:7e:54:
b5:c4:6d:81:12:fa:9f:9f:c2:ec:b4:8b:62:30:c5:
ba:65:12:11:9c:f1:e8:4a:17:ae:61:c4:8b:5c:15:
96:21:a7:14:c5:8f:15:10:16:d8:8f:8a:91:ed:4e:
e6:3e:83:e6:b5:4f:aa:2c:7a:80:3f:e9:85:57:49:
b4:3d:e4:c2:cb:5a:62:db:56:7f:3c:b7:76:2f:4c:
67:43:b0:64:27:7e:a9:5a:18:64:c7:ad:45:01:8d:
f9:aa:b2:14:f0:af:c3:e7:eb:46:dd:8c:ef:c5:51:
3c:3e:4c:54:fd:7e:46:de:fc:bc:af:48:b7:3c:ca:
56:62:5f:cc:64:63:c8:62:18:57:3d:6c:00:44:15:
65:24:ad:43:ba:1d:f1:0a:88:45:22:4a:58:14:3e:
e7:8c:29:15:f9:07:51:61:ad:8c:50:c3:cd:13:6d:
0c:d4:68:37:59:e9:51:19:fb:62:89:47:a3:2c:1c:
20:fe:32:dd:f8:26:86:34:11:84:9b:b7:86:d4:97:
25:b9:10:5c:ef:6a:c9:bf:5f:ee:2e:44:0c:b1:65:
e7:24:5d:33:0f:f7:6c:66:2c:72:d6:32:f0:96:ee:
b8:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:46:F1:CC:D8:50:AB:8B:06:D3:81:DC:92:36:66:E1:8B:32:03:0A
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
84:fd:2b:95:a9:6f:3c:a6:ad:ee:fb:e1:25:fc:5d:ef:88:d2:
a2:ec:d9:2c:67:8a:95:00:99:94:20:d2:17:ee:b6:04:48:e7:
66:b3:43:15:e2:96:e4:1e:28:c4:3f:95:3e:dc:2e:c3:3f:e0:
c8:7c:4b:f5:40:bb:6d:6f:e5:da:b2:bc:b6:4b:54:3d:87:c7:
12:da:a7:58:d7:5f:98:8c:de:71:f8:a1:09:bd:23:b6:2e:f4:
53:86:32:80:9e:3d:68:3c:98:36:17:7b:15:7d:6b:8f:43:0a:
f0:18:ab:e9:df:06:1e:54:52:ef:cf:cc:cb:71:14:c9:e6:52:
b6:c5:58:5a:e7:01:e3:d0:77:b8:10:6d:b7:ba:06:aa:98:a8:
da:6a:e1:a9:b0:0f:c0:bf:91:7c:2a:96:ff:20:70:c9:09:fa:
f6:34:2e:7b:d3:b0:79:59:e5:8a:5b:2a:e4:32:18:14:13:8f:
be:14:a2:73:77:5a:93:38:4c:08:18:e7:ba:62:45:79:01:e7:
1c:c4:8c:d6:fc:61:58:fb:8a:1e:d9:90:4e:d5:ef:7b:86:98:
d3:55:09:59:e5:42:22:7f:5a:0b:05:76:b6:b7:19:f2:4a:fa:
60:12:86:bf:10:91:8e:f5:fc:c8:96:4c:2b:3e:0e:50:dc:8d:
7c:a7:83:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:35:28 2026 by rpki-client