Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: Exs24ItIPZiTKOe7l7mp0aY3nNE5AlTl8hhZwOFOoaY=
Subject key identifier: 8C:16:B3:C7:45:27:6C:11:2B:B3:55:49:37:C2:2D:99:9A:A6:34:43
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 019E3305C7361FF7434E7CD0C8E4F2B09FC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0D5D
Signing time: Sat 16 May 2026 23:01:17 +0000
Manifest this update: Sat 16 May 2026 23:01:17 +0000
Manifest next update: Sun 17 May 2026 23:01:17 +0000
Files and hashes: 1: 4VL55TR7n8zY5sjEwyy-tDqTfgs.roa (hash: 7BDvUnPmZt5rM/QuBJhcT4U2nlJB/FKzg2OukOPZ9uQ=)
2: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: lVMi0cQGtCz2qOrqUjoW61CgaZGOLJEBQRupRtxaUOo=)
3: KnCfg8nTQsfpTcM_cEW8Uzz8x5M.roa (hash: 2VYLtBiQmGKXrUCSv3SxyNnrS3C6FcV2aiRtsHxSXSI=)
4: arOEcwZhUNm3Hj36Uwng_wKeV9E.roa (hash: B20xitz9JymuHol/jxxjXdJ6lXpi2xW/yyUd53yf3d8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:33:05:c7:36:1f:f7:43:4e:7c:d0:c8:e4:f2:b0:9f:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: May 16 23:01:17 2026 GMT
Not After : May 17 23:01:17 2026 GMT
Subject: CN=8c16b3c745276c112bb3554937c22d999aa63443
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:db:6b:b0:e6:91:4c:cf:e9:2d:7d:77:c2:ec:
4c:79:8d:56:20:a3:5a:93:cf:8b:a7:80:8a:8d:02:
60:1c:ea:a2:ec:fe:60:10:ee:c7:b0:22:dd:1a:b6:
84:a0:fa:fd:09:24:4d:cd:66:dd:bd:ff:a4:e8:ce:
60:fb:74:1c:96:48:04:ce:c1:3a:04:7d:9c:ae:be:
ea:23:e5:6d:2b:6a:a0:e5:7e:da:80:31:0a:d2:87:
5e:77:b8:e7:bd:d0:d5:f1:03:56:30:1c:d8:c5:9f:
e0:1b:99:e8:90:e1:05:43:fa:1f:53:bd:14:86:e2:
3f:06:d6:15:ba:42:98:b0:67:e9:43:24:a8:41:de:
e8:f2:0f:e9:2a:ee:1a:23:93:37:51:ea:2d:71:4c:
e5:bd:a5:71:83:1f:eb:af:ef:d5:52:6a:49:1e:f8:
02:b3:de:18:d7:2d:c4:44:87:7d:da:42:89:bb:66:
32:1a:3d:57:5d:b7:66:c5:0e:9b:26:ae:05:77:a2:
0f:2c:db:c9:37:0f:71:f8:ca:f1:bd:da:be:73:10:
f5:67:2c:8e:5b:51:27:13:a8:a4:7a:53:3a:f3:ff:
c1:a3:b7:4e:cf:ac:33:e5:da:87:20:1f:6e:4c:26:
c3:54:0c:23:6f:e7:14:7c:c9:54:a7:bc:fd:b0:72:
aa:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:16:B3:C7:45:27:6C:11:2B:B3:55:49:37:C2:2D:99:9A:A6:34:43
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:df:74:0f:d1:f3:47:9d:dd:e5:7f:7a:c6:c8:b9:df:d2:96:
3f:1b:db:c6:39:d3:30:49:18:8f:42:04:b9:d9:30:6d:30:81:
11:32:25:87:1c:41:06:fa:c6:b6:e1:84:2a:ee:29:5f:df:06:
7c:38:de:d1:fa:34:e6:18:e0:4b:b5:a6:44:08:07:a0:45:35:
ef:f8:f1:5b:05:1d:aa:e5:24:49:ee:50:f5:1d:27:61:8e:83:
3e:8f:cb:0d:d6:02:6b:95:18:15:66:18:47:56:8d:7a:5a:49:
94:93:5a:24:13:6b:81:67:ac:49:16:3c:58:0e:03:26:d4:5b:
89:93:2a:47:f7:77:d9:5b:be:7f:7f:85:cc:1c:80:eb:c6:31:
7c:30:c9:e7:79:00:ce:3b:f8:15:91:a8:00:f1:d7:27:3a:7c:
74:d6:90:65:62:a3:0b:5b:a1:b9:e7:8f:4a:c1:e5:ea:13:23:
93:3c:09:1b:89:ec:cd:06:fa:e3:c6:33:96:0c:51:a9:14:16:
54:89:b1:d5:79:21:6e:78:8a:7f:20:c9:d6:bb:d6:16:d8:f0:
09:7b:7d:57:dd:7f:7b:28:4c:bf:a9:61:5e:56:34:fe:32:6a:
f6:49:1d:6a:73:9a:bc:76:9c:22:ce:cc:27:cb:4b:35:1f:00:
a0:90:21:8e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4zBcc2H/dDTnzQyOTysJ/JMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4N2UxYzk3ZjcxZjM1NTg2N2UzZmI4NzdmMjFhYTUxMzBi
NmNmNWQwHhcNMjYwNTE2MjMwMTE3WhcNMjYwNTE3MjMwMTE3WjAzMTEwLwYDVQQD
Eyg4YzE2YjNjNzQ1Mjc2YzExMmJiMzU1NDkzN2MyMmQ5OTlhYTYzNDQzMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvttrsOaRTM/pLX13wuxMeY1WIKNa
k8+Lp4CKjQJgHOqi7P5gEO7HsCLdGraEoPr9CSRNzWbdvf+k6M5g+3QclkgEzsE6
BH2crr7qI+VtK2qg5X7agDEK0oded7jnvdDV8QNWMBzYxZ/gG5nokOEFQ/ofU70U
huI/BtYVukKYsGfpQySoQd7o8g/pKu4aI5M3UeotcUzlvaVxgx/rr+/VUmpJHvgC
s94Y1y3ERId92kKJu2YyGj1XXbdmxQ6bJq4Fd6IPLNvJNw9x+Mrxvdq+cxD1ZyyO
W1EnE6ikelM68//Bo7dOz6wz5dqHIB9uTCbDVAwjb+cUfMlUp7z9sHKqdQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIwWs8dFJ2wRK7NVSTfCLZmapjRDMB8GA1UdIwQY
MBaAFCh+HJf3HzVYZ+P7h38hqlEwts9dMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEt
OWViM2M2ODJiMDA5LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9hZjE2MWItZWY1MS00NGJkLThlMGEtOWViM2M2ODJiMDA5
LzEvS0g0Y2xfY2ZOVmhuNF91SGZ5R3FVVEMyejEwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAA990D9Hz
R53d5X96xsi539KWPxvbxjnTMEkYj0IEudkwbTCBETIlhxxBBvrGtuGEKu4pX98G
fDje0fo05hjgS7WmRAgHoEU17/jxWwUdquUkSe5Q9R0nYY6DPo/LDdYCa5UYFWYY
R1aNelpJlJNaJBNrgWesSRY8WA4DJtRbiZMqR/d32Vu+f3+FzByA68YxfDDJ53kA
zjv4FZGoAPHXJzp8dNaQZWKjC1uhueePSsHl6hMjkzwJG4nszQb648YzlgxRqRQW
VImx1XkhbniKfyDJ1rvWFtjwCXt9V91/eyhMv6lhXlY0/jJq9kkdanOavHacIs7M
J8tLNR8AoJAhjg==
-----END CERTIFICATE-----
Generated at Sun May 17 02:06:46 2026 by rpki-client