Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
File: kYMWq06hPrtUVgwaZwQtR-lm2CM.mft (raw, json)
Hash identifier: P/8JnK174xsk9ESXe9v3SrBKNznHYsWDFFiWtsvJods=
Subject key identifier: 11:D4:06:A6:EE:AD:47:2D:03:B9:F8:35:4B:C6:3A:69:2C:26:89:01
Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823
Certificate serial: 019EEB58B076C7860C21B1F72271B4920A7C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
Manifest number: 1974
Signing time: Sun 21 Jun 2026 18:01:58 +0000
Manifest this update: Sun 21 Jun 2026 18:01:58 +0000
Manifest next update: Mon 22 Jun 2026 18:01:58 +0000
Files and hashes: 1: SggDrxFFsWWs12xC5aQkzP-tlSU.roa (hash: 9cLRIhlE0/G5tYsZFx8+yzpMIrF34vwAUkKOhMbaUZc=)
2: kYMWq06hPrtUVgwaZwQtR-lm2CM.crl (hash: xNj3vfUpYu2fIi0TtZ2noBbH/BoKXUbRTNe2lDcypps=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 22 Jun 2026 18:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:eb:58:b0:76:c7:86:0c:21:b1:f7:22:71:b4:92:0a:7c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823
Validity
Not Before: Jun 21 18:01:58 2026 GMT
Not After : Jun 22 18:01:58 2026 GMT
Subject: CN=11d406a6eead472d03b9f8354bc63a692c268901
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:56:57:c5:c8:83:5f:30:3e:d0:48:d0:a3:c7:
22:63:01:a6:ee:6a:2a:b8:c4:3b:66:66:bf:f1:69:
50:04:0e:19:1f:e4:d1:02:9d:12:6c:b1:69:68:76:
ea:4b:ea:07:cf:3f:66:cd:24:6e:5f:c9:04:c9:05:
9f:1d:0a:8c:b9:cd:8b:65:59:60:f0:79:8c:e6:d0:
44:7c:32:d9:57:fe:3f:14:ca:76:ae:1b:80:ab:9e:
4f:74:51:06:16:25:d7:22:d0:d5:2b:c2:df:2f:f0:
a6:16:73:83:3c:75:a9:2b:f5:38:0e:0a:46:db:7a:
65:e2:f4:10:3c:bb:66:64:86:ea:4f:40:51:25:6a:
56:55:c9:bf:d0:14:77:b5:cd:43:c3:8c:65:f1:db:
3c:fb:97:37:2a:68:1e:63:85:9d:83:1f:b1:c7:cb:
6b:fd:52:99:3e:a2:a5:53:42:ad:45:f2:5a:18:0e:
a1:93:22:c6:35:58:dc:6b:a3:d1:a5:cd:bd:57:73:
de:fe:b5:25:64:a2:e2:8e:1a:2f:ed:d9:c0:fc:e7:
06:9e:1b:bc:3d:b8:a6:eb:44:12:50:03:ee:31:8c:
67:64:e3:94:00:38:b8:84:c2:f3:11:47:c2:f9:03:
af:bb:bb:9e:0e:80:6c:61:6f:0e:f2:17:b4:06:dd:
d2:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:D4:06:A6:EE:AD:47:2D:03:B9:F8:35:4B:C6:3A:69:2C:26:89:01
X509v3 Authority Key Identifier:
keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d7:7e:98:c3:25:6c:ec:61:50:38:7e:51:b1:e5:7f:29:1c:11:
ad:3d:98:31:36:3b:ca:70:b3:f5:d5:f2:81:73:96:f4:7b:e7:
88:63:63:ba:45:96:23:02:5b:3d:ff:72:c1:68:40:20:f4:cf:
cf:97:7d:f7:03:d6:09:0b:63:94:ae:88:2d:90:69:d6:a2:47:
da:ff:99:a0:45:01:c7:f8:e3:ca:35:4a:65:ea:41:1b:ce:1d:
b0:36:fb:05:57:58:1e:2c:01:c9:06:10:6b:b2:18:ab:9f:a0:
41:af:f8:9d:ad:d8:50:95:e2:af:0d:3d:2c:f3:4c:1d:b3:85:
b7:aa:4c:3b:13:1e:12:07:c1:49:3f:ca:fe:ad:8a:70:58:84:
0f:e1:b8:89:80:4f:4e:58:02:98:15:1c:5b:16:77:d7:4c:95:
95:9c:ac:11:04:61:35:8a:a4:7f:d6:4f:63:eb:06:f7:de:7a:
5e:fb:21:a1:1c:32:9c:eb:b9:a7:19:0f:92:27:47:ed:4d:2a:
e9:64:49:ae:33:2b:ba:8e:6e:4b:b6:0f:f2:89:0a:a0:1f:15:
2c:e5:14:ce:0f:18:e4:a1:1d:aa:39:4e:c2:42:05:a1:51:c8:
a3:6d:a3:4b:ab:9d:45:3e:50:cd:96:e5:1a:37:bf:3d:79:32:
12:70:9f:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ7rWLB2x4YMIbH3InG0kgp8MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODMxNmFiNGVhMTNlYmI1NDU2MGMxYTY3MDQyZDQ3ZTk2
NmQ4MjMwHhcNMjYwNjIxMTgwMTU4WhcNMjYwNjIyMTgwMTU4WjAzMTEwLwYDVQQD
EygxMWQ0MDZhNmVlYWQ0NzJkMDNiOWY4MzU0YmM2M2E2OTJjMjY4OTAxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApVZXxciDXzA+0EjQo8ciYwGm7moq
uMQ7Zma/8WlQBA4ZH+TRAp0SbLFpaHbqS+oHzz9mzSRuX8kEyQWfHQqMuc2LZVlg
8HmM5tBEfDLZV/4/FMp2rhuAq55PdFEGFiXXItDVK8LfL/CmFnODPHWpK/U4DgpG
23pl4vQQPLtmZIbqT0BRJWpWVcm/0BR3tc1Dw4xl8ds8+5c3KmgeY4Wdgx+xx8tr
/VKZPqKlU0KtRfJaGA6hkyLGNVjca6PRpc29V3Pe/rUlZKLijhov7dnA/OcGnhu8
Pbim60QSUAPuMYxnZOOUADi4hMLzEUfC+QOvu7ueDoBsYW8O8he0Bt3SLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBHUBqburUctA7n4NUvGOmksJokBMB8GA1UdIwQY
MBaAFJGDFqtOoT67VFYMGmcELUfpZtgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMt
OWUzY2QwZDlkNzdhLzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMtOWUzY2QwZDlkNzdh
LzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA136YwyVs
7GFQOH5RseV/KRwRrT2YMTY7ynCz9dXygXOW9HvniGNjukWWIwJbPf9ywWhAIPTP
z5d99wPWCQtjlK6ILZBp1qJH2v+ZoEUBx/jjyjVKZepBG84dsDb7BVdYHiwByQYQ
a7IYq5+gQa/4na3YUJXirw09LPNMHbOFt6pMOxMeEgfBST/K/q2KcFiED+G4iYBP
TlgCmBUcWxZ310yVlZysEQRhNYqkf9ZPY+sG9956XvshoRwynOu5pxkPkidH7U0q
6WRJrjMruo5uS7YP8okKoB8VLOUUzg8Y5KEdqjlOwkIFoVHIo22jS6udRT5QzZbl
Gje/PXkyEnCfhg==
-----END CERTIFICATE-----
Generated at Mon Jun 22 05:10:07 2026 by rpki-client