Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
File: KbOnF2ZaETfpncj60i4-f5jbiXM.mft (raw, json)
Hash identifier: EV8ASidAm9u30pTxnCutrujrfCdXqS+GYBi3ix6EBhU=
Subject key identifier: 9C:32:B7:39:3F:82:A4:DF:35:10:8C:26:90:C3:FC:9B:0E:46:8D:29
Authority key identifier: 29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
Certificate issuer: /CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Certificate serial: 019F1A1ED21951F96191D281954E82CD3008
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
Manifest number: 198E
Signing time: Tue 30 Jun 2026 20:00:55 +0000
Manifest this update: Tue 30 Jun 2026 20:00:55 +0000
Manifest next update: Wed 01 Jul 2026 20:00:55 +0000
Files and hashes: 1: KbOnF2ZaETfpncj60i4-f5jbiXM.crl (hash: DNZSRlaKeKXVALiqTQZ1FMlNDY3/Glb4mNmZpRX9a1U=)
2: Ty9RnsnK3EDnysBvDikYp04oggo.roa (hash: oWmmAPgiMnRBuVQF4Wy8CU51nd17TmIJOxZ3k8HDTIo=)
3: VmNdh6laZxyVCC_g82mHnoN0sjg.roa (hash: fCIZoEHtubiL+1CEYbmHMAzOgcDhgRWMLUT6hfUtnUM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:1e:d2:19:51:f9:61:91:d2:81:95:4e:82:cd:30:08
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b3a717665a1137e99dc8fad22e3e7f98db8973
Validity
Not Before: Jun 30 20:00:55 2026 GMT
Not After : Jul 1 20:00:55 2026 GMT
Subject: CN=9c32b7393f82a4df35108c2690c3fc9b0e468d29
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:70:4a:4d:97:94:9d:95:a8:a2:40:77:54:53:
c5:ee:90:ee:3c:9d:0b:fe:f8:bd:73:54:de:95:e2:
cf:2c:93:43:13:ae:9c:6c:ea:80:92:bd:82:8f:81:
af:85:1f:6e:e9:db:86:e1:5d:5f:2d:97:03:a2:d0:
be:39:57:db:df:8b:0c:dc:7f:f8:83:c2:df:a8:7e:
fa:0d:c7:8a:3b:cd:a1:a6:84:ff:04:87:68:2e:c5:
d0:58:90:50:b2:12:cb:9d:de:69:6e:3a:7f:8a:f3:
11:7a:ac:a7:a8:cf:8c:39:d1:41:76:eb:6e:fc:68:
bf:d4:6b:68:d3:c5:02:31:7d:d8:54:71:5a:b5:53:
f1:a9:7e:13:3b:96:25:60:aa:44:c5:33:5c:a9:96:
f5:2b:ad:c6:c8:2e:b8:96:07:e6:27:3a:b7:b3:0f:
51:8d:89:e0:4d:33:38:56:01:f3:e2:35:96:83:0c:
8d:c5:28:dc:a6:ef:b0:9e:9c:7c:e3:2c:01:44:51:
f6:4d:63:3a:26:ce:15:b8:4d:12:85:43:51:9c:e4:
3b:67:19:2b:38:c3:f7:49:4a:34:c6:9a:1d:dc:52:
28:06:5d:f6:6d:1f:ab:e6:36:0c:d8:17:da:d6:3e:
0a:65:02:00:75:76:28:d1:a2:27:83:f5:70:6b:79:
de:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:32:B7:39:3F:82:A4:DF:35:10:8C:26:90:C3:FC:9B:0E:46:8D:29
X509v3 Authority Key Identifier:
keyid:29:B3:A7:17:66:5A:11:37:E9:9D:C8:FA:D2:2E:3E:7F:98:DB:89:73
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KbOnF2ZaETfpncj60i4-f5jbiXM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/acd28e-52ae-4ac9-b028-669f7a761631/1/KbOnF2ZaETfpncj60i4-f5jbiXM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
04:ef:af:9f:8c:e4:15:bd:b1:21:c2:72:54:1e:22:a1:80:6e:
7c:be:9a:4b:23:89:c3:58:16:47:aa:93:2d:a1:97:16:f4:ac:
19:fd:89:d4:e1:07:a1:ae:8c:87:10:b8:8d:73:dc:5b:26:ef:
80:2e:bd:18:cf:02:a4:d8:3e:c0:d7:3a:2e:3d:05:83:c3:8d:
ba:83:12:20:8c:32:05:e5:ff:d5:ef:fe:dd:78:b8:62:d5:cd:
83:56:09:59:14:ee:1f:13:14:5c:33:a5:89:65:25:46:34:61:
4d:81:b5:ef:b1:42:47:0a:83:f2:0e:83:17:30:a6:ba:f6:30:
af:1e:63:f0:dd:39:4d:71:a6:ae:47:6a:a3:00:bc:86:52:11:
42:ba:1f:6e:f3:c2:04:6e:bf:a5:2c:17:23:f8:47:ae:20:1e:
dd:ca:ed:33:64:cb:e1:6c:90:1e:fc:d1:c6:26:19:5c:6f:5e:
5c:c4:03:cd:c3:46:2f:3b:62:3b:6a:ec:42:10:71:9e:ea:87:
aa:a7:87:5a:bb:39:3b:81:67:61:04:d6:d8:2a:76:23:a2:5f:
94:22:86:ce:e1:79:b5:bf:c8:c1:61:b8:31:d6:2a:ba:3d:56:
51:72:93:a8:a1:d9:c8:b4:d5:15:e0:b9:f9:33:7e:4a:46:5f:
4f:24:56:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:42:41 2026 by rpki-client