Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: MwrHkVIQuAfmegLauVYbqSXOEebFg6oqBzeljEU0xL0=
Subject key identifier: 5D:80:30:1B:11:80:9F:D3:B6:DB:FF:C7:8F:77:6C:F3:29:E9:B3:78
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 019E30E031BDCE5031669D0603D563547413
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 190E
Signing time: Sat 16 May 2026 13:00:59 +0000
Manifest this update: Sat 16 May 2026 13:00:59 +0000
Manifest next update: Sun 17 May 2026 13:00:59 +0000
Files and hashes: 1: 744IgXzHRA7i_KaZPXPHUM0eSxg.roa (hash: eqDQW7MUEHWcKNovBhhfViXrkME1qg3sj67Td6hUu3A=)
2: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: Ir0MlKyprz1d/Y2xtYVJkWiiS6Tzh5DKvb1Xo/9th+U=)
3: Q9Hzj6xYvSgvTk1AgA8SSFlzHjw.roa (hash: zRP8z6fqTAhTFBNH4EqdLJ2KR4AhqadHe/YBKRqTMqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:30:e0:31:bd:ce:50:31:66:9d:06:03:d5:63:54:74:13
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: May 16 13:00:59 2026 GMT
Not After : May 17 13:00:59 2026 GMT
Subject: CN=5d80301b11809fd3b6dbffc78f776cf329e9b378
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:3d:92:94:6e:49:c4:0a:90:51:d0:ca:42:ef:
c6:a3:8e:f5:e3:ef:76:6d:0c:f7:6e:64:16:a2:ba:
b3:84:a6:95:15:ac:1e:c7:2d:32:8a:47:2d:12:18:
d7:85:5e:f6:c2:02:62:ee:48:65:43:8e:8c:f0:bb:
85:7d:7d:5b:fa:d2:11:d4:7c:94:4d:d6:24:6d:db:
57:db:21:59:02:d2:14:53:39:b4:f7:f6:31:30:61:
d6:ca:60:4d:87:8d:6a:28:4e:9c:8e:cb:0a:94:8b:
91:dd:bc:33:64:e9:84:b8:0a:6f:2b:87:f1:35:2d:
fe:42:95:4d:2e:2d:83:02:f5:39:84:c8:e2:c8:a9:
75:bf:c1:f1:90:84:49:54:48:22:df:6f:4f:59:df:
11:1a:42:7d:f2:45:2e:df:57:c9:84:13:d5:df:12:
4f:6b:29:27:4c:64:7e:7d:76:bf:e2:04:a0:95:ce:
c3:97:71:ef:7a:71:44:08:11:af:d0:33:63:f1:e6:
21:92:7e:92:51:9a:c8:50:eb:75:a0:a4:07:2e:1b:
15:38:6e:a8:8d:0b:a6:b1:04:f3:46:62:19:90:b2:
83:d6:4b:3b:fa:15:7b:61:75:35:cd:af:13:4a:66:
9c:e3:86:9b:6f:62:a0:b9:dc:8a:f0:3b:97:ef:01:
d1:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:80:30:1B:11:80:9F:D3:B6:DB:FF:C7:8F:77:6C:F3:29:E9:B3:78
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:d6:45:14:c2:57:10:52:d8:60:7a:44:22:67:8d:ff:76:1b:
bf:9c:93:4e:c3:9a:04:c4:b0:7a:de:6d:fb:6b:e1:1d:92:70:
38:81:be:ac:70:86:7b:a7:51:e9:61:9c:69:92:a3:7d:0a:2d:
7b:2d:ab:bd:e7:3e:f7:70:f2:4a:8b:58:e5:63:8e:fe:73:ed:
8e:f2:e5:c9:96:df:25:55:cd:4d:49:a2:d6:df:56:b7:83:ba:
57:40:58:3d:7e:3a:5d:f1:97:f8:5e:5a:9c:c0:97:60:a0:c2:
06:83:22:90:71:dd:af:c0:64:e5:42:e2:ad:21:46:a1:5f:cb:
6f:d2:8a:ae:9a:36:11:12:51:b1:26:66:fa:e4:8d:59:31:5c:
b0:96:77:b4:92:e1:49:fa:42:50:36:6f:e7:b6:ee:bc:45:6b:
d1:1f:84:63:94:4e:d0:b7:8d:ac:90:8b:58:de:b6:dd:90:4c:
77:ae:35:05:f1:21:70:46:aa:1d:0f:7b:fb:0b:7d:fa:73:f3:
9a:66:18:7f:c8:ba:5d:44:ce:b6:0b:38:4a:b2:6c:12:ae:f2:
8a:7d:8a:d8:20:24:7e:51:0f:ef:f9:59:7d:a6:e3:8c:5c:d9:
ee:73:e7:2d:98:3e:db:37:0d:09:05:f8:1c:98:0f:27:6d:ea:
4d:27:6e:df
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4w4DG9zlAxZp0GA9VjVHQTMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MTY0YTU3NTdmZGQ1NzI1YTYwODQ0ZjJhZTdlZjczYjEw
N2E0YzAwHhcNMjYwNTE2MTMwMDU5WhcNMjYwNTE3MTMwMDU5WjAzMTEwLwYDVQQD
Eyg1ZDgwMzAxYjExODA5ZmQzYjZkYmZmYzc4Zjc3NmNmMzI5ZTliMzc4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApj2SlG5JxAqQUdDKQu/Go4714+92
bQz3bmQWorqzhKaVFawexy0yikctEhjXhV72wgJi7khlQ46M8LuFfX1b+tIR1HyU
TdYkbdtX2yFZAtIUUzm09/YxMGHWymBNh41qKE6cjssKlIuR3bwzZOmEuApvK4fx
NS3+QpVNLi2DAvU5hMjiyKl1v8HxkIRJVEgi329PWd8RGkJ98kUu31fJhBPV3xJP
ayknTGR+fXa/4gSglc7Dl3HvenFECBGv0DNj8eYhkn6SUZrIUOt1oKQHLhsVOG6o
jQumsQTzRmIZkLKD1ks7+hV7YXU1za8TSmac44abb2KgudyK8DuX7wHRQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF2AMBsRgJ/Tttv/x493bPMp6bN4MB8GA1UdIwQY
MBaAFCgWSldX/dVyWmCETyrn73OxB6TAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0JaS1YxZjkxWEphWUlSUEt1ZnZjN0VIcE1BLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC85NTUzNWItZTYzMC00NTdmLThhMDEt
YWVhZTViYmMzOTIwLzEvS0JaS1YxZjkxWEphWUlSUEt1ZnZjN0VIcE1BLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zOC85NTUzNWItZTYzMC00NTdmLThhMDEtYWVhZTViYmMzOTIw
LzEvS0JaS1YxZjkxWEphWUlSUEt1ZnZjN0VIcE1BLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAx9ZFFMJX
EFLYYHpEImeN/3Ybv5yTTsOaBMSwet5t+2vhHZJwOIG+rHCGe6dR6WGcaZKjfQot
ey2rvec+93DySotY5WOO/nPtjvLlyZbfJVXNTUmi1t9Wt4O6V0BYPX46XfGX+F5a
nMCXYKDCBoMikHHdr8Bk5ULirSFGoV/Lb9KKrpo2ERJRsSZm+uSNWTFcsJZ3tJLh
SfpCUDZv57buvEVr0R+EY5RO0LeNrJCLWN623ZBMd641BfEhcEaqHQ97+wt9+nPz
mmYYf8i6XUTOtgs4SrJsEq7yin2K2CAkflEP7/lZfabjjFzZ7nPnLZg+2zcNCQX4
HJgPJ23qTSdu3w==
-----END CERTIFICATE-----
Generated at Sat May 16 22:01:06 2026 by rpki-client