Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: 2c0G+5vGOPxq0GmQ+8n7DVRVvf0ss4NKDredvDGQ518=
Subject key identifier: 24:0D:EE:3A:5F:BA:B0:31:5F:50:88:75:94:98:54:40:42:53:9B:B2
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 019F1008CEFCCCD5988F3F1B387180D257CF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 0D79
Signing time: Sun 28 Jun 2026 21:00:40 +0000
Manifest this update: Sun 28 Jun 2026 21:00:40 +0000
Manifest next update: Mon 29 Jun 2026 21:00:40 +0000
Files and hashes: 1: ZAsWuhaFhvmR__Q0aQXj1GfCRnk.roa (hash: DhqcuYQ4zHPXq9RixDGQKhV/M4lScQzHRE9Yz/ZYfyc=)
2: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: dgokd4w+ieFtpHbkUx1bT9iVIeynB05LuDxOqu1mAp8=)
3: o14utqHYZFxhZfVEkq-FP4EOMBc.roa (hash: s9KvSuwsAo53TsaYUbZWoSvNDjlPZyPjIsdZ0Auhgao=)
4: tYmXAiohX3AcRjPUBEAHeBUsE58.roa (hash: FN7T5567tN5nhPmv6bO1Q8VmVLE2iMv0mhNHydh4B2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:10:08:ce:fc:cc:d5:98:8f:3f:1b:38:71:80:d2:57:cf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Jun 28 21:00:40 2026 GMT
Not After : Jun 29 21:00:40 2026 GMT
Subject: CN=240dee3a5fbab0315f5088759498544042539bb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:0c:5f:bb:3d:38:cd:b7:02:8e:1e:d7:cd:8b:
0b:7e:c8:cd:b4:3d:3d:b3:80:85:6b:d4:c6:25:c8:
94:05:ae:cd:e6:6f:15:71:ea:78:f4:6b:64:c8:e5:
47:82:ac:da:f2:54:eb:2d:69:5b:cc:0c:41:0b:56:
e1:fa:50:45:eb:f8:dd:64:26:fd:02:dc:d2:f9:8e:
5d:47:5a:f5:5c:b2:29:44:74:ee:29:e8:80:62:7d:
6c:ba:35:bb:b8:ca:d1:6d:31:d9:0f:b0:e1:8f:d6:
24:89:42:c4:78:6e:54:a7:58:b1:ac:d6:a6:68:96:
96:89:8f:f4:58:06:ad:63:a8:3e:24:36:b2:a2:4d:
f9:b8:bc:83:2f:72:b8:dd:e2:13:37:59:61:80:48:
08:3f:ab:34:9d:8f:f6:0a:fb:ef:83:db:54:f5:36:
86:e4:bc:9a:96:8f:00:2a:29:40:31:f7:a0:1d:46:
bf:31:29:11:1c:08:b8:84:82:c0:64:34:44:75:1a:
6f:b2:f2:4c:f9:44:35:09:aa:d3:71:eb:f7:9f:5e:
13:9b:3f:16:a5:32:94:54:df:93:68:b6:df:d0:1e:
a9:c9:1e:96:ff:5a:60:a7:58:ea:49:13:95:94:2e:
25:df:aa:bf:65:54:d7:05:c6:c5:31:01:75:3e:fd:
7a:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:0D:EE:3A:5F:BA:B0:31:5F:50:88:75:94:98:54:40:42:53:9B:B2
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:2c:52:61:a5:c4:e5:ee:18:94:22:84:98:ee:ca:d0:47:b9:
a2:5b:df:e6:f8:16:18:8c:e1:76:a3:d5:e7:55:8f:b4:b3:a4:
65:1f:d5:39:43:dc:f9:9a:d8:36:18:62:86:c3:b8:a7:90:4f:
24:0b:a6:e5:85:76:d8:8e:a2:2a:18:bf:14:f0:46:91:62:70:
4a:32:99:aa:44:27:a2:98:5f:8d:5a:cf:80:c5:27:18:7c:1d:
e3:0d:53:d5:1f:89:37:da:05:4c:ae:01:8f:66:99:32:35:d6:
bf:ba:5e:d4:dc:4e:ab:53:25:ac:9d:2f:20:f6:61:bd:ae:09:
13:3d:8d:3c:cc:27:cc:b6:b3:12:21:45:5b:e6:d8:50:61:0d:
d8:e9:cd:a1:f2:47:62:31:1e:64:be:99:40:2c:c2:8a:43:fa:
d8:c6:cc:1f:0e:83:26:16:40:fc:71:c8:13:ab:5e:ea:72:c8:
d0:cf:4a:33:b7:3b:eb:c6:83:08:f4:ce:62:6e:37:df:12:f7:
58:16:6a:ae:c3:97:b9:4c:96:e2:ea:ba:9d:a6:79:51:64:a1:
2c:27:0f:2e:82:4e:c3:d8:18:b7:fd:11:39:6a:16:5b:98:a4:
df:26:a6:ae:5b:b9:cc:b6:91:c9:6c:e2:ce:46:b3:04:48:43:
7e:84:a0:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8QCM78zNWYjz8bOHGA0lfPMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzgxYmM5NjlkZTZhZGMzZDFkZGMwZWI4OWJkZWVhY2U5
ODA1Y2QwHhcNMjYwNjI4MjEwMDQwWhcNMjYwNjI5MjEwMDQwWjAzMTEwLwYDVQQD
EygyNDBkZWUzYTVmYmFiMDMxNWY1MDg4NzU5NDk4NTQ0MDQyNTM5YmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQxfuz04zbcCjh7XzYsLfsjNtD09
s4CFa9TGJciUBa7N5m8Vcep49GtkyOVHgqza8lTrLWlbzAxBC1bh+lBF6/jdZCb9
AtzS+Y5dR1r1XLIpRHTuKeiAYn1sujW7uMrRbTHZD7Dhj9YkiULEeG5Up1ixrNam
aJaWiY/0WAatY6g+JDayok35uLyDL3K43eITN1lhgEgIP6s0nY/2Cvvvg9tU9TaG
5Lyalo8AKilAMfegHUa/MSkRHAi4hILAZDREdRpvsvJM+UQ1CarTcev3n14Tmz8W
pTKUVN+TaLbf0B6pyR6W/1pgp1jqSROVlC4l36q/ZVTXBcbFMQF1Pv16XQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCQN7jpfurAxX1CIdZSYVEBCU5uyMB8GA1UdIwQY
MBaAFJE4G8lp3mrcPR3cDrib3urOmAXNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMt
MjU2ZGE5NWQxMzQ1LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC9mMzU0MDYtZDhjNC00ZjVjLTkyYWMtMjU2ZGE5NWQxMzQ1
LzEva1RnYnlXbmVhdHc5SGR3T3VKdmU2czZZQmMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhixSYaXE
5e4YlCKEmO7K0Ee5olvf5vgWGIzhdqPV51WPtLOkZR/VOUPc+ZrYNhhihsO4p5BP
JAum5YV22I6iKhi/FPBGkWJwSjKZqkQnophfjVrPgMUnGHwd4w1T1R+JN9oFTK4B
j2aZMjXWv7pe1NxOq1MlrJ0vIPZhva4JEz2NPMwnzLazEiFFW+bYUGEN2OnNofJH
YjEeZL6ZQCzCikP62MbMHw6DJhZA/HHIE6te6nLI0M9KM7c768aDCPTOYm433xL3
WBZqrsOXuUyW4uq6naZ5UWShLCcPLoJOw9gYt/0ROWoWW5ik3yamrlu5zLaRyWzi
zkazBEhDfoSgNQ==
-----END CERTIFICATE-----
Generated at Mon Jun 29 01:58:36 2026 by rpki-client