
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: 2AW3zGFQj+710TOO94+GxKC5R0aqNTnmqjDGIYP2WHE=
Subject key identifier: 02:36:80:C4:46:50:71:EB:3A:0E:9F:58:16:4C:BC:6B:F7:86:FC:8F
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019F386039C77ECC73071D715B64945C25D6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 090E
Signing time: Mon 06 Jul 2026 17:00:57 +0000
Manifest this update: Mon 06 Jul 2026 17:00:57 +0000
Manifest next update: Tue 07 Jul 2026 17:00:57 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: Jpal/ceeGHs4FGWQWWV6f5xIZiDysleAyqNs+k078bA=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 07 Jul 2026 14:46:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:38:60:39:c7:7e:cc:73:07:1d:71:5b:64:94:5c:25:d6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Jul 6 17:00:57 2026 GMT
Not After : Jul 7 17:00:57 2026 GMT
Subject: CN=023680c4465071eb3a0e9f58164cbc6bf786fc8f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:3b:f4:58:d6:24:29:35:d6:40:15:ae:26:a8:
65:13:5e:39:25:82:10:87:10:77:6a:56:af:08:78:
eb:f8:89:14:ea:44:e9:be:f1:8a:70:c7:7d:dc:55:
dd:d7:04:ee:38:7c:8b:d1:42:8f:d2:59:c7:9e:cd:
72:b3:24:22:2e:2d:f1:47:ce:36:36:8f:02:d8:70:
03:29:95:31:0e:a1:81:ef:01:b9:7d:47:e8:99:2e:
29:be:c9:35:e0:42:0c:d2:87:33:0b:8e:5b:5c:72:
a7:ec:6f:61:a6:20:eb:3c:30:bb:3f:30:0c:ce:0f:
27:52:d9:f8:c2:8c:7c:73:6b:56:03:5c:86:5b:1b:
b4:12:8a:da:5d:5f:0e:4e:92:09:39:50:01:51:4d:
04:53:f2:4f:b0:a0:b6:81:98:50:77:d7:1d:d4:9e:
dc:f6:83:0c:62:8c:0e:7b:b8:b9:ab:0c:e3:14:ae:
77:af:0b:48:2e:29:be:25:d6:74:7d:76:01:31:b8:
dc:51:d5:66:28:bd:d0:a7:99:67:9f:4d:fe:0e:b5:
38:8d:3c:71:7b:10:26:27:90:ba:35:b9:70:ff:cd:
d2:c8:be:8b:fd:f7:3a:4b:d4:ce:71:63:92:cd:c1:
e8:62:63:75:4a:ee:71:37:88:63:ca:79:af:c5:cf:
2f:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:36:80:C4:46:50:71:EB:3A:0E:9F:58:16:4C:BC:6B:F7:86:FC:8F
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:59:2d:93:ab:32:31:91:9f:0e:c2:dd:68:bc:ea:b7:25:7b:
6c:88:3b:6a:80:0e:20:1b:8f:3a:84:20:db:d8:12:06:12:56:
43:f7:69:02:50:af:d0:7c:ee:06:e7:ae:4b:c4:85:27:e3:61:
ac:17:72:01:ad:48:ba:0c:8a:ee:2f:88:36:a2:8d:ca:63:f6:
54:83:56:87:93:cb:82:53:c0:dc:c0:22:35:ad:12:a9:c1:ae:
05:12:90:7d:b0:39:34:b7:48:92:46:d7:02:78:91:bd:6a:d9:
ad:d4:2f:3b:4f:76:d3:64:af:b9:d6:6f:3c:22:fc:93:6f:78:
58:00:54:11:e3:30:0e:0a:a4:34:06:04:ad:7b:83:23:57:f3:
d1:1e:46:14:3d:3e:3a:3f:05:44:ba:3f:b2:4f:bd:62:a0:a5:
37:1d:c5:a6:a1:c6:9c:f4:62:47:58:c8:79:b9:ab:8c:61:bb:
f8:a3:34:8b:53:91:7b:7f:e3:84:c5:41:25:56:2c:51:94:09:
d0:93:f3:65:73:e5:71:44:7b:21:7b:32:e3:54:33:64:c3:db:
47:9d:2c:4b:ea:1f:9c:30:c2:08:81:31:c9:93:56:80:76:ed:
28:ec:89:de:07:8c:4b:bb:b4:da:73:fa:cb:8d:33:2e:e5:b2:
dc:63:24:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ84YDnHfsxzBx1xW2SUXCXWMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0
M2VmMDgwHhcNMjYwNzA2MTcwMDU3WhcNMjYwNzA3MTcwMDU3WjAzMTEwLwYDVQQD
EygwMjM2ODBjNDQ2NTA3MWViM2EwZTlmNTgxNjRjYmM2YmY3ODZmYzhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkzv0WNYkKTXWQBWuJqhlE145JYIQ
hxB3alavCHjr+IkU6kTpvvGKcMd93FXd1wTuOHyL0UKP0lnHns1ysyQiLi3xR842
No8C2HADKZUxDqGB7wG5fUfomS4pvsk14EIM0oczC45bXHKn7G9hpiDrPDC7PzAM
zg8nUtn4wox8c2tWA1yGWxu0EoraXV8OTpIJOVABUU0EU/JPsKC2gZhQd9cd1J7c
9oMMYowOe7i5qwzjFK53rwtILim+JdZ0fXYBMbjcUdVmKL3Qp5lnn03+DrU4jTxx
exAmJ5C6Nblw/83SyL6L/fc6S9TOcWOSzcHoYmN1Su5xN4hjynmvxc8vqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFAI2gMRGUHHrOg6fWBZMvGv3hvyPMB8GA1UdIwQY
MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt
YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz
LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1ktk6sy
MZGfDsLdaLzqtyV7bIg7aoAOIBuPOoQg29gSBhJWQ/dpAlCv0HzuBueuS8SFJ+Nh
rBdyAa1IugyK7i+INqKNymP2VINWh5PLglPA3MAiNa0SqcGuBRKQfbA5NLdIkkbX
AniRvWrZrdQvO09202SvudZvPCL8k294WABUEeMwDgqkNAYErXuDI1fz0R5GFD0+
Oj8FRLo/sk+9YqClNx3FpqHGnPRiR1jIebmrjGG7+KM0i1ORe3/jhMVBJVYsUZQJ
0JPzZXPlcUR7IXsy41QzZMPbR50sS+ofnDDCCIExyZNWgHbtKOyJ3geMS7u02nP6
y40zLuWy3GMklw==
-----END CERTIFICATE-----
Generated at Mon Jul 6 19:24:08 2026 by rpki-client