Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: HOKXcvr+Tnruex1t3bokc2TDhJDl2nZ7XLEoh3KaOHQ=
Subject key identifier: 11:EF:CD:21:03:B5:FE:86:57:5E:E7:31:E9:5F:33:27:9F:7D:EF:F8
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019E4EB416D67A1932E34A38FBC7C9FE1007
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 0895
Signing time: Fri 22 May 2026 08:01:25 +0000
Manifest this update: Fri 22 May 2026 08:01:25 +0000
Manifest next update: Sat 23 May 2026 08:01:25 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: fpfgIdkDaoKhWPtMhFZ2ozx7aSR0hhnyQL26sqGqHa8=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 23 May 2026 08:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:4e:b4:16:d6:7a:19:32:e3:4a:38:fb:c7:c9:fe:10:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: May 22 08:01:25 2026 GMT
Not After : May 23 08:01:25 2026 GMT
Subject: CN=11efcd2103b5fe86575ee731e95f33279f7deff8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:1b:39:f0:64:5b:ed:6a:5c:27:9e:a5:8c:8e:
0f:76:81:ad:3a:ed:d8:20:33:aa:5d:e6:bf:84:41:
aa:2b:37:68:4f:13:9d:23:48:22:2c:09:cb:a9:37:
aa:a2:a4:70:7e:56:7c:c3:66:fb:9e:a7:2b:dc:a8:
a1:52:95:da:e3:2d:e4:e5:64:2b:d4:85:cb:91:34:
3f:91:bf:80:17:ca:54:d8:6b:2a:50:9c:ce:38:8c:
2e:4b:ad:e4:43:e4:3d:fb:ff:08:e3:c4:c7:57:9e:
7b:20:b1:87:12:bb:01:41:20:35:c5:c6:88:c7:45:
ba:fd:b7:ae:7d:9d:d1:29:13:0f:0f:84:aa:a2:15:
f4:27:9d:62:95:28:da:c4:7e:31:ca:dc:88:0d:d2:
3f:b9:b0:f3:b2:8e:2f:cc:8e:b8:de:4e:73:2e:98:
1c:67:ff:83:81:61:17:11:16:74:17:4d:f4:10:56:
b3:61:f0:17:ea:1c:49:6d:62:23:0b:e5:5d:b6:35:
a9:97:da:26:02:16:f8:de:3c:75:c9:05:6e:0e:d3:
28:36:19:c9:34:bb:91:de:a0:90:6a:3a:9d:44:9c:
11:fb:0c:80:83:f9:28:40:a2:ee:4c:81:9f:db:40:
ee:6e:bc:2c:d9:f4:c9:a1:e2:f8:ef:ef:4a:03:d9:
4f:5d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:EF:CD:21:03:B5:FE:86:57:5E:E7:31:E9:5F:33:27:9F:7D:EF:F8
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:52:41:da:19:5f:79:59:e3:4d:95:b2:d9:84:67:83:7c:5d:
c4:fc:78:b2:48:f5:10:9e:ae:f0:16:fe:04:19:43:13:45:76:
34:a2:3c:d1:4f:e6:00:94:34:a7:24:70:13:0a:df:98:3f:97:
ea:7a:1b:77:36:e5:8f:42:8b:31:1e:f7:bf:e8:10:ae:82:2f:
59:b7:49:9c:c4:66:d0:d9:66:94:43:1d:18:91:98:89:69:6a:
3f:ed:1f:87:d7:27:5a:d2:1c:a6:66:4c:66:e1:34:a2:5c:60:
1d:ec:a5:28:bb:91:de:3a:be:1d:05:a8:43:b2:91:6d:cf:cb:
de:a8:40:66:14:77:fe:8c:0f:b7:2d:f5:7e:5a:51:f2:fa:50:
fb:91:2e:0b:8c:7a:e2:bc:eb:69:f9:c8:03:17:36:a0:03:d3:
e4:ff:79:f8:da:68:d9:d4:2d:e0:4a:8e:27:71:dc:70:c6:24:
25:92:3d:f9:92:f4:bd:40:7b:16:99:0d:62:b3:1e:ea:8d:75:
36:36:af:f7:88:cd:51:fe:e9:40:62:80:5c:28:4c:57:89:0a:
39:ae:2a:45:71:49:2e:d8:7c:bb:38:8f:5b:ae:43:66:5e:ae:
6a:b9:f5:be:fb:34:5f:8d:e3:02:b5:0c:53:ce:76:e4:7e:33:
74:90:43:9c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ5OtBbWehky40o4+8fJ/hAHMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDg1ZmM1MzRjMTNlMDg4MmUyNjBhODk1ZjNjZjBjNTU0
M2VmMDgwHhcNMjYwNTIyMDgwMTI1WhcNMjYwNTIzMDgwMTI1WjAzMTEwLwYDVQQD
EygxMWVmY2QyMTAzYjVmZTg2NTc1ZWU3MzFlOTVmMzMyNzlmN2RlZmY4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxs58GRb7WpcJ56ljI4PdoGtOu3Y
IDOqXea/hEGqKzdoTxOdI0giLAnLqTeqoqRwflZ8w2b7nqcr3KihUpXa4y3k5WQr
1IXLkTQ/kb+AF8pU2GsqUJzOOIwuS63kQ+Q9+/8I48THV557ILGHErsBQSA1xcaI
x0W6/beufZ3RKRMPD4SqohX0J51ilSjaxH4xytyIDdI/ubDzso4vzI643k5zLpgc
Z/+DgWEXERZ0F030EFazYfAX6hxJbWIjC+VdtjWpl9omAhb43jx1yQVuDtMoNhnJ
NLuR3qCQajqdRJwR+wyAg/koQKLuTIGf20Dubrws2fTJoeL47+9KA9lPXQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBHvzSEDtf6GV17nMelfMyeffe/4MB8GA1UdIwQY
MBaAFCkIX8U0wT4IguJgqJXzzwxVQ+8IMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWIt
YzMyOTcxMjllNGQzLzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MS81NmQ0OTAtMDE5Ni00NWFjLTgzZWItYzMyOTcxMjllNGQz
LzEvS1FoZnhUVEJQZ2lDNG1Db2xmUFBERlZEN3dnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEFJB2hlf
eVnjTZWy2YRng3xdxPx4skj1EJ6u8Bb+BBlDE0V2NKI80U/mAJQ0pyRwEwrfmD+X
6nobdzblj0KLMR73v+gQroIvWbdJnMRm0NlmlEMdGJGYiWlqP+0fh9cnWtIcpmZM
ZuE0olxgHeylKLuR3jq+HQWoQ7KRbc/L3qhAZhR3/owPty31flpR8vpQ+5EuC4x6
4rzrafnIAxc2oAPT5P95+Npo2dQt4EqOJ3HccMYkJZI9+ZL0vUB7FpkNYrMe6o11
Njav94jNUf7pQGKAXChMV4kKOa4qRXFJLth8uziPW65DZl6uarn1vvs0X43jArUM
U8525H4zdJBDnA==
-----END CERTIFICATE-----
Generated at Fri May 22 15:17:22 2026 by rpki-client