Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
File: KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft (raw, json)
Hash identifier: qfaaNwmayHyqw6fuefOELgrlVsxONkd/UQl1dAQ7cnw=
Subject key identifier: C9:97:4D:4E:29:F2:1F:84:A1:9D:42:42:C8:67:C2:32:CD:6F:19:77
Authority key identifier: 2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
Certificate issuer: /CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Certificate serial: 019F11C0D74C97084DA804F8EC69FD8E0DED
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
Manifest number: 168E
Signing time: Mon 29 Jun 2026 05:01:18 +0000
Manifest this update: Mon 29 Jun 2026 05:01:18 +0000
Manifest next update: Tue 30 Jun 2026 05:01:18 +0000
Files and hashes: 1: KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl (hash: 56/N2dLnvLbXr/UtIdgY7yybTHUE+7WYuzeVETZICH8=)
2: L7FFVZjn00bwAbkg_Lv5HyPXbUw.roa (hash: DToSgYumdmGKe2TLhpTAx0H6yxJQdXcD2z0JX5cGoUQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 05:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:c0:d7:4c:97:08:4d:a8:04:f8:ec:69:fd:8e:0d:ed
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ad2fe6466d07094a4256da2cc847083c5006b1a
Validity
Not Before: Jun 29 05:01:18 2026 GMT
Not After : Jun 30 05:01:18 2026 GMT
Subject: CN=c9974d4e29f21f84a19d4242c867c232cd6f1977
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:94:7d:9a:d8:08:33:36:a7:96:fc:24:18:e4:
3a:a2:c0:cb:68:c7:46:ea:18:cf:49:d4:54:8f:d0:
b7:22:a6:e1:6e:6d:5f:0b:a5:70:e2:8d:39:8d:e9:
b4:d1:5d:43:4d:31:10:65:b6:96:1e:05:6d:05:10:
a3:78:e1:b2:ee:78:a0:ba:b2:76:b1:15:01:3a:1e:
11:e6:33:10:43:95:a1:9f:fd:9b:c7:fa:a2:f9:2a:
6f:ad:ae:fc:7e:92:be:af:85:c3:a8:83:68:48:19:
ed:9e:58:e6:ce:05:64:c2:18:cc:3e:aa:c6:69:86:
83:09:36:76:05:ef:5d:5f:63:78:b7:63:ba:08:e0:
55:96:91:f4:03:1a:83:89:e1:62:22:ca:ea:ed:78:
5d:48:44:48:ad:3b:18:71:79:0e:80:6c:52:b5:1c:
91:9b:93:af:e5:86:01:dd:47:4b:aa:69:1c:32:a9:
d0:7a:1a:ee:d4:22:46:93:0a:e0:0a:f0:62:b5:73:
aa:a3:bf:00:ab:b7:18:a1:b0:8d:73:00:1f:15:4b:
87:fb:0d:82:8b:bc:ee:da:a3:38:5b:e5:58:ad:4f:
25:38:97:91:73:29:6d:41:bc:0a:79:eb:65:c7:bd:
b2:96:08:79:6d:50:0b:d9:0c:dd:8e:63:6a:8d:04:
27:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:97:4D:4E:29:F2:1F:84:A1:9D:42:42:C8:67:C2:32:CD:6F:19:77
X509v3 Authority Key Identifier:
keyid:2A:D2:FE:64:66:D0:70:94:A4:25:6D:A2:CC:84:70:83:C5:00:6B:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KtL-ZGbQcJSkJW2izIRwg8UAaxo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8a31f3-7acf-47b4-b97b-fa31e2dc6abb/1/KtL-ZGbQcJSkJW2izIRwg8UAaxo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:e0:72:5a:f5:81:00:c5:01:f4:f6:7f:8b:99:5f:a6:37:34:
b9:d6:1f:7c:95:e9:4a:ef:ac:16:1c:3a:ec:7e:59:37:6c:11:
ff:7a:ae:41:f9:10:e1:c4:10:42:be:af:5d:f3:4d:48:9a:0c:
c3:b9:6d:87:97:fc:4e:a0:67:61:ee:dd:45:8a:b5:e7:63:28:
9f:c4:2c:fe:a3:07:fa:6c:ae:a4:59:55:4b:a2:f8:53:09:9b:
c5:9b:02:fc:d0:8e:d4:e4:11:ab:cd:5f:da:39:d0:a0:c7:e8:
a2:59:7c:2d:31:84:59:94:48:95:09:15:56:8f:2d:d2:b5:2c:
79:d6:8a:36:bd:b8:0a:a3:31:b2:74:be:f3:dd:64:a2:31:28:
ca:11:c8:64:a8:9a:56:ee:83:07:08:ad:04:7c:e0:4d:a0:47:
7a:0a:cd:5e:a1:b5:87:bf:c8:4f:4c:25:0a:c8:9a:54:ea:80:
22:30:67:b8:df:6c:fb:08:c8:d3:74:a0:bf:0c:e5:6a:a1:16:
5d:dd:c6:49:0b:ad:dc:5c:36:cb:ce:19:ac:0f:c5:10:df:a6:
84:7e:ef:ff:02:70:be:a5:31:62:ac:a2:b7:15:3a:c0:62:16:
f7:59:b0:b6:f5:34:35:09:83:e6:1b:48:38:5b:a6:28:38:09:
83:1c:87:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:11:39 2026 by rpki-client