Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: ud1H1pZJrqsgO9nFhJWiOs/YABWwiClp9fp5Uv24FE8=
Subject key identifier: B4:4A:93:7C:CA:A5:6F:18:14:8B:1F:F4:6D:2C:CB:E9:4C:67:BA:C7
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 019F13AED6703A6CBFCBFB2191597F1C8B34
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 1902
Signing time: Mon 29 Jun 2026 14:00:52 +0000
Manifest this update: Mon 29 Jun 2026 14:00:52 +0000
Manifest next update: Tue 30 Jun 2026 14:00:52 +0000
Files and hashes: 1: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: RWgxAg3Is6nUmMdnC+CGacRmFQUc64p5CQUsgU6xGlI=)
2: ubLK8V8AN7yzYWZ8GjbAC2BzmVk.roa (hash: soBVeg6Yikd3nUzcvoeLHOcCe6rQjh4SHsU1xYr91hM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 14:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:13:ae:d6:70:3a:6c:bf:cb:fb:21:91:59:7f:1c:8b:34
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Jun 29 14:00:52 2026 GMT
Not After : Jun 30 14:00:52 2026 GMT
Subject: CN=b44a937ccaa56f18148b1ff46d2ccbe94c67bac7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:98:d9:4c:c8:2d:04:bb:60:a2:5e:76:95:c5:
fa:96:36:b8:d6:d5:dc:46:67:f7:64:17:c1:a2:92:
8b:e5:af:84:5b:05:e7:4e:8a:2f:b1:c5:e5:59:23:
a6:fc:7d:c6:a8:e9:e9:04:4d:77:05:3b:67:26:a4:
79:9e:8a:93:0a:77:df:08:f9:54:05:dd:eb:27:a0:
df:23:67:1f:9f:7d:af:36:5e:c7:0c:9a:79:56:12:
fa:b2:65:7f:de:bf:d1:2b:87:f6:ad:ca:f1:50:45:
65:84:5b:81:dc:64:03:ba:ca:bb:d2:39:e7:a0:24:
65:1e:b8:4d:cd:04:2d:37:89:e0:f9:23:71:a9:95:
ae:05:21:69:c2:c2:a7:89:a9:c8:92:1c:28:4d:cb:
3e:34:9b:42:a5:a4:a4:d5:21:68:a1:da:36:75:02:
ab:ed:ca:f9:1a:8f:b2:38:05:78:e8:a0:87:d9:ac:
80:b9:0c:70:94:55:94:27:e3:86:79:e5:d0:04:cf:
e0:5f:fc:0f:02:1e:7e:c4:d0:55:31:a8:94:58:72:
7c:bf:60:52:46:9c:0a:bc:d4:cf:e3:3a:c3:e7:fd:
37:d9:1b:cf:67:45:11:9e:77:c0:4b:fb:c8:ac:59:
97:4d:67:05:de:99:42:81:62:20:83:69:d6:99:c5:
49:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:4A:93:7C:CA:A5:6F:18:14:8B:1F:F4:6D:2C:CB:E9:4C:67:BA:C7
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:e3:30:fb:70:86:46:80:26:02:ff:c4:a1:57:b4:43:a7:dd:
d8:bd:60:a6:33:c5:42:05:fc:0d:48:46:aa:5d:87:cc:40:3f:
c4:cf:45:d6:6a:b9:f1:4a:38:eb:b6:1e:1f:1c:5a:ee:81:fc:
6b:b2:04:54:cd:2f:3a:37:51:c6:81:5b:9a:84:f1:3e:56:47:
d0:22:60:e8:1e:5a:34:95:6b:a6:d0:13:1e:bf:73:0f:d0:3d:
c6:27:e9:b6:b5:88:26:61:32:f6:34:e5:03:89:5f:18:c5:9e:
c8:66:be:ac:fa:b6:12:59:86:e9:24:57:c0:ab:69:3d:44:11:
d2:65:4c:a1:ea:86:e8:8d:52:bf:89:00:42:31:d9:ff:82:61:
13:58:a1:91:17:11:76:f5:65:b6:29:39:80:09:72:58:aa:d6:
86:1c:dc:48:bb:b8:9b:7c:2a:b3:1c:71:3e:a5:7a:0e:73:01:
60:fe:f8:a0:c6:4d:f6:8e:c4:40:7d:dc:0d:45:0a:94:08:75:
a5:2a:d6:4d:23:f9:1c:8c:6a:77:b5:9c:69:54:c6:da:10:95:
e6:45:25:03:e5:29:e4:20:23:53:2c:0b:da:f2:6c:27:0b:8e:
b4:3f:1c:56:eb:ad:76:7c:18:b0:24:56:d0:d2:cd:ad:73:79:
31:c3:42:c8
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8TrtZwOmy/y/shkVl/HIs0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4MDJiNWIwMjVjZjRlYTEzMzk1ZmM1N2I1YTRkNjg5OGU3
MzMyY2YwHhcNMjYwNjI5MTQwMDUyWhcNMjYwNjMwMTQwMDUyWjAzMTEwLwYDVQQD
EyhiNDRhOTM3Y2NhYTU2ZjE4MTQ4YjFmZjQ2ZDJjY2JlOTRjNjdiYWM3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuJjZTMgtBLtgol52lcX6lja41tXc
Rmf3ZBfBopKL5a+EWwXnToovscXlWSOm/H3GqOnpBE13BTtnJqR5noqTCnffCPlU
Bd3rJ6DfI2cfn32vNl7HDJp5VhL6smV/3r/RK4f2rcrxUEVlhFuB3GQDusq70jnn
oCRlHrhNzQQtN4ng+SNxqZWuBSFpwsKnianIkhwoTcs+NJtCpaSk1SFoodo2dQKr
7cr5Go+yOAV46KCH2ayAuQxwlFWUJ+OGeeXQBM/gX/wPAh5+xNBVMaiUWHJ8v2BS
RpwKvNTP4zrD5/032RvPZ0URnnfAS/vIrFmXTWcF3plCgWIgg2nWmcVJLQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLRKk3zKpW8YFIsf9G0sy+lMZ7rHMB8GA1UdIwQY
MBaAFCgCtbAlz06hM5X8V7Wk1omOczLPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0FLMXNDWFBUcUV6bGZ4WHRhVFdpWTV6TXM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83My8zNzU1MjItYjY5NS00MzFiLThkNDkt
NjZiNDM0ZmRmOWFlLzEvS0FLMXNDWFBUcUV6bGZ4WHRhVFdpWTV6TXM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83My8zNzU1MjItYjY5NS00MzFiLThkNDktNjZiNDM0ZmRmOWFl
LzEvS0FLMXNDWFBUcUV6bGZ4WHRhVFdpWTV6TXM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALuMw+3CG
RoAmAv/EoVe0Q6fd2L1gpjPFQgX8DUhGql2HzEA/xM9F1mq58Uo467YeHxxa7oH8
a7IEVM0vOjdRxoFbmoTxPlZH0CJg6B5aNJVrptATHr9zD9A9xifptrWIJmEy9jTl
A4lfGMWeyGa+rPq2ElmG6SRXwKtpPUQR0mVMoeqG6I1Sv4kAQjHZ/4JhE1ihkRcR
dvVltik5gAlyWKrWhhzcSLu4m3wqsxxxPqV6DnMBYP74oMZN9o7EQH3cDUUKlAh1
pSrWTSP5HIxqd7WcaVTG2hCV5kUlA+Up5CAjUywL2vJsJwuOtD8cVuutdnwYsCRW
0NLNrXN5McNCyA==
-----END CERTIFICATE-----
Generated at Tue Jun 30 00:31:05 2026 by rpki-client