Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: Dqlffw+jJUaSpCUNJlNOSFXUWd6dWjLwGoHuqSAMbGQ=
Subject key identifier: A9:09:FE:9D:B4:F3:2B:B7:F4:F4:B3:B1:48:03:0C:37:67:23:93:87
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 019F159DA4D21BBA853E7EB1BA1C7D58CCFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 1903
Signing time: Mon 29 Jun 2026 23:01:20 +0000
Manifest this update: Mon 29 Jun 2026 23:01:20 +0000
Manifest next update: Tue 30 Jun 2026 23:01:20 +0000
Files and hashes: 1: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: XQE69TCvrh4AQJpvZu9GJuZP19FkSOWsF/L7VOXkpj8=)
2: ubLK8V8AN7yzYWZ8GjbAC2BzmVk.roa (hash: soBVeg6Yikd3nUzcvoeLHOcCe6rQjh4SHsU1xYr91hM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 21:41:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:15:9d:a4:d2:1b:ba:85:3e:7e:b1:ba:1c:7d:58:cc:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Jun 29 23:01:20 2026 GMT
Not After : Jun 30 23:01:20 2026 GMT
Subject: CN=a909fe9db4f32bb7f4f4b3b148030c3767239387
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:33:f3:36:42:45:ea:8b:66:3f:01:11:ce:ac:
d4:fa:d2:c8:2d:51:cc:a7:68:ba:71:58:a8:be:f4:
7a:92:1a:af:41:2d:06:9f:29:3c:0a:64:f8:aa:b2:
df:90:77:be:aa:35:22:33:b0:55:b7:10:45:84:7a:
01:a2:74:ba:f2:3d:75:b7:22:b1:19:08:d2:75:26:
fc:be:92:ee:bf:05:72:35:0a:a2:1d:7a:8a:31:a0:
11:53:c8:37:72:72:a3:c6:c7:30:0b:01:dc:a7:08:
f2:41:4a:a8:1f:9a:dc:db:39:d8:5c:64:5e:eb:4d:
10:02:b7:37:a8:07:0e:cc:5c:40:fd:b7:5e:0f:84:
a0:bc:cc:64:33:5b:4a:47:29:ee:ca:f8:e1:1b:1b:
3a:21:cf:32:d8:e0:47:ee:4b:60:29:9b:a2:91:69:
85:5d:28:cb:71:03:6e:2a:31:69:ea:c8:92:4a:72:
75:02:d6:70:cd:9d:49:9c:f7:8e:2d:87:03:3a:7e:
dd:33:1f:d5:74:64:15:df:b9:82:3d:f1:bc:d9:45:
c3:69:40:06:d0:75:8e:f1:77:d2:47:bd:60:1f:4e:
19:bb:5e:d0:89:d4:0b:ea:45:a6:7c:e9:64:b9:cb:
0a:49:90:64:c0:2d:6a:5c:a6:a8:28:ba:d3:ae:19:
d7:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:09:FE:9D:B4:F3:2B:B7:F4:F4:B3:B1:48:03:0C:37:67:23:93:87
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:17:4b:e9:ca:31:87:7f:3a:c3:45:48:07:c4:d2:1e:6e:af:
3e:a4:15:9c:e6:73:f1:bd:01:a5:95:c4:3d:f7:60:7b:4a:c9:
70:d0:9b:9e:91:48:de:c6:93:e5:d0:e3:ef:c3:3d:57:61:7d:
77:1e:1d:2d:6d:26:2f:54:1b:99:b7:bd:34:a3:38:ba:1a:f5:
4e:d7:e3:f4:fa:c9:d7:cb:28:29:63:5c:b4:5a:78:b8:63:2b:
c1:ef:36:8a:eb:a0:c2:46:98:f5:46:fd:d0:0e:ad:0c:8d:6a:
c3:b8:eb:c5:d8:16:25:41:98:ce:0c:e9:85:49:14:f6:d6:45:
c4:cd:3e:22:b8:48:b3:08:f1:56:d8:73:07:61:b6:f0:92:9d:
13:01:0c:1e:c1:c7:7a:36:f7:c7:b5:d6:fd:3f:41:f9:5a:db:
10:aa:98:37:89:4c:8c:18:75:63:fb:55:05:0e:5e:62:37:87:
be:f8:71:a0:9e:1a:ae:e8:71:cb:35:a8:0d:61:a4:0d:a6:05:
ae:0d:ec:06:ba:aa:62:94:6a:c2:a7:35:31:ea:54:31:40:e8:
3b:9d:d2:08:c9:51:a8:d0:e7:4e:3c:64:b2:f7:77:41:4c:e5:
36:83:97:77:a0:f0:70:a3:be:2b:52:a3:5d:75:8a:91:6f:bc:
ba:ad:cb:3d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 01:24:43 2026 by rpki-client