Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
File: kziECSasc-rVthh5GeiPEAMimco.mft (raw, json)
Hash identifier: gFCazekBUR1PG2jMph2ULQ/9ecQGYu/nFYyCSvNbTKU=
Subject key identifier: 9C:38:A3:91:CB:BA:1D:87:E2:8F:E4:92:A0:C1:FC:46:ED:EC:7F:C0
Authority key identifier: 93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA
Certificate issuer: /CN=9338840926ac73ead5b6187919e88f10032299ca
Certificate serial: 019EB544A850669A4A16AC91D9D3C1BD0B56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
Manifest number: 024A
Signing time: Thu 11 Jun 2026 06:00:36 +0000
Manifest this update: Thu 11 Jun 2026 06:00:36 +0000
Manifest next update: Fri 12 Jun 2026 06:00:36 +0000
Files and hashes: 1: 1-z0Y3fH_aErOAd2Nag5ZT3JcPH4.roa (hash: ajlsAWqEGjBF2s25AsAbzW/nKPdDq6JxNB0eWlyY3OU=)
2: 6lmykGrjWlxTI-Qm8cv1Wru-ZUM.roa (hash: 3/8y+29k2Z9zB5VeslI5T+W11/MyhEBGlF4ugyZh+nA=)
3: FcXUetsC0-6bv54Z1lmHoqKMdxM.roa (hash: dFkWAsnbwOvbQKILV1fPns+xMo4goiFme2jYhULRvHk=)
4: Y4x7zeztB7lrOx01OBJN1UiLyT0.roa (hash: gs7Dc5as7DJ7oLTov6hgPGgK6t+t5Pe4B5kRBUgM7WI=)
5: _SAMOxgv34T8ZP2BEt3dVFweldA.roa (hash: bU6RDLC/fFMgRKk4b1P2ryi1ytEL97qHkSA7liSJFY0=)
6: kziECSasc-rVthh5GeiPEAMimco.crl (hash: F04COiybZQr+yL1HZGcUTR8bpSSDq8M3754g1ThaWxU=)
7: nKQXbT6FciiHVvddJS0_5sOh1ms.asa (hash: 7BE1jfl/pKiooWczO/8pMkQZmIL4Zuvts1Z6qAFpwl4=)
8: nf63dpM5Md5RBRi4P-HwEK-eN_E.roa (hash: 9d7TgxCegK25CmqdbC1sGXI3mJJK7sBKT2RoRfBWFdw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl
rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 06:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:44:a8:50:66:9a:4a:16:ac:91:d9:d3:c1:bd:0b:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9338840926ac73ead5b6187919e88f10032299ca
Validity
Not Before: Jun 11 06:00:36 2026 GMT
Not After : Jun 12 06:00:36 2026 GMT
Subject: CN=9c38a391cbba1d87e28fe492a0c1fc46edec7fc0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:77:3d:71:86:1b:9b:77:9f:5b:66:5b:05:f4:
04:e9:86:4d:4b:38:cc:a1:53:97:1c:33:4f:40:91:
2c:40:de:fe:ad:f6:be:44:66:9b:a0:88:f4:8a:1d:
a5:ff:d2:ed:db:ac:29:c9:84:49:1b:74:4e:6d:70:
ca:42:45:6f:b8:3e:d0:bf:5a:1c:72:2f:2d:50:b1:
c8:47:ef:78:5b:1b:4d:d3:4c:49:c9:e1:51:36:c8:
e3:81:b0:ea:36:80:58:82:e8:3b:fe:dc:11:fd:b1:
58:44:61:b7:ad:dd:91:c8:bc:8d:0a:78:5e:f0:5e:
92:a2:f7:03:06:dc:d4:b5:28:1d:52:51:fb:69:85:
e7:1e:c7:f3:f6:e7:75:b6:26:b8:8c:51:cc:b4:fd:
95:b0:f2:39:27:2e:50:81:4f:38:34:3a:d0:e9:40:
8a:e7:31:07:d2:ce:a7:e2:de:48:65:2a:7e:49:58:
eb:57:e5:5c:b3:7a:03:59:d3:18:6f:b7:c3:a3:6f:
6c:b0:f9:cc:cc:19:1c:63:11:6e:fd:6c:c6:45:e4:
55:07:a8:8c:7d:93:0a:2a:76:ea:2b:e7:1c:54:13:
e6:7c:de:92:bc:a4:08:c2:c7:30:64:79:b6:03:7e:
db:16:28:9d:54:3a:b9:33:b9:e2:2e:e4:be:25:10:
73:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:38:A3:91:CB:BA:1D:87:E2:8F:E4:92:A0:C1:FC:46:ED:EC:7F:C0
X509v3 Authority Key Identifier:
keyid:93:38:84:09:26:AC:73:EA:D5:B6:18:79:19:E8:8F:10:03:22:99:CA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kziECSasc-rVthh5GeiPEAMimco.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/79/0bd4d3-d46c-483f-956e-ea7ae72bd32d/1/kziECSasc-rVthh5GeiPEAMimco.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
20:6f:3b:84:2d:30:34:d3:b4:1e:fb:9d:42:fc:4d:4b:8f:f7:
70:3b:fc:5e:02:ca:26:33:7d:de:01:60:1a:51:de:d5:e2:00:
68:c9:c2:1a:79:be:1d:4b:95:85:e6:c7:0e:e9:aa:e5:db:0b:
93:89:3d:a5:83:82:35:b3:5d:64:af:80:74:36:ac:6b:5a:8c:
19:22:a4:03:cc:2e:b5:24:c9:44:5b:85:07:3a:e1:40:a2:15:
4c:aa:0c:53:56:fd:65:ca:60:8c:c1:46:46:9d:68:04:23:1f:
ff:8a:d1:df:2a:24:7b:cc:40:2a:f0:18:dd:8c:18:ec:0c:c0:
a2:6b:41:a3:22:aa:02:3c:7d:dd:07:65:0f:e8:bd:98:a7:fe:
4b:01:f0:b6:3c:2e:79:22:47:08:8b:e0:70:ee:ee:11:41:6a:
6d:07:01:d0:ec:76:40:2f:d8:79:68:93:39:fd:20:e8:b4:d3:
14:1d:49:9c:17:35:6f:04:30:7c:2f:35:eb:d0:e4:42:11:77:
bd:ed:61:22:9b:51:fa:79:ce:b7:92:f1:9d:3e:58:db:ae:49:
89:96:0f:ba:4b:51:fc:75:19:2d:bb:6e:14:73:a1:8e:d4:f7:
f3:66:44:e8:3c:69:6b:0f:ad:8a:77:0b:73:64:fd:80:3f:ee:
97:c0:8f:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 13:06:32 2026 by rpki-client