Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
File: KMaADXS8QQW0DnfqCFugJtvuw18.mft (raw, json)
Hash identifier: NCArB+w/oJpK6PUY0mahC8e9nG2pG6E115tSaHSmoqA=
Subject key identifier: 18:84:2D:5A:C3:B4:FA:D9:11:F9:C4:E7:D3:B4:A5:8E:D1:3E:F9:F0
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 019F11F89EEEDE31DE62AE99CFEFC7079A3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
Manifest number: 13C6
Signing time: Mon 29 Jun 2026 06:02:13 +0000
Manifest this update: Mon 29 Jun 2026 06:02:13 +0000
Manifest next update: Tue 30 Jun 2026 06:02:13 +0000
Files and hashes: 1: KMaADXS8QQW0DnfqCFugJtvuw18.crl (hash: G9HQ0gJGvONOgFdQpdJG+3Nh4tkgjRriHko+Z9xpUQ8=)
2: etmHXHHHLtcS91uDngOtEabkiBg.roa (hash: RSzmWtizgbjdSjkpsRPkAgQwWXoqPbD9+Fp30azxzoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f8:9e:ee:de:31:de:62:ae:99:cf:ef:c7:07:9a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: Jun 29 06:02:13 2026 GMT
Not After : Jun 30 06:02:13 2026 GMT
Subject: CN=18842d5ac3b4fad911f9c4e7d3b4a58ed13ef9f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:4e:31:55:e2:c6:ff:cd:fe:3f:2a:5c:e2:b5:
22:52:1c:8a:6d:57:2e:63:77:dc:da:b3:62:2a:35:
e4:c7:37:93:2b:a6:14:78:21:90:44:8a:53:11:97:
21:06:52:d3:07:55:93:16:0c:15:dd:9b:49:46:6f:
13:48:d1:98:88:cd:07:fd:7f:bc:39:26:35:1d:b9:
07:d4:60:10:91:07:e0:4c:bc:dd:8a:a1:e6:51:f5:
b9:18:6b:ae:53:30:50:76:84:be:13:a4:4b:5b:41:
28:be:4f:fc:22:67:c1:19:e3:17:51:97:68:f7:09:
51:e6:dd:95:41:97:57:97:60:e6:94:2a:35:6a:1a:
ee:61:f8:4b:8e:6a:95:58:a8:5c:b8:fd:72:b0:55:
b1:81:94:ea:e4:7d:c9:f7:ff:14:b0:0e:d2:d7:0c:
7a:1c:06:fd:44:6f:11:ff:fb:9e:cd:4f:48:e8:c2:
d4:99:e2:c5:23:95:c8:7f:ee:53:76:07:96:25:13:
08:4f:76:01:c7:0d:16:7c:5a:88:d7:f4:a6:e8:cf:
16:e1:16:c9:a2:1a:ce:be:71:1d:6d:29:3b:c5:69:
f7:35:57:6d:9f:44:d8:ba:6e:d5:9c:b1:a1:d7:1a:
83:ec:ad:2d:4e:f1:53:21:f4:fe:04:66:52:de:60:
2a:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:84:2D:5A:C3:B4:FA:D9:11:F9:C4:E7:D3:B4:A5:8E:D1:3E:F9:F0
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:14:7f:d0:19:a3:8c:37:f7:aa:12:0c:4a:a6:54:da:9a:de:
06:45:a3:cb:92:9c:62:31:90:86:e2:b5:6b:5c:8f:6f:10:55:
54:78:d5:e0:42:85:10:44:81:66:c9:c7:43:2d:38:ed:2d:96:
d1:72:e6:0f:29:6d:c0:27:0e:6c:e8:6a:b7:55:65:dd:e3:fe:
1e:11:1d:94:49:55:f1:8b:54:8a:f4:4b:bf:90:92:97:3f:43:
a9:7d:86:50:3e:22:0b:62:8c:c2:a1:85:d4:d5:f4:8d:6c:96:
70:16:f2:4c:a2:be:95:80:76:6b:96:aa:92:e5:5b:d4:21:4d:
d4:19:69:be:37:7d:dd:a6:41:93:a3:24:12:8e:3c:4b:29:14:
b9:c4:b1:03:19:0d:83:92:3e:02:f0:00:cd:0f:2e:5a:ab:86:
6c:4a:e4:d7:29:1c:c8:ad:b7:84:c5:1c:2e:8b:75:34:36:0c:
e6:c2:ae:ba:21:9c:26:e0:97:3e:e6:88:22:03:7e:83:a4:88:
94:bc:c1:31:02:cc:39:b8:3e:0f:d1:2d:ab:0c:c4:8c:2d:53:
a5:e3:12:d1:e7:6d:e8:f4:f7:8b:51:2b:bf:dd:f4:bc:e1:19:
65:da:bc:03:4e:ee:cd:62:70:35:1f:e4:0b:d3:91:df:4f:c9:
90:8c:7a:a3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:11:01 2026 by rpki-client