Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
File: KMaADXS8QQW0DnfqCFugJtvuw18.mft (raw, json)
Hash identifier: kQB5Ttr81pF4ik/P5xeOYiZA5Bzh8c8EX6wdiLp0RSk=
Subject key identifier: 64:54:EB:E0:2D:4C:1F:76:68:B2:35:D0:AF:AC:7B:72:75:DC:09:C2
Authority key identifier: 28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
Certificate issuer: /CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Certificate serial: 019E2A39E62383CF5E75DE16345B79F73A84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
Manifest number: 134E
Signing time: Fri 15 May 2026 06:01:37 +0000
Manifest this update: Fri 15 May 2026 06:01:37 +0000
Manifest next update: Sat 16 May 2026 06:01:37 +0000
Files and hashes: 1: KMaADXS8QQW0DnfqCFugJtvuw18.crl (hash: YJTO60nLIIZ0I3PBPOqoFtL8UfLD1GWGxVgaYv0m4Ls=)
2: etmHXHHHLtcS91uDngOtEabkiBg.roa (hash: RSzmWtizgbjdSjkpsRPkAgQwWXoqPbD9+Fp30azxzoA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:39:e6:23:83:cf:5e:75:de:16:34:5b:79:f7:3a:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c6800d74bc4105b40e77ea085ba026dbeec35f
Validity
Not Before: May 15 06:01:37 2026 GMT
Not After : May 16 06:01:37 2026 GMT
Subject: CN=6454ebe02d4c1f7668b235d0afac7b7275dc09c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:bf:c6:25:a4:7a:d7:d7:8b:ce:9a:50:dc:d2:
e2:71:08:8d:4d:0b:e2:18:10:af:c2:fb:07:fc:d4:
05:ef:91:bf:80:45:ef:cc:f0:92:e2:e3:54:86:03:
a7:75:0c:8d:12:10:3c:78:9b:a9:27:17:1e:1f:e9:
cb:85:83:fa:f5:d4:57:5b:9a:7c:48:79:40:13:c5:
12:78:66:da:e2:e1:00:c4:a1:b2:f3:4b:26:f0:25:
77:84:36:b9:ea:f5:92:4e:67:7c:92:ba:69:72:46:
92:ef:66:0d:4e:ed:68:87:db:94:01:66:50:4d:05:
da:1b:bc:94:2b:0b:23:ec:98:64:c1:38:1f:d2:1d:
8f:51:ef:f1:32:9f:59:6d:8e:58:81:27:e1:88:af:
5b:f3:8e:81:db:e7:6b:86:74:d7:b4:f7:b9:60:99:
4e:a3:c2:70:48:fc:50:92:fc:4b:27:1e:5f:61:4f:
fd:10:c5:3a:5e:05:cf:d0:b8:29:4d:86:9a:8e:86:
31:c3:28:46:85:08:81:54:12:70:25:80:4a:64:62:
3c:5c:e6:7a:a0:09:4c:9f:aa:95:af:1f:2c:30:8e:
7e:0f:3c:cc:de:f0:40:38:cc:b2:07:dc:8b:e6:a3:
20:d3:3c:ee:52:11:be:e3:d2:f4:7f:5e:ba:0f:90:
7b:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:54:EB:E0:2D:4C:1F:76:68:B2:35:D0:AF:AC:7B:72:75:DC:09:C2
X509v3 Authority Key Identifier:
keyid:28:C6:80:0D:74:BC:41:05:B4:0E:77:EA:08:5B:A0:26:DB:EE:C3:5F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMaADXS8QQW0DnfqCFugJtvuw18.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/242911-93c0-45e7-9012-4939bbfdfb86/1/KMaADXS8QQW0DnfqCFugJtvuw18.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:9c:b5:bb:32:7c:68:8d:99:4b:9a:6a:18:ae:c1:ad:77:f9:
75:03:cc:48:f1:12:56:b3:e7:8f:99:cb:80:4c:08:71:56:d3:
16:24:a1:e7:1d:6c:f1:4e:e8:79:4d:ce:81:12:21:82:f1:b8:
ce:02:5e:1d:0c:18:59:ae:67:53:92:13:1b:57:13:8e:68:e5:
fe:92:f1:66:e1:51:e9:85:8d:fb:36:5f:e4:dc:22:e5:cf:90:
a6:ed:e5:e9:e2:1b:7b:cd:64:6c:a5:31:dc:ae:a3:69:a7:d4:
ac:02:00:5b:6c:07:98:ba:4a:ff:b5:09:87:7c:24:f2:64:95:
98:96:b9:e5:55:9f:4c:c8:a8:f7:39:5f:82:b8:51:d7:c9:a6:
cb:a2:13:f8:6e:bf:d4:1d:77:c6:a2:32:eb:dc:c5:33:b9:fe:
c9:dd:0a:bc:1d:66:00:d6:58:50:fb:e2:45:cf:28:fd:e2:4c:
b3:a9:c7:16:c8:b3:45:92:c7:b3:04:e5:a2:c8:fa:00:04:b8:
02:75:a1:d7:9c:56:11:9c:c9:4f:19:8e:48:c5:ab:47:15:13:
72:33:41:7f:85:12:c8:6e:20:68:21:ad:c9:da:e9:fc:68:aa:
6b:bc:4d:98:30:37:3f:ac:ec:93:07:89:93:69:5c:3d:e9:e6:
9a:3c:88:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 09:51:35 2026 by rpki-client