Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
File: KQzE0K1dr8J6pONC-oDjSBToRcM.mft (raw, json)
Hash identifier: LxEEhRZz6u313+4Xxmdm9bs+eb/tHMy7J/WjRModWnM=
Subject key identifier: 2E:C7:11:B2:77:76:69:FD:AF:E8:A7:89:EB:B4:18:76:6F:60:E5:18
Authority key identifier: 29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
Certificate issuer: /CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Certificate serial: 019ED72C9ECA32DE7F55FAC07A3A2720C28B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
Manifest number: 09A4
Signing time: Wed 17 Jun 2026 20:01:26 +0000
Manifest this update: Wed 17 Jun 2026 20:01:26 +0000
Manifest next update: Thu 18 Jun 2026 20:01:26 +0000
Files and hashes: 1: 8VX81mIN7vUsRhJW48dZspn-gfQ.roa (hash: opWYJ7DxQf0ldyigS/RlqXZSlYWzHJuairf51+euGWc=)
2: KQzE0K1dr8J6pONC-oDjSBToRcM.crl (hash: 5rW03pfbObnlmnQJJK2BiK3uTvrtvJLlP4qrJ/4sX0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 17:00:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d7:2c:9e:ca:32:de:7f:55:fa:c0:7a:3a:27:20:c2:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290cc4d0ad5dafc27aa4e342fa80e34814e845c3
Validity
Not Before: Jun 17 20:01:26 2026 GMT
Not After : Jun 18 20:01:26 2026 GMT
Subject: CN=2ec711b2777669fdafe8a789ebb418766f60e518
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:39:bf:b7:9d:5a:cd:74:c5:ab:2e:99:65:40:
c3:71:d9:e2:98:09:7a:f3:ab:42:3d:6d:4a:fc:9c:
9e:dd:20:e5:c1:fd:20:eb:4f:a4:f1:29:7b:1b:f2:
3a:c3:39:fb:fa:f9:59:43:a7:d1:a1:dd:26:8b:59:
d8:e6:3b:3d:70:db:a5:07:5f:27:93:d9:9d:f6:46:
e3:a4:c7:9a:3f:f0:22:e9:7f:da:97:72:b8:a3:3d:
20:5d:7c:ae:73:9d:f7:8d:56:ac:75:6c:e9:5f:5f:
78:d0:e3:3d:46:61:e4:eb:33:f1:a5:74:11:75:e6:
e6:73:1c:5c:1f:c5:0b:87:ba:c9:dc:2f:7a:fd:1e:
71:84:0e:c5:28:a4:4e:c4:f2:2b:f4:34:54:10:8c:
89:ec:aa:9c:cf:8d:d7:28:5d:95:78:9a:d5:3c:bf:
b1:e7:34:92:5a:11:73:40:fa:0b:b9:10:55:31:0f:
34:b5:52:38:29:2c:da:7d:3c:c2:28:91:dc:a2:67:
2d:41:8e:c0:44:ec:83:c9:7c:0c:92:83:68:12:c4:
8e:4e:0b:d8:dc:b8:40:38:6f:c6:6e:3a:38:28:84:
fd:52:73:c8:c3:a2:28:bd:1d:5d:bf:c1:ff:bb:91:
6d:df:40:d7:18:9a:5e:ad:e9:19:97:30:e4:f0:37:
d0:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2E:C7:11:B2:77:76:69:FD:AF:E8:A7:89:EB:B4:18:76:6F:60:E5:18
X509v3 Authority Key Identifier:
keyid:29:0C:C4:D0:AD:5D:AF:C2:7A:A4:E3:42:FA:80:E3:48:14:E8:45:C3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQzE0K1dr8J6pONC-oDjSBToRcM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/92352f-4051-450e-b3a6-2e0078cee182/1/KQzE0K1dr8J6pONC-oDjSBToRcM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:1b:4d:b7:84:af:52:21:55:76:d5:97:e6:e2:2e:6a:c7:1b:
19:a3:f1:0c:b3:e7:ab:51:f2:92:fb:b9:f1:1b:f0:03:6f:44:
8e:31:73:df:eb:81:95:45:1d:fb:76:39:a8:f7:1c:e3:f8:1d:
c6:01:07:d6:1e:76:58:e1:e8:4b:5b:a0:da:c1:40:78:10:68:
ef:07:39:eb:0a:3e:ad:1a:7f:1b:22:98:36:72:35:47:46:cd:
37:15:74:78:48:d1:06:43:5e:ab:ae:5b:14:99:0d:91:51:da:
e1:1a:72:54:76:1c:57:44:ce:dd:be:64:d1:1b:b7:3c:0d:56:
4d:24:2f:19:dd:40:47:fd:60:6a:08:ca:3f:34:b1:6a:88:08:
5e:6c:9d:52:6f:c5:63:32:44:e7:80:be:4b:21:9f:0d:4e:f1:
ad:3a:e6:f2:90:85:12:a7:d8:6a:71:15:84:0c:0f:9b:e9:7d:
b0:7b:b7:52:b0:8e:42:32:4e:e3:50:73:97:e2:ee:ea:06:a2:
7a:7e:b5:f4:d6:ba:e3:af:f0:17:df:73:93:fd:e1:de:9a:ab:
a9:ab:a1:11:b2:03:63:00:ab:d7:42:9d:b4:db:5b:a7:ce:15:
d2:c3:c9:2c:d9:0c:e2:69:7f:6f:6f:3f:fd:c9:cd:49:98:d5:
e6:5a:30:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 18 03:42:57 2026 by rpki-client