Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: PlKe6b6pRdak7BOR8bezoMsEJ6OdFnv95YrQhlbr1Ok=
Subject key identifier: B3:A1:72:2D:C6:01:4F:F3:D8:FC:1E:9C:F5:59:BD:8A:A6:27:16:52
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 019EBA6B1DBF2F5732A5B9AF4BB449AC4EC8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 12E7
Signing time: Fri 12 Jun 2026 06:00:42 +0000
Manifest this update: Fri 12 Jun 2026 06:00:42 +0000
Manifest next update: Sat 13 Jun 2026 06:00:42 +0000
Files and hashes: 1: G6JTgK9c0CWNOmQ8QvDityy_X10.roa (hash: 9vVxC4L/PjyVKOIEKo3Aptt5+zq+QCcL31nKvvorwHs=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: HjKTOTXHbDs+LjhFCzL+JRevMNXv60Z2aoxvRTZ4Ays=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 06:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:6b:1d:bf:2f:57:32:a5:b9:af:4b:b4:49:ac:4e:c8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Jun 12 06:00:42 2026 GMT
Not After : Jun 13 06:00:42 2026 GMT
Subject: CN=b3a1722dc6014ff3d8fc1e9cf559bd8aa6271652
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:ab:43:0b:2b:71:65:83:2f:81:be:84:9e:75:
c8:2c:39:b2:8a:a1:3b:b8:0f:b2:55:2c:21:b1:40:
99:d6:c2:65:2a:6b:32:7b:a8:e0:81:04:80:6e:f9:
40:60:50:d4:34:d4:71:25:2b:5e:4e:1e:55:ea:b7:
a3:69:57:91:1b:06:86:a9:67:e8:67:6f:b9:e1:90:
a6:df:78:c9:a6:05:93:e2:9f:e6:5c:d7:99:bf:7e:
c3:61:02:9c:7e:51:c9:74:a4:f8:de:d2:12:86:ae:
d0:06:0c:db:9c:e0:1c:d7:93:bc:e9:33:d7:b4:bf:
4a:e0:4a:d4:3f:e5:bd:e2:f9:ce:41:59:3f:e8:8b:
9d:77:66:2c:4c:5b:36:ac:86:82:a3:ad:c5:d7:32:
18:f9:06:2b:1a:64:c0:d4:c7:12:1f:48:a5:8d:2d:
e5:e9:62:e7:b6:8d:cb:48:87:5f:3b:8b:69:ca:d3:
4b:1d:4a:f6:2c:53:9c:08:aa:64:35:0a:37:58:73:
30:4f:18:87:62:87:39:eb:58:25:2c:b9:0f:2c:ab:
e3:68:1b:d9:43:6d:54:49:c0:27:ce:6a:e7:92:1a:
b0:2c:a6:13:c1:10:5c:1b:51:8c:6e:23:99:54:2b:
29:f4:c6:be:80:dd:07:7a:c3:8e:48:f0:5a:04:1b:
84:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B3:A1:72:2D:C6:01:4F:F3:D8:FC:1E:9C:F5:59:BD:8A:A6:27:16:52
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:a0:6c:79:7f:1b:47:1b:4a:3e:b2:de:fb:37:b7:8b:8d:dd:
b3:5f:f0:e6:8d:68:61:a1:81:4d:17:58:4f:2d:63:b7:98:97:
fd:80:63:3a:62:14:a2:52:6c:2d:b3:6b:bb:f0:a7:17:45:29:
4d:74:77:77:cc:75:ce:11:6d:a3:c2:2e:e7:aa:4a:1c:75:6f:
fa:e8:4d:3c:88:e1:d8:d9:40:2d:41:57:1f:08:dc:65:f1:0a:
66:81:20:5c:30:e9:27:bd:7b:f0:53:5c:b1:2b:20:c5:64:f5:
c8:89:bb:64:a5:26:31:f7:9f:42:4e:fd:43:e0:c8:18:75:02:
9a:37:de:2b:0f:11:cb:c0:e4:bf:1c:6c:2f:4d:39:7d:9a:c5:
8c:72:d6:76:36:af:77:c5:78:7c:bf:22:8b:fa:03:70:ec:ac:
ba:69:c2:5c:cc:81:a6:93:e7:ab:70:50:e6:f8:31:51:06:3e:
d2:57:29:53:25:93:60:9d:b0:ec:c2:21:f0:2b:ea:2e:62:82:
8f:d8:a4:37:91:86:71:46:69:15:37:09:e8:a9:09:42:88:d9:
36:dd:6c:cd:8a:95:4f:81:7f:20:90:65:00:62:51:4a:97:b8:
3f:be:d6:1b:bf:e1:ba:e9:c3:b2:ba:89:5b:e4:96:54:67:66:
68:28:79:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ66ax2/L1cypbmvS7RJrE7IMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwNzZmNzdkYTg0MWI3Yjk0MjE1YjZmYWMyZDQxYTcxYzIx
NTE2MDEwHhcNMjYwNjEyMDYwMDQyWhcNMjYwNjEzMDYwMDQyWjAzMTEwLwYDVQQD
EyhiM2ExNzIyZGM2MDE0ZmYzZDhmYzFlOWNmNTU5YmQ4YWE2MjcxNjUyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA06tDCytxZYMvgb6EnnXILDmyiqE7
uA+yVSwhsUCZ1sJlKmsye6jggQSAbvlAYFDUNNRxJSteTh5V6rejaVeRGwaGqWfo
Z2+54ZCm33jJpgWT4p/mXNeZv37DYQKcflHJdKT43tIShq7QBgzbnOAc15O86TPX
tL9K4ErUP+W94vnOQVk/6Iudd2YsTFs2rIaCo63F1zIY+QYrGmTA1McSH0iljS3l
6WLnto3LSIdfO4tpytNLHUr2LFOcCKpkNQo3WHMwTxiHYoc561glLLkPLKvjaBvZ
Q21UScAnzmrnkhqwLKYTwRBcG1GMbiOZVCsp9Ma+gN0HesOOSPBaBBuEOwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLOhci3GAU/z2PwenPVZvYqmJxZSMB8GA1UdIwQY
MBaAFJB2932oQbe5QhW2+sLUGnHCFRYBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9lMWQ2YjctNTU1Yy00ZDliLWFmZTEt
ZTYzY2U1NTM3MGViLzEva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMS9lMWQ2YjctNTU1Yy00ZDliLWFmZTEtZTYzY2U1NTM3MGVi
LzEva0hiM2ZhaEJ0N2xDRmJiNnd0UWFjY0lWRmdFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQaBseX8b
RxtKPrLe+ze3i43ds1/w5o1oYaGBTRdYTy1jt5iX/YBjOmIUolJsLbNru/CnF0Up
TXR3d8x1zhFto8Iu56pKHHVv+uhNPIjh2NlALUFXHwjcZfEKZoEgXDDpJ7178FNc
sSsgxWT1yIm7ZKUmMfefQk79Q+DIGHUCmjfeKw8Ry8DkvxxsL005fZrFjHLWdjav
d8V4fL8ii/oDcOysumnCXMyBppPnq3BQ5vgxUQY+0lcpUyWTYJ2w7MIh8CvqLmKC
j9ikN5GGcUZpFTcJ6KkJQojZNt1szYqVT4F/IJBlAGJRSpe4P77WG7/huunDsrqJ
W+SWVGdmaCh5jA==
-----END CERTIFICATE-----
Generated at Fri Jun 12 11:01:16 2026 by rpki-client