
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
File: KkRyM2ydAqSIzdd1NNZfsUZewJo.mft (raw, json)
Hash identifier: YWp43bzrE9X4xH1YVVGdodtB/lUiBgwd5XkqFeKRUEg=
Subject key identifier: 32:55:F9:49:D5:98:B4:95:EE:93:11:40:FC:8A:5A:BB:61:32:7C:7A
Authority key identifier: 2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
Certificate issuer: /CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Certificate serial: 019F1B316E1728A9CAD947E7EDA0A371B6BA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
Manifest number: 198A
Signing time: Wed 01 Jul 2026 01:00:52 +0000
Manifest this update: Wed 01 Jul 2026 01:00:52 +0000
Manifest next update: Thu 02 Jul 2026 01:00:52 +0000
Files and hashes: 1: KkRyM2ydAqSIzdd1NNZfsUZewJo.crl (hash: fdMUwKaC8+y3NWVz0Z1RW1Ta2EuZLnY0UpUvy5fcjhg=)
2: PHk_vBlGAMsxS-MnrekIlyqTI-4.roa (hash: DfXZCDYGxK8xf8JFedzWYQFF9T3pi36VwRR9xAmGXEk=)
3: weNArfvB6aIBhliGWgRmku9NM4k.roa (hash: 5cqXzpfVcXD0jTHKSY2NMKnFRtchriM7ulhLtiSinGQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 23:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1b:31:6e:17:28:a9:ca:d9:47:e7:ed:a0:a3:71:b6:ba
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a4472336c9d02a488cdd77534d65fb1465ec09a
Validity
Not Before: Jul 1 01:00:52 2026 GMT
Not After : Jul 2 01:00:52 2026 GMT
Subject: CN=3255f949d598b495ee931140fc8a5abb61327c7a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:0f:bd:a9:bd:57:1c:f6:3d:9f:06:c0:95:9d:
10:11:46:1a:7c:28:db:7f:aa:be:d0:1e:9d:cb:a3:
5d:d3:f8:66:71:8e:d2:65:ed:f6:d0:6f:cc:d3:02:
c4:a1:1d:4e:27:c0:1d:84:10:88:d1:48:96:e5:0d:
c1:9e:8f:ca:8d:29:bf:d7:e8:a3:2a:9b:17:a2:17:
eb:b7:68:ce:3d:d7:19:28:1f:37:e6:74:8c:a6:54:
e4:5b:8f:33:37:d7:e6:67:9a:ef:3a:29:d7:49:ab:
69:a1:e9:d1:e5:d9:f9:42:aa:5d:aa:bb:ac:90:0f:
d9:8f:10:12:ad:9d:80:39:cb:37:0f:9e:ee:fd:ba:
2c:8a:31:2d:cb:3d:bd:b7:a5:c5:c1:83:7c:ed:fa:
6a:c3:05:5b:db:18:01:e5:d7:f2:2d:7c:d0:2f:1b:
69:00:98:f5:c9:0c:9b:d8:6e:03:45:10:d9:1c:2f:
97:8c:18:a1:f6:f1:0b:62:30:9a:a1:b2:3c:c1:5d:
cb:bb:e5:8f:62:e3:03:18:72:b0:3a:c6:46:d3:54:
9a:b3:ad:51:7f:af:78:5f:fb:8e:a4:04:d5:3b:93:
30:7e:f3:cb:44:0c:6a:f0:f9:4d:8a:f6:9b:de:93:
ae:10:fe:a1:9e:01:22:74:04:74:f6:33:47:26:ca:
01:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:55:F9:49:D5:98:B4:95:EE:93:11:40:FC:8A:5A:BB:61:32:7C:7A
X509v3 Authority Key Identifier:
keyid:2A:44:72:33:6C:9D:02:A4:88:CD:D7:75:34:D6:5F:B1:46:5E:C0:9A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KkRyM2ydAqSIzdd1NNZfsUZewJo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/01db82-4172-4405-ab55-0086d02385d6/1/KkRyM2ydAqSIzdd1NNZfsUZewJo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:48:7f:5c:3e:1e:5b:ce:e4:72:6b:7b:8f:74:70:fe:72:93:
ac:15:14:0a:2a:12:b7:3e:0a:6a:20:53:f0:78:28:3c:ec:91:
a6:f2:5d:5f:16:58:38:38:9e:5e:40:99:6d:06:60:f2:5f:c3:
18:33:b3:62:93:ed:ab:a2:2f:eb:f4:a3:68:50:88:88:d7:3d:
af:ef:ef:a3:44:65:36:c4:80:a1:54:ea:9f:8e:7a:32:91:00:
68:53:fe:4a:21:59:b5:64:f6:34:18:27:9d:3c:11:50:6f:49:
39:18:f3:4c:c1:a1:fa:7f:ea:35:8e:d9:8f:78:c8:48:73:36:
82:c6:24:39:c6:14:cd:e5:20:62:80:fa:db:ed:47:a9:27:09:
93:3e:05:65:e7:00:ad:f2:f1:50:8d:09:8f:d2:fc:2e:d5:ad:
96:2a:e1:87:00:b6:8d:e7:db:26:de:70:93:ab:63:8d:82:6e:
81:a9:31:58:41:74:b3:62:2c:e3:02:90:2c:ed:a8:b5:d1:b8:
71:95:4e:d6:7d:39:81:39:8a:80:46:79:74:36:30:e9:2c:dd:
8f:2d:01:15:96:9a:49:b5:8a:87:0c:19:35:12:f3:8d:27:1d:
aa:4a:df:f0:06:29:0e:aa:3f:52:11:77:ed:27:3d:fd:3c:18:
89:a6:f6:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 1 09:02:53 2026 by rpki-client