Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
File: kdfs8XFCs7CTX443uPfZwlPw7hk.mft (raw, json)
Hash identifier: FeTPPozs/jRtKdbYFugRErJRF7IBZR6kxd/awyaZ0vM=
Subject key identifier: 5A:5D:D8:DC:5D:E6:25:DD:90:62:C1:D8:2D:D0:CE:29:3B:32:DE:9F
Authority key identifier: 91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
Certificate issuer: /CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Certificate serial: 019CE8C9E48D3F05D5C36B992A5B248460E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
Manifest number: 186B
Signing time: Fri 13 Mar 2026 20:01:11 +0000
Manifest this update: Fri 13 Mar 2026 20:01:11 +0000
Manifest next update: Sat 14 Mar 2026 20:01:11 +0000
Files and hashes: 1: JL_bv1rE4SOiwiRn1jc2s_87lQQ.roa (hash: dWOsdKuE7dNLYI4NP8+n+WEeun5in1SyaWv26Okq8QI=)
2: kdfs8XFCs7CTX443uPfZwlPw7hk.crl (hash: 9iVBosEDE0JiPU402N1THvpUL+VJDOOZCeabqLYdN04=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 18:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e8:c9:e4:8d:3f:05:d5:c3:6b:99:2a:5b:24:84:60:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91d7ecf17142b3b0935f8e37b8f7d9c253f0ee19
Validity
Not Before: Mar 13 20:01:11 2026 GMT
Not After : Mar 14 20:01:11 2026 GMT
Subject: CN=5a5dd8dc5de625dd9062c1d82dd0ce293b32de9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:9c:26:75:cd:f7:45:30:84:26:c3:ea:e2:b4:
c7:86:53:25:fe:17:34:69:10:02:9b:76:9b:8a:78:
ab:fb:ab:25:94:c7:02:56:de:51:53:66:da:b6:d5:
f1:92:0b:ca:e5:72:33:79:ef:06:c1:01:40:a2:dd:
ce:38:e5:a7:da:f8:b9:d4:f4:e5:5f:bf:28:4d:46:
25:c2:42:52:0d:f0:58:99:13:d1:95:60:7d:a2:94:
8f:f1:3f:ab:59:44:83:27:93:a3:59:2c:90:28:69:
ef:a2:af:45:72:0c:8f:6f:91:61:1e:1b:1d:f6:d2:
d0:3c:34:1d:e4:4e:3f:93:ac:3e:19:95:de:bd:7c:
3a:5a:97:c5:3c:18:98:0b:3f:7f:19:24:e7:b2:5b:
fd:df:c7:05:2b:72:d2:1d:4f:c8:ac:df:30:d8:e3:
00:ea:07:bf:49:ba:3b:a8:7d:00:35:20:ee:32:25:
9d:ac:78:e6:7c:2d:68:31:fc:65:0c:55:b6:f8:44:
3e:aa:61:c7:61:03:8c:a4:d3:01:be:08:c7:ce:5e:
f6:45:88:69:7d:16:aa:7b:34:6c:76:46:b9:bf:0f:
66:ff:69:04:5a:c5:8e:fb:6d:12:68:58:49:0b:7f:
c5:90:27:e4:23:ce:22:e9:00:f3:3a:9b:e8:6f:9f:
37:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5A:5D:D8:DC:5D:E6:25:DD:90:62:C1:D8:2D:D0:CE:29:3B:32:DE:9F
X509v3 Authority Key Identifier:
keyid:91:D7:EC:F1:71:42:B3:B0:93:5F:8E:37:B8:F7:D9:C2:53:F0:EE:19
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kdfs8XFCs7CTX443uPfZwlPw7hk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/b08e6e-0822-4224-954b-a6b1ad34e08c/1/kdfs8XFCs7CTX443uPfZwlPw7hk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:23:03:cb:b0:25:84:8c:ab:f2:f9:82:7b:81:f3:cb:1c:98:
68:cd:f6:50:db:10:e1:de:de:0d:2f:a6:9c:7e:3a:3d:d1:77:
22:11:78:e2:e7:9d:30:cb:cb:52:3a:4d:0c:93:87:06:e9:dd:
c0:02:46:bb:82:54:0a:f7:80:36:46:50:d2:04:d3:7b:99:d6:
8d:1f:a0:0d:40:64:f2:34:02:7e:77:f6:0f:5d:a2:70:09:90:
ac:80:9a:16:d0:06:b4:79:65:59:3c:62:ea:cc:f5:96:e0:70:
78:a1:4d:99:45:bd:27:e1:53:5d:94:e0:77:b7:49:e6:de:81:
28:e6:a5:a9:22:1b:cb:5a:6b:0d:8e:a8:30:9b:2b:ae:e3:29:
56:de:53:4e:c0:78:f3:b3:e8:4a:2e:66:47:d3:72:24:4e:e7:
dd:04:08:44:ec:40:26:9d:7e:7a:f3:b7:63:d1:97:08:69:2e:
97:0c:2f:40:e5:52:10:4b:c7:3f:7b:23:6b:95:3f:92:f4:2e:
13:ce:9f:bf:51:7d:05:1d:4e:b4:de:54:54:26:53:26:d3:b9:
1e:64:27:ce:b4:35:f5:52:0a:10:2b:43:3a:99:e9:03:c1:50:
77:fa:05:f9:31:75:d3:f4:32:55:65:48:6f:8c:98:8c:8a:1a:
62:01:9a:b2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzoyeSNPwXVw2uZKlskhGDgMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZDdlY2YxNzE0MmIzYjA5MzVmOGUzN2I4ZjdkOWMyNTNm
MGVlMTkwHhcNMjYwMzEzMjAwMTExWhcNMjYwMzE0MjAwMTExWjAzMTEwLwYDVQQD
Eyg1YTVkZDhkYzVkZTYyNWRkOTA2MmMxZDgyZGQwY2UyOTNiMzJkZTlmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJwmdc33RTCEJsPq4rTHhlMl/hc0
aRACm3abinir+6sllMcCVt5RU2battXxkgvK5XIzee8GwQFAot3OOOWn2vi51PTl
X78oTUYlwkJSDfBYmRPRlWB9opSP8T+rWUSDJ5OjWSyQKGnvoq9FcgyPb5FhHhsd
9tLQPDQd5E4/k6w+GZXevXw6WpfFPBiYCz9/GSTnslv938cFK3LSHU/IrN8w2OMA
6ge/Sbo7qH0ANSDuMiWdrHjmfC1oMfxlDFW2+EQ+qmHHYQOMpNMBvgjHzl72RYhp
fRaqezRsdka5vw9m/2kEWsWO+20SaFhJC3/FkCfkI84i6QDzOpvob583CwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFFpd2Nxd5iXdkGLB2C3Qzik7Mt6fMB8GA1UdIwQY
MBaAFJHX7PFxQrOwk1+ON7j32cJT8O4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2RmczhYRkNzN0NUWDQ0M3VQZlp3bFB3N2hrLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9iMDhlNmUtMDgyMi00MjI0LTk1NGIt
YTZiMWFkMzRlMDhjLzEva2RmczhYRkNzN0NUWDQ0M3VQZlp3bFB3N2hrLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iNi9iMDhlNmUtMDgyMi00MjI0LTk1NGItYTZiMWFkMzRlMDhj
LzEva2RmczhYRkNzN0NUWDQ0M3VQZlp3bFB3N2hrLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFSMDy7Al
hIyr8vmCe4HzyxyYaM32UNsQ4d7eDS+mnH46PdF3IhF44uedMMvLUjpNDJOHBund
wAJGu4JUCveANkZQ0gTTe5nWjR+gDUBk8jQCfnf2D12icAmQrICaFtAGtHllWTxi
6sz1luBweKFNmUW9J+FTXZTgd7dJ5t6BKOalqSIby1prDY6oMJsrruMpVt5TTsB4
87PoSi5mR9NyJE7n3QQIROxAJp1+evO3Y9GXCGkulwwvQOVSEEvHP3sja5U/kvQu
E86fv1F9BR1OtN5UVCZTJtO5HmQnzrQ19VIKECtDOpnpA8FQd/oF+TF10/QyVWVI
b4yYjIoaYgGasg==
-----END CERTIFICATE-----
Generated at Sat Mar 14 05:16:47 2026 by rpki-client