Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
File: KRKNnU8aVulw-HRtaCesESD5Jmc.mft (raw, json)
Hash identifier: BbeoyCK7xJCa4Nd24kAiJqQhn/Z+C+uUXLYlmL1gJnw=
Subject key identifier: 61:B3:9B:C9:65:F0:6A:6A:22:89:44:13:0A:91:36:54:2C:6C:EC:99
Authority key identifier: 29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
Certificate issuer: /CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Certificate serial: 019EB7A13EEB1E5DD3DCA6A93B7A6B00096A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
Manifest number: 045B
Signing time: Thu 11 Jun 2026 17:00:58 +0000
Manifest this update: Thu 11 Jun 2026 17:00:58 +0000
Manifest next update: Fri 12 Jun 2026 17:00:58 +0000
Files and hashes: 1: 8KaJwIuZexyBoZjYRmZrjQf9lJQ.roa (hash: LrRg49gpH/+ELMxEyexBUIqT8W2t/5VIfE4dXyblhxM=)
2: KRKNnU8aVulw-HRtaCesESD5Jmc.crl (hash: N7Uh4+QMOYhrcyhJwsTRNOmhRmkD3CUYs6c2Red7E0k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 17:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:a1:3e:eb:1e:5d:d3:dc:a6:a9:3b:7a:6b:00:09:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29128d9d4f1a56e970f8746d6827ac1120f92667
Validity
Not Before: Jun 11 17:00:58 2026 GMT
Not After : Jun 12 17:00:58 2026 GMT
Subject: CN=61b39bc965f06a6a228944130a9136542c6cec99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:92:8c:9e:5b:fe:6a:b7:5a:41:92:4f:84:0e:
0f:c7:87:72:c8:c3:c9:31:64:25:fa:40:6d:15:5d:
0b:55:95:f6:35:48:c5:d5:20:4b:97:af:06:d8:7f:
5d:76:e0:24:6c:01:9b:26:dc:51:53:38:e3:7a:cf:
c0:df:0c:1b:c4:0e:39:a0:a1:24:8a:ce:2a:c3:b1:
05:ea:35:6e:95:fd:9d:57:e9:57:9d:5d:c6:d8:8c:
5f:80:c7:08:6c:36:b5:69:28:40:30:49:4f:39:8b:
ba:4d:2d:85:43:75:db:b7:2d:76:ac:30:3f:a8:10:
de:28:43:8a:f9:af:f0:f3:9d:bc:45:e5:5b:30:5c:
cf:ba:84:0f:37:31:7f:04:86:76:06:02:df:d0:2c:
0f:e7:42:ca:9d:b7:0e:80:ca:e7:54:a8:38:c3:d7:
09:88:b4:a3:ec:ce:c4:0e:e2:fd:23:23:60:ef:c1:
c1:c0:78:59:9c:6f:8c:12:d4:3e:29:28:19:ab:48:
94:05:6a:04:0a:66:6a:ce:e9:8c:8e:26:9e:f4:fe:
68:41:40:cb:d9:74:6b:ca:0c:96:98:c1:39:1d:1c:
09:1d:7b:da:ed:5f:4a:3b:69:d3:38:f3:30:99:5c:
72:11:11:41:95:b5:85:e3:95:e6:59:4e:b3:15:e1:
62:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:B3:9B:C9:65:F0:6A:6A:22:89:44:13:0A:91:36:54:2C:6C:EC:99
X509v3 Authority Key Identifier:
keyid:29:12:8D:9D:4F:1A:56:E9:70:F8:74:6D:68:27:AC:11:20:F9:26:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KRKNnU8aVulw-HRtaCesESD5Jmc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/11477c-8452-4abb-9147-f0b09c0c90c7/1/KRKNnU8aVulw-HRtaCesESD5Jmc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:6d:df:e8:a1:ed:0e:34:ea:b2:6e:92:93:24:4e:30:58:3e:
5a:3e:e0:e6:be:cb:7c:87:b5:b0:50:da:78:67:c3:cd:c2:be:
98:eb:77:00:cf:db:fe:5f:43:54:05:22:fe:c5:08:c2:d3:a3:
27:d0:d5:fb:71:a1:11:c8:5d:a9:69:62:3a:86:a9:f5:b9:22:
35:ea:a3:ad:bf:c6:52:5c:f5:69:0c:5e:2f:e2:96:dd:d1:6e:
8c:ca:9a:00:c2:a3:4d:3f:16:06:45:67:64:c2:17:2c:87:dc:
06:45:39:9c:5f:05:69:3b:52:46:70:2d:15:ef:c8:98:cb:9d:
98:fb:3a:d8:41:50:7d:b1:41:50:2d:83:be:f9:96:51:21:d8:
32:7a:e6:7e:87:ee:36:b4:f4:e0:7b:5e:d1:d2:17:ce:b0:b1:
a6:c5:86:20:51:bc:96:36:2d:6e:5c:2a:11:66:2c:1f:31:44:
8d:8b:67:d9:8c:5d:17:2b:32:bd:f1:8e:08:3a:43:51:66:ea:
96:9f:57:91:a8:fd:c7:e0:06:55:4b:38:aa:db:b0:83:65:3b:
18:b7:82:74:2b:1a:17:c6:e8:f5:55:fc:70:4d:4a:22:83:0d:
8f:2d:43:bb:87:06:71:3c:83:3a:d6:09:59:79:72:f1:e9:8b:
cc:78:85:8c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ63oT7rHl3T3KapO3prAAlqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MTI4ZDlkNGYxYTU2ZTk3MGY4NzQ2ZDY4MjdhYzExMjBm
OTI2NjcwHhcNMjYwNjExMTcwMDU4WhcNMjYwNjEyMTcwMDU4WjAzMTEwLwYDVQQD
Eyg2MWIzOWJjOTY1ZjA2YTZhMjI4OTQ0MTMwYTkxMzY1NDJjNmNlYzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnJKMnlv+ardaQZJPhA4Px4dyyMPJ
MWQl+kBtFV0LVZX2NUjF1SBLl68G2H9dduAkbAGbJtxRUzjjes/A3wwbxA45oKEk
is4qw7EF6jVulf2dV+lXnV3G2IxfgMcIbDa1aShAMElPOYu6TS2FQ3Xbty12rDA/
qBDeKEOK+a/w8528ReVbMFzPuoQPNzF/BIZ2BgLf0CwP50LKnbcOgMrnVKg4w9cJ
iLSj7M7EDuL9IyNg78HBwHhZnG+MEtQ+KSgZq0iUBWoECmZqzumMjiae9P5oQUDL
2XRrygyWmME5HRwJHXva7V9KO2nTOPMwmVxyERFBlbWF45XmWU6zFeFiDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGGzm8ll8GpqIolEEwqRNlQsbOyZMB8GA1UdIwQY
MBaAFCkSjZ1PGlbpcPh0bWgnrBEg+SZnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi8xMTQ3N2MtODQ1Mi00YWJiLTkxNDct
ZjBiMDljMGM5MGM3LzEvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jYi8xMTQ3N2MtODQ1Mi00YWJiLTkxNDctZjBiMDljMGM5MGM3
LzEvS1JLTm5VOGFWdWx3LUhSdGFDZXNFU0Q1Sm1jLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcW3f6KHt
DjTqsm6SkyROMFg+Wj7g5r7LfIe1sFDaeGfDzcK+mOt3AM/b/l9DVAUi/sUIwtOj
J9DV+3GhEchdqWliOoap9bkiNeqjrb/GUlz1aQxeL+KW3dFujMqaAMKjTT8WBkVn
ZMIXLIfcBkU5nF8FaTtSRnAtFe/ImMudmPs62EFQfbFBUC2DvvmWUSHYMnrmfofu
NrT04Hte0dIXzrCxpsWGIFG8ljYtblwqEWYsHzFEjYtn2YxdFysyvfGOCDpDUWbq
lp9Xkaj9x+AGVUs4qtuwg2U7GLeCdCsaF8bo9VX8cE1KIoMNjy1Du4cGcTyDOtYJ
WXly8emLzHiFjA==
-----END CERTIFICATE-----
Generated at Fri Jun 12 01:36:56 2026 by rpki-client