Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json)
Hash identifier: aymFs2r/Dd0c2SquxoCO7iTDM09A5xliKbPZX0BdrHI=
Subject key identifier: D2:B8:6D:91:D0:6F:7F:5D:EF:82:C3:45:81:DE:B1:81:EF:BF:42:C5
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 019DCE9990267DB009740DB43FA6CB7E2F2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
Manifest number: 0E3E
Signing time: Mon 27 Apr 2026 11:01:03 +0000
Manifest this update: Mon 27 Apr 2026 11:01:03 +0000
Manifest next update: Tue 28 Apr 2026 11:01:03 +0000
Files and hashes: 1: 5pnLPx_2hpy3VygTZwAGCHra7kE.roa (hash: 1oHSHq2YY2wBUKVcldVeO85+GN6kBhjSJ3cQgz8RWLo=)
2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: XGsvU8OqZuKypXn379HYN2vooldLO0OYByc1hyq/F+Y=)
3: KnbEX4UkCWaV7O0wuCkr7A4YupA.roa (hash: LLlXw5GN0fkhrRlbhrlywwISvztA4DkGKjffqRJI8NQ=)
4: ZlWEEzGYFVqbln14VFTl7vY0xlM.roa (hash: 4+sTiTIEM7Q8B0+aFICyPTm4dchReZ/Z4NBsp9md7hs=)
5: hARTp8Mibx8WODEuOIUHpvobncw.roa (hash: xaYjb6X7y2C4MO+aFX5sY8YM6es27SbRjICMp6w4VYw=)
6: yUO-bSyekqEzkSiFcTb4DbKNZ_o.roa (hash: Yz2sZPO7RTS7G2x7CfUC5DUG1B3ygbMjzbaefkWF+54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:99:90:26:7d:b0:09:74:0d:b4:3f:a6:cb:7e:2f:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Apr 27 11:01:03 2026 GMT
Not After : Apr 28 11:01:03 2026 GMT
Subject: CN=d2b86d91d06f7f5def82c34581deb181efbf42c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d3:33:ee:ef:9f:f5:52:d3:69:90:d6:f3:b0:
70:0f:08:30:c5:0a:7e:ab:53:c3:fb:77:34:87:82:
51:5b:68:b2:a8:cf:a5:64:61:7a:d3:81:85:07:cb:
3c:d8:00:fc:7e:a0:af:f6:59:1d:f4:06:ac:27:f2:
57:6a:01:6d:c0:ab:eb:91:59:fe:fc:de:a8:15:9b:
16:95:3e:61:12:e8:30:1a:f3:7f:a8:cc:4c:20:45:
fb:67:13:f3:4e:80:db:db:de:ef:5c:0f:4b:5a:a6:
be:5d:a2:39:46:2c:1d:c5:7f:10:46:2f:4d:44:0b:
ad:6b:0d:70:7c:4c:53:fc:ce:70:03:9c:88:db:d3:
ee:2e:10:51:da:e1:91:e4:6c:31:12:7b:07:1c:d4:
89:a9:90:2a:44:6b:40:9e:f9:d5:e6:66:75:fe:09:
0d:5d:25:dc:18:ad:32:9e:e3:40:6c:c0:19:d5:91:
5b:f4:f7:b7:53:94:4e:62:7a:9e:25:5c:b2:14:00:
4d:b3:79:03:1f:43:b0:a0:96:b9:4e:5d:b1:39:82:
cb:b3:9c:56:1f:a7:28:23:3f:cb:60:e9:43:a7:fc:
da:10:bc:9e:f4:0b:5a:7c:f2:ec:a7:01:66:ec:d9:
7b:ca:b8:44:46:b5:ce:1a:11:63:ce:34:c3:81:6c:
ef:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:B8:6D:91:D0:6F:7F:5D:EF:82:C3:45:81:DE:B1:81:EF:BF:42:C5
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:cf:8c:8d:ec:bb:87:98:72:96:35:06:c8:f3:45:fe:3a:36:
0f:eb:0a:5c:9b:dc:e0:aa:5d:85:3c:46:5c:66:05:3f:10:64:
83:15:f6:d8:46:d5:bf:75:29:02:aa:b2:10:d9:a5:ea:c0:75:
d9:f1:3d:53:84:e0:39:ad:51:df:ff:3c:56:87:94:c3:be:b5:
d8:fb:26:1f:a6:8c:ae:1b:0c:52:d3:e8:86:48:17:2c:fd:0f:
54:d5:3f:f2:c6:44:9f:3f:f8:5a:86:6b:df:0b:0a:62:c2:e4:
3a:f4:42:00:d7:bc:31:1c:20:88:e5:fa:67:ef:b9:29:99:0c:
b3:bf:f4:5e:7f:cc:a4:01:e6:9f:60:e7:78:69:de:9c:fd:40:
8f:cc:f7:03:f1:c5:9f:1f:30:aa:73:fc:21:42:0e:30:aa:24:
dc:54:c4:de:81:33:aa:24:32:2d:06:33:dc:3b:a5:1e:e9:43:
f7:0d:dc:6e:c8:92:b6:7a:a5:55:c7:81:6c:f0:e2:94:6e:d0:
ae:aa:64:85:7c:1d:1e:5e:14:d6:4c:03:a6:77:70:20:61:83:
62:3c:81:1d:40:b4:56:38:ef:21:38:ab:8c:d2:4f:8d:a7:9c:
6d:ea:32:13:db:bb:90:e9:28:3c:a6:1e:3f:d9:4f:0f:31:14:
db:ad:da:d4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ3OmZAmfbAJdA20P6bLfi8rMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MGJjYzUwYTlhMzNiYTU2NTFlZmQxYWZlNDBiNmZkYjAy
NTU2ZjAwHhcNMjYwNDI3MTEwMTAzWhcNMjYwNDI4MTEwMTAzWjAzMTEwLwYDVQQD
EyhkMmI4NmQ5MWQwNmY3ZjVkZWY4MmMzNDU4MWRlYjE4MWVmYmY0MmM1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdMz7u+f9VLTaZDW87BwDwgwxQp+
q1PD+3c0h4JRW2iyqM+lZGF604GFB8s82AD8fqCv9lkd9AasJ/JXagFtwKvrkVn+
/N6oFZsWlT5hEugwGvN/qMxMIEX7ZxPzToDb297vXA9LWqa+XaI5RiwdxX8QRi9N
RAutaw1wfExT/M5wA5yI29PuLhBR2uGR5GwxEnsHHNSJqZAqRGtAnvnV5mZ1/gkN
XSXcGK0ynuNAbMAZ1ZFb9Pe3U5ROYnqeJVyyFABNs3kDH0OwoJa5Tl2xOYLLs5xW
H6coIz/LYOlDp/zaELye9AtafPLspwFm7Nl7yrhERrXOGhFjzjTDgWzvGQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNK4bZHQb39d74LDRYHesYHvv0LFMB8GA1UdIwQY
MBaAFCkLzFCpozulZR79Gv5Atv2wJVbwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYt
NzY5ODI0OTNlYTFhLzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYi80YjZlZjQtMzhlZS00YzA2LThjYjYtNzY5ODI0OTNlYTFh
LzEvS1F2TVVLbWpPNlZsSHYwYV9rQzJfYkFsVnZBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZs+Mjey7
h5hyljUGyPNF/jo2D+sKXJvc4KpdhTxGXGYFPxBkgxX22EbVv3UpAqqyENml6sB1
2fE9U4TgOa1R3/88VoeUw7612PsmH6aMrhsMUtPohkgXLP0PVNU/8sZEnz/4WoZr
3wsKYsLkOvRCANe8MRwgiOX6Z++5KZkMs7/0Xn/MpAHmn2DneGnenP1Aj8z3A/HF
nx8wqnP8IUIOMKok3FTE3oEzqiQyLQYz3DulHulD9w3cbsiStnqlVceBbPDilG7Q
rqpkhXwdHl4U1kwDpndwIGGDYjyBHUC0VjjvITirjNJPjaecbeoyE9u7kOkoPKYe
P9lPDzEU263a1A==
-----END CERTIFICATE-----
Generated at Mon Apr 27 17:41:15 2026 by rpki-client