Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json)
Hash identifier: d0V66+ucyWlI2xrrBZFAqQMC6e2vAwWttPuigdVPiRo=
Subject key identifier: E2:3D:8E:93:E4:63:EF:56:7E:72:D2:FF:6C:E6:DC:80:87:30:16:2A
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 019EB76A8918B49B8F8962341387B7B77EDF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 16:01:12 +0000
Manifest this update: Thu 11 Jun 2026 16:01:12 +0000
Manifest next update: Fri 12 Jun 2026 16:01:12 +0000
Files and hashes: 1: 40z5BTIzE-Otta9d5IxXlYjWk7Y.roa (hash: /K+vL2kVy1Ot78ZCbPvu7R3pgRcpdRMgsyhuVzNibSE=)
2: FnnFa3pMmqf3MiWUuKMyoAVWg-s.roa (hash: 6fPOtoWUy4XsTgZEttrlKq8GChMydmNHVVGJEIcxPdY=)
3: J4mHGlSY7agF8AXFPW8l8IBLAAI.roa (hash: /s0Afv+pL0DwKivaJvq3/xoIpyRomxE5EF1DLE1ue6g=)
4: ePQMQe046NknExZADvr19blY0SA.roa (hash: wKoVniNasUoMb11Rk/qza9dNeWvntUlfFXzDDxceLEM=)
5: hcjtq7J7FKS0bIahe8TWZOilbrc.roa (hash: uOY6FMIgCoFqDzQfMMnNRctUj2RDP4gSOMAnS9KpjHI=)
6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: qudWTsdeWlpoiJyxr6+MFXRfgdq+cNz0pnsxiN5vz7Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:89:18:b4:9b:8f:89:62:34:13:87:b7:b7:7e:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Jun 11 16:01:12 2026 GMT
Not After : Jun 12 16:01:12 2026 GMT
Subject: CN=e23d8e93e463ef567e72d2ff6ce6dc808730162a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:81:33:95:7e:14:ba:fc:fb:f2:a8:5d:32:95:
c7:db:ff:f0:5f:cb:44:52:ad:3d:9f:e3:95:3c:1f:
c7:29:30:1c:4d:3b:20:a6:b6:f5:9c:37:c7:59:de:
05:12:e9:ae:ed:ad:97:84:8b:20:58:73:4e:21:45:
4e:78:70:ca:15:5a:ad:ef:63:44:25:9f:1e:d6:2a:
32:6a:4a:03:83:5b:66:25:49:d1:2f:01:f6:be:21:
0a:a9:a0:77:a2:69:00:63:4e:fd:4c:83:25:8a:88:
8a:64:3c:72:6f:76:b4:a9:9d:46:9a:42:50:f0:b6:
e9:c3:f5:35:c5:bc:a5:93:72:2d:dc:7f:b5:c1:b8:
9b:a6:55:bb:0a:bf:b6:86:81:45:d8:ff:02:3b:c2:
27:dd:c3:70:60:6e:aa:84:58:fb:4e:c7:15:0c:8f:
07:d5:a4:33:34:19:4a:1e:03:da:96:65:b7:b3:0b:
40:d2:d2:a2:fb:fd:03:b3:c3:29:e0:1f:ad:65:60:
71:0b:b0:45:d8:9f:e2:e5:b3:7c:c3:e3:26:50:05:
87:9d:b3:20:ac:57:f2:db:cf:e3:c0:1d:2c:2b:de:
71:71:6b:f6:23:24:12:b8:91:81:da:e2:32:a2:b2:
2b:51:56:2f:13:21:41:11:5f:9e:5e:7d:2d:3d:17:
0e:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:3D:8E:93:E4:63:EF:56:7E:72:D2:FF:6C:E6:DC:80:87:30:16:2A
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5d:20:52:9b:64:c6:a1:ff:78:d1:73:26:3d:e4:40:14:0e:5d:
16:ac:de:b1:72:9e:50:7c:81:94:77:a9:8e:19:3c:f5:ce:e5:
05:d6:a5:9d:06:77:c4:21:2a:4d:b7:a6:7b:2e:2f:71:88:9c:
06:a7:48:29:35:2f:1c:f2:e4:eb:16:cd:b8:de:ea:2a:28:91:
ac:a1:71:c3:df:21:b8:93:25:4b:53:e8:8d:e2:4c:30:a8:2d:
e8:2e:ae:f1:e9:e6:b6:d6:c0:39:f3:75:31:08:ff:55:1e:29:
c1:ec:9d:01:ae:2d:9d:ff:16:ad:a1:2a:af:58:9f:00:b5:11:
a2:f2:02:47:ad:56:a2:fe:ee:58:13:1a:b2:bf:5b:e6:fc:7c:
76:04:d9:a3:2b:71:c8:23:43:e7:d0:27:49:14:d6:c8:b9:88:
9a:7a:78:26:98:7b:4c:af:6f:c9:95:36:4c:a4:fa:fd:f1:1e:
14:56:14:36:c1:f4:3e:fb:e1:7a:22:86:b7:41:a2:e2:7b:97:
fd:ad:e2:40:ee:23:0b:55:93:d6:b1:ed:07:00:15:cb:a8:a3:
9f:48:d9:a2:3b:fd:e4:c1:83:d2:76:cf:ed:cd:70:ed:55:fb:
42:01:58:e1:5d:13:c8:c9:39:8a:b8:7b:96:86:7b:09:51:f2:
98:32:e0:40
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:19:54 2026 by rpki-client