Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
File: kmyYtRBh80DM5OC0zjYc40q8L84.mft (raw, json)
Hash identifier: KPOh+g4ahkVuGtrvZprYQSAnePNwkHciOK6UVQ9I950=
Subject key identifier: 23:5C:4B:3C:E2:55:F5:38:89:AB:C4:28:72:62:15:E6:9D:A5:CC:6F
Authority key identifier: 92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
Certificate issuer: /CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Certificate serial: 019EBCFE93A91D3F3955B3A837D1901EBB6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
Manifest number: 09A5
Signing time: Fri 12 Jun 2026 18:01:00 +0000
Manifest this update: Fri 12 Jun 2026 18:01:00 +0000
Manifest next update: Sat 13 Jun 2026 18:01:00 +0000
Files and hashes: 1: MXA3c8QX3g7YwiQOnrLTeGWh5fs.roa (hash: E7jF1me4KBNOx1U7XGJgq5UdFci6SFszrBrpba8pjPc=)
2: kmyYtRBh80DM5OC0zjYc40q8L84.crl (hash: fPQ8h2wfBC1KNAmkZMZC118bVHbOwPCLJAnHS4YBrSo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bc:fe:93:a9:1d:3f:39:55:b3:a8:37:d1:90:1e:bb:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=926c98b51061f340cce4e0b4ce361ce34abc2fce
Validity
Not Before: Jun 12 18:01:00 2026 GMT
Not After : Jun 13 18:01:00 2026 GMT
Subject: CN=235c4b3ce255f53889abc428726215e69da5cc6f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:1d:a2:ac:79:bd:ce:01:b1:66:26:2b:c2:21:
83:97:a2:32:4a:a8:bc:93:84:1b:16:8f:ed:ed:6c:
6e:13:18:73:3f:24:87:69:ca:55:89:b0:a1:f8:a2:
02:40:fe:db:78:ce:0b:3f:e9:26:cd:6a:37:10:b9:
de:cb:4f:aa:1f:3a:3a:8e:36:a8:73:52:cd:f7:9b:
ad:cc:53:ae:ab:80:a7:6a:65:c5:7c:7f:5a:16:7f:
16:4a:84:34:8f:ee:f8:89:d7:fe:98:5d:ee:c4:1f:
58:23:f1:e9:7b:8b:04:73:22:a4:37:fb:6a:9a:c1:
d4:a4:d3:e4:76:ef:37:e3:3e:1b:36:a0:22:ab:1c:
cc:18:68:f0:71:f6:bf:dc:82:0c:1c:37:97:58:50:
76:e9:dd:03:1b:a6:0c:e8:12:89:be:8b:9c:b8:ef:
21:be:55:8a:14:9f:2d:68:79:e0:e5:e0:fd:4e:91:
64:c4:b9:32:d8:5c:85:d6:34:04:b1:9c:15:bf:6d:
cf:90:00:eb:19:50:d6:a8:7b:09:76:a9:30:b5:8a:
32:32:49:48:47:ef:a1:5c:59:08:b6:83:21:78:79:
bf:1f:37:f2:be:58:24:f9:f9:9e:f6:3c:c6:ad:bb:
ef:7d:ed:7d:4f:df:3b:04:75:ed:7f:30:4b:02:ab:
28:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:5C:4B:3C:E2:55:F5:38:89:AB:C4:28:72:62:15:E6:9D:A5:CC:6F
X509v3 Authority Key Identifier:
keyid:92:6C:98:B5:10:61:F3:40:CC:E4:E0:B4:CE:36:1C:E3:4A:BC:2F:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmyYtRBh80DM5OC0zjYc40q8L84.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/05159a-4529-48fa-95e9-dc76feca94bf/1/kmyYtRBh80DM5OC0zjYc40q8L84.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5b:a8:f2:e7:56:f8:18:43:da:96:a4:14:bc:cd:a4:a2:82:30:
15:21:80:63:50:3c:78:f6:d7:33:74:60:85:73:df:5e:a4:26:
88:29:38:bc:8d:f2:49:a7:55:01:ce:e3:16:37:81:fb:69:95:
80:ca:fc:1d:3b:f9:29:c8:98:fd:0e:e8:4c:0b:04:94:74:d9:
79:59:89:1b:8f:84:b7:cc:66:89:8c:a6:7d:d8:85:75:dd:4a:
6d:63:43:62:a8:36:b1:c9:f6:2a:d7:68:c7:d5:55:26:33:b7:
ea:ba:63:ec:eb:9f:6c:45:f5:1b:88:dc:73:d6:95:8a:30:02:
8d:b1:10:15:82:62:35:54:47:32:26:0e:9b:07:d4:61:e2:63:
32:f1:68:1f:ab:a8:e7:e2:9f:c7:0a:e8:d7:a2:48:7f:a6:2a:
88:d7:52:4f:77:a6:d1:1e:22:1f:7f:7d:d2:1e:69:7b:da:e1:
b1:d1:ca:25:7f:c8:dd:51:c9:b9:0a:5a:2d:60:3d:32:76:f5:
41:57:c5:5b:56:42:c4:5d:ad:1b:0f:75:e2:d3:f7:38:8e:1e:
0c:b2:bc:de:0b:c0:6d:f6:41:62:6f:83:02:88:cb:6f:d5:aa:
cc:53:3c:2b:d2:8e:3a:1a:20:2f:b8:dc:be:c1:66:97:fe:ef:
a7:76:fd:3e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ68/pOpHT85VbOoN9GQHrtuMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNmM5OGI1MTA2MWYzNDBjY2U0ZTBiNGNlMzYxY2UzNGFi
YzJmY2UwHhcNMjYwNjEyMTgwMTAwWhcNMjYwNjEzMTgwMTAwWjAzMTEwLwYDVQQD
EygyMzVjNGIzY2UyNTVmNTM4ODlhYmM0Mjg3MjYyMTVlNjlkYTVjYzZmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsh2irHm9zgGxZiYrwiGDl6IySqi8
k4QbFo/t7WxuExhzPySHacpVibCh+KICQP7beM4LP+kmzWo3ELney0+qHzo6jjao
c1LN95utzFOuq4CnamXFfH9aFn8WSoQ0j+74idf+mF3uxB9YI/Hpe4sEcyKkN/tq
msHUpNPkdu834z4bNqAiqxzMGGjwcfa/3IIMHDeXWFB26d0DG6YM6BKJvoucuO8h
vlWKFJ8taHng5eD9TpFkxLky2FyF1jQEsZwVv23PkADrGVDWqHsJdqkwtYoyMklI
R++hXFkItoMheHm/Hzfyvlgk+fme9jzGrbvvfe19T987BHXtfzBLAqsobwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCNcSzziVfU4iavEKHJiFeadpcxvMB8GA1UdIwQY
MBaAFJJsmLUQYfNAzOTgtM42HONKvC/OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTkt
ZGM3NmZlY2E5NGJmLzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8wNTE1OWEtNDUyOS00OGZhLTk1ZTktZGM3NmZlY2E5NGJm
LzEva215WXRSQmg4MERNNU9DMHpqWWM0MHE4TDg0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAW6jy51b4
GEPalqQUvM2kooIwFSGAY1A8ePbXM3RghXPfXqQmiCk4vI3ySadVAc7jFjeB+2mV
gMr8HTv5KciY/Q7oTAsElHTZeVmJG4+Et8xmiYymfdiFdd1KbWNDYqg2scn2Ktdo
x9VVJjO36rpj7OufbEX1G4jcc9aVijACjbEQFYJiNVRHMiYOmwfUYeJjMvFoH6uo
5+Kfxwro16JIf6YqiNdST3em0R4iH3990h5pe9rhsdHKJX/I3VHJuQpaLWA9Mnb1
QVfFW1ZCxF2tGw914tP3OI4eDLK83gvAbfZBYm+DAojLb9WqzFM8K9KOOhogL7jc
vsFml/7vp3b9Pg==
-----END CERTIFICATE-----
Generated at Fri Jun 12 23:42:17 2026 by rpki-client