Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: cLBbmufdM6UDATEubmXplIh+pBQkDRxzv3QtxR1ks10=
Subject key identifier: 04:69:8E:6B:63:0C:35:D3:33:FF:27:30:C6:10:FF:7A:3E:0D:37:A5
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 019D2771E76A358A325AC6D665F295A820A1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 15C6
Signing time: Thu 26 Mar 2026 00:01:09 +0000
Manifest this update: Thu 26 Mar 2026 00:01:09 +0000
Manifest next update: Fri 27 Mar 2026 00:01:09 +0000
Files and hashes: 1: 1-z20vDfkn7oH-6wUhtZ7pUOpXYs.roa (hash: 4MFRLpbPJz7onF3ec6CHT+GVAOztKot1i4cNl9/RUGQ=)
2: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: 4KVAWsL9XMyXLF8iY5SO7ZIW0CxyUK0M6G2yudu7/Tw=)
3: O21Shcq_z6RKIQVhghQ8x3iEUgo.roa (hash: PftCITy+sH9MILDPnvPA0rgTafRE24Enke6NGZ2wU40=)
4: kip9OEz8XKCqejVGiyHb4UeVJqw.roa (hash: 2JQk1BgdQDCMPFy2Bnpli4/vgD3QHxPKM4wyX0aSciw=)
5: qFN4BBxdmHy_3BcnNOupfLTZLMo.roa (hash: BnnmcXeCam4+KhT/CdouCX5HwDOQfbwphY/d8ikHz1E=)
6: uak-SP6C0SdGYf4Tcy5QLvzCEvQ.roa (hash: 5hi2l5GuzQIHHEKLjg//xukNKdrAlFGmuJKbjmJZ2aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:71:e7:6a:35:8a:32:5a:c6:d6:65:f2:95:a8:20:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Mar 26 00:01:09 2026 GMT
Not After : Mar 27 00:01:09 2026 GMT
Subject: CN=04698e6b630c35d333ff2730c610ff7a3e0d37a5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:2e:e2:ab:43:1f:a2:c3:e6:bb:aa:11:d7:ec:
6b:57:7e:44:c6:48:af:be:fb:92:c2:a9:b0:00:7a:
c3:a5:71:fe:d6:f1:97:21:ee:12:29:8a:f2:92:ed:
46:0c:8b:96:00:6f:49:7a:51:bd:e8:e0:3e:1e:93:
54:11:1a:da:0b:09:cc:99:dc:69:db:01:18:e5:7b:
70:da:35:f6:8b:94:4a:47:88:fc:3a:de:35:01:b7:
04:82:84:ae:00:f7:b3:e6:33:85:27:b5:73:f8:fe:
8f:51:e8:3d:ee:bd:c5:6d:ee:d6:25:76:89:b7:61:
36:f5:83:91:f9:49:2d:d6:de:52:cf:a0:43:3c:87:
ef:5e:7a:a8:3f:7f:ee:b1:36:65:d2:6c:fc:7b:b5:
c4:20:fd:27:6a:11:5d:ac:6f:03:0e:83:e7:ff:1a:
36:0e:16:60:53:25:df:14:00:c3:35:5b:d5:26:a1:
0a:0a:3a:40:cd:25:50:20:64:cf:0b:23:52:11:5e:
cd:2b:0e:70:88:1a:8a:c0:aa:a7:a4:00:42:54:32:
15:54:65:41:46:ce:ec:20:36:7c:68:57:d6:a2:07:
b3:bb:89:f2:77:49:be:fd:27:2b:7c:ab:a3:57:a0:
a8:6e:05:b4:4e:36:18:89:d1:1d:2f:c3:dc:cf:f5:
be:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:69:8E:6B:63:0C:35:D3:33:FF:27:30:C6:10:FF:7A:3E:0D:37:A5
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:19:ce:cb:d1:95:10:31:65:53:fd:d7:ba:c8:d7:02:45:8b:
93:ef:a8:11:ad:9e:46:8c:fb:98:03:34:52:e4:c0:8b:b1:33:
48:15:92:a5:10:f5:f6:55:40:9e:9d:38:67:62:ed:85:26:8a:
0c:14:08:9a:03:52:56:a5:6a:73:d7:ae:c6:b3:e0:a4:ff:2f:
a6:9d:90:a4:62:a9:dd:41:3a:8a:fe:aa:17:c8:8f:7d:c3:9d:
bb:b7:00:b8:80:b0:7e:0f:52:9b:c9:cb:09:9c:d9:89:56:d1:
93:95:64:0f:e4:6c:70:86:32:7a:cc:fb:c2:1e:df:96:95:92:
e2:e8:48:99:01:c4:64:74:e5:37:38:7f:3e:6d:54:d4:b4:e5:
1b:1f:49:0d:47:b1:67:71:dc:ea:5e:0a:f7:14:d6:97:57:b5:
fd:c1:b5:b6:b8:94:64:3d:52:a8:cc:72:33:2e:98:5d:29:04:
3a:80:75:4a:8e:59:00:46:83:de:b4:63:a9:fd:02:c1:a6:70:
76:d8:81:f5:55:10:16:c1:0d:37:2f:36:a6:f9:e3:61:4d:ae:
6c:75:59:de:a3:05:6d:32:e9:50:f8:de:de:96:ef:1d:a4:ed:
ff:b2:96:a0:30:66:9d:c9:e9:5a:4b:60:9b:67:88:7c:05:a6:
1b:7c:4d:1a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:33:46 2026 by rpki-client