Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
File: Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft (raw, json)
Hash identifier: RfRAOGn6qCDaDMh6j8dJohWhH3ONn6HXL0aYShrFGeA=
Subject key identifier: 5F:64:0E:82:C3:9B:90:33:FF:3D:71:9E:75:43:19:11:4E:EB:7D:D1
Authority key identifier: 29:B8:75:5B:C5:3E:F1:77:46:BD:29:6E:F2:8B:A9:00:CD:98:FB:E0
Certificate issuer: /CN=29b8755bc53ef17746bd296ef28ba900cd98fbe0
Certificate serial: 019D265F564FDABDD09FE8B9E462925FC82E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
Manifest number: 01D8
Signing time: Wed 25 Mar 2026 19:01:15 +0000
Manifest this update: Wed 25 Mar 2026 19:01:15 +0000
Manifest next update: Thu 26 Mar 2026 19:01:15 +0000
Files and hashes: 1: 6DNwF30LCDUKZspUSvniSglbK78.asa (hash: ct9NJHmgg+w+Ve0ZATSvPFBlaRSn0jlVfWPGuCu05Cw=)
2: Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl (hash: LXt7qjxxWvwerk9ZvUd3SecnTBANrUIMOaEGvDT5+zM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl
rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:56:4f:da:bd:d0:9f:e8:b9:e4:62:92:5f:c8:2e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29b8755bc53ef17746bd296ef28ba900cd98fbe0
Validity
Not Before: Mar 25 19:01:15 2026 GMT
Not After : Mar 26 19:01:15 2026 GMT
Subject: CN=5f640e82c39b9033ff3d719e754319114eeb7dd1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:92:a2:96:9b:65:8e:76:4a:5b:0d:95:e1:e9:
f9:32:4b:80:56:f4:79:ed:c3:ce:b1:5b:16:7e:7b:
e7:06:10:cb:7e:f8:04:8a:92:f9:44:cf:4f:b7:2e:
55:95:35:6f:c0:7b:4c:a7:31:0a:04:02:a1:8d:fa:
19:58:e0:5e:ab:38:16:4b:a8:40:1f:77:b4:5d:39:
86:34:8a:0e:00:76:78:a4:c5:19:21:da:fa:eb:d1:
ca:0f:b2:77:1e:60:87:89:4e:5d:e0:c6:75:87:5c:
ba:cd:c9:89:26:68:e9:51:5b:cb:0a:8d:c6:d4:e8:
35:10:9f:c2:b3:bf:46:67:c0:13:c4:78:a4:06:44:
e0:f4:41:3e:a0:6e:e4:55:bd:87:9b:fa:80:63:0e:
21:db:9d:d0:7e:a9:ab:5c:ee:36:fc:1a:69:95:a9:
66:e4:91:4e:d9:1b:77:ac:5c:3d:74:fc:a9:13:d0:
e1:0f:2b:bb:45:33:84:9a:66:b6:d6:d6:0d:fd:9e:
0d:e0:1e:d9:f9:12:37:21:28:53:75:a9:ff:dd:a9:
ef:e7:af:03:2f:d9:05:67:f8:cf:58:88:69:2d:4a:
3e:54:f1:08:a2:69:ee:17:04:07:48:a5:f4:3b:03:
f2:12:47:80:df:0b:7d:99:cc:67:ee:a2:24:8b:b9:
9d:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:64:0E:82:C3:9B:90:33:FF:3D:71:9E:75:43:19:11:4E:EB:7D:D1
X509v3 Authority Key Identifier:
keyid:29:B8:75:5B:C5:3E:F1:77:46:BD:29:6E:F2:8B:A9:00:CD:98:FB:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kbh1W8U-8XdGvSlu8oupAM2Y--A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/068231-7cfc-4068-86b5-9ab4ad8b4ff4/1/Kbh1W8U-8XdGvSlu8oupAM2Y--A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:00:3a:06:2f:f5:91:4f:65:0d:1b:3a:45:7e:0b:a1:d2:20:
f6:1c:7e:68:cf:88:40:02:84:c7:69:27:55:01:5f:59:f5:6f:
53:8c:54:e5:39:af:a9:a0:83:ed:4b:65:34:f0:26:18:d4:fa:
18:ac:46:30:17:2d:0f:bd:08:50:1d:b2:d1:ba:c7:3c:f9:91:
a1:da:af:7f:f3:55:aa:0b:33:26:a6:74:b8:17:7e:47:7c:e1:
23:69:75:f9:b4:ce:ab:4e:9e:a3:51:ba:88:5a:49:f8:1d:e2:
6a:4b:e6:76:80:59:2e:c0:f4:17:52:4d:be:2c:40:7a:aa:0f:
26:bc:36:33:18:bb:3f:b3:0e:c2:10:45:da:cc:51:6a:83:92:
34:62:44:69:35:64:fe:fc:b6:af:e8:43:a3:8e:68:4b:5d:04:
64:9e:74:46:61:58:18:a5:38:35:52:12:76:96:3c:e0:9f:cc:
48:a9:09:cd:94:a5:6a:3d:92:fc:99:fe:87:37:58:85:b8:3b:
84:56:0e:6a:9e:ab:92:81:d3:4a:5d:7f:8f:5d:a6:5e:c8:3d:
3d:6a:28:39:f7:d8:21:95:8e:aa:30:35:37:fb:49:2c:8d:e3:
20:08:d9:df:96:e9:11:ba:8c:70:68:80:be:e9:a8:be:11:71:
01:8a:c5:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:20:39 2026 by rpki-client