Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: 5FYMo3qYUCObx+Y2bIy/7jmfnQ74rUKk5+aQQ/B3rGs=
Subject key identifier: 5F:C1:56:F1:E2:79:8F:11:97:9D:A5:4C:19:11:D5:7F:50:C4:F1:F6
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 019D2B4E1A1B1B2D09324F58729B7C2FAD73
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 188B
Signing time: Thu 26 Mar 2026 18:00:31 +0000
Manifest this update: Thu 26 Mar 2026 18:00:31 +0000
Manifest next update: Fri 27 Mar 2026 18:00:31 +0000
Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: CqPk4vj3qa6sRManCZfxI2bz0+wMPMtb2zko5tzEgFU=)
2: tu8pFAR-lfRJrRr8DnEqag_8PIg.roa (hash: W8jBg2aJkkt/Cbf9tH1JvG4N3IVjC0bK1ORLH4MYXDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:4e:1a:1b:1b:2d:09:32:4f:58:72:9b:7c:2f:ad:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Mar 26 18:00:31 2026 GMT
Not After : Mar 27 18:00:31 2026 GMT
Subject: CN=5fc156f1e2798f11979da54c1911d57f50c4f1f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:94:45:87:d3:76:20:35:0d:51:b1:77:ff:f3:
47:08:fa:10:70:14:70:c8:b2:94:21:33:4d:be:76:
c2:d8:22:4f:9c:71:9a:d4:7d:b4:53:9f:05:e5:32:
00:e5:fd:93:7f:89:8b:df:e1:66:bc:66:3e:16:1e:
49:fa:f4:7d:e6:4b:63:cf:11:64:3e:b4:ec:a0:45:
c1:93:6b:08:6c:ed:60:65:57:cf:d8:78:bb:56:b1:
45:c4:6d:9b:cd:80:5f:2b:b5:9a:28:7e:18:9c:5f:
93:2f:10:12:17:87:c8:27:e5:67:36:99:33:6e:bf:
7a:cb:26:b9:30:2d:0a:32:48:f1:27:d3:fb:06:98:
4f:a2:c2:36:75:ef:42:74:fc:e1:88:7a:02:1b:36:
48:ec:a3:f6:8a:b2:aa:3b:fb:4e:96:e1:1d:73:49:
d7:35:98:ce:0f:2f:53:ed:ab:42:60:67:ce:8d:95:
3e:bd:db:9b:d0:cb:9b:4b:c1:07:66:7d:40:cd:7a:
de:07:3c:6e:04:56:25:d9:a2:1c:b1:97:8f:0f:bd:
9e:ae:7d:ec:74:56:7a:5d:83:33:7c:b5:de:26:d9:
af:83:dc:ab:d4:cd:87:6a:31:ae:02:03:72:04:e0:
57:55:5c:3c:f9:76:34:67:68:06:e0:62:7b:2f:cc:
4f:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:C1:56:F1:E2:79:8F:11:97:9D:A5:4C:19:11:D5:7F:50:C4:F1:F6
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:78:f7:27:73:e0:25:70:7a:28:48:b0:16:12:8a:6d:2a:f5:
47:4e:a6:df:d6:02:73:97:c7:e9:c2:d5:79:bc:3a:75:28:ce:
f5:72:f8:ef:af:73:58:4c:e7:e1:f4:d5:7f:58:87:93:34:a3:
4b:33:3d:b1:80:41:53:40:32:31:e7:70:ee:7a:11:51:e5:93:
6b:4b:9d:83:a5:a7:ab:84:87:cc:eb:0a:e3:96:82:51:8d:e7:
9f:34:62:15:e4:96:76:fe:96:ec:40:c9:05:3a:8f:2c:44:1a:
8c:d4:1d:22:aa:36:98:9a:29:5f:37:05:24:5e:01:3a:bd:0d:
3d:0a:92:81:1d:88:a3:0b:9c:27:80:6a:1f:95:eb:5f:c0:f4:
9a:81:66:7a:9f:cd:bc:54:25:3a:f3:6b:90:ee:5e:e4:aa:b0:
46:c2:b8:a6:d8:76:46:ce:53:52:77:d6:11:50:fa:61:06:e3:
64:c7:a7:d1:c6:92:9d:67:e3:4b:2c:fb:c7:76:a6:18:c8:43:
7b:26:e3:69:23:db:f8:24:9c:4d:3b:5a:1b:ac:93:f2:51:07:
e7:04:e3:ae:59:4e:46:8b:ac:92:28:ee:32:0b:54:51:a5:af:
14:49:a2:48:e7:b5:cc:87:7e:41:4f:82:d0:fb:9c:b0:12:5a:
ec:58:18:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0rThobGy0JMk9Ycpt8L61zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDFmNTAxOWE5NzBiYTViZTBjNzU0ZDIwZjc4NjcxODE4
ZjRhMmUwHhcNMjYwMzI2MTgwMDMxWhcNMjYwMzI3MTgwMDMxWjAzMTEwLwYDVQQD
Eyg1ZmMxNTZmMWUyNzk4ZjExOTc5ZGE1NGMxOTExZDU3ZjUwYzRmMWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ZRFh9N2IDUNUbF3//NHCPoQcBRw
yLKUITNNvnbC2CJPnHGa1H20U58F5TIA5f2Tf4mL3+FmvGY+Fh5J+vR95ktjzxFk
PrTsoEXBk2sIbO1gZVfP2Hi7VrFFxG2bzYBfK7WaKH4YnF+TLxASF4fIJ+VnNpkz
br96yya5MC0KMkjxJ9P7BphPosI2de9CdPzhiHoCGzZI7KP2irKqO/tOluEdc0nX
NZjODy9T7atCYGfOjZU+vdub0MubS8EHZn1AzXreBzxuBFYl2aIcsZePD72ern3s
dFZ6XYMzfLXeJtmvg9yr1M2HajGuAgNyBOBXVVw8+XY0Z2gG4GJ7L8xPRwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFF/BVvHieY8Rl52lTBkR1X9QxPH2MB8GA1UdIwQY
MBaAFCkB9QGalwulvgx1TSD3hnGBj0ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUt
MmIyZjJiODkwOGNjLzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUtMmIyZjJiODkwOGNj
LzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANnj3J3Pg
JXB6KEiwFhKKbSr1R06m39YCc5fH6cLVebw6dSjO9XL4769zWEzn4fTVf1iHkzSj
SzM9sYBBU0AyMedw7noRUeWTa0udg6Wnq4SHzOsK45aCUY3nnzRiFeSWdv6W7EDJ
BTqPLEQajNQdIqo2mJopXzcFJF4BOr0NPQqSgR2IowucJ4BqH5XrX8D0moFmep/N
vFQlOvNrkO5e5KqwRsK4pth2Rs5TUnfWEVD6YQbjZMen0caSnWfjSyz7x3amGMhD
eybjaSPb+CScTTtaG6yT8lEH5wTjrllORouskijuMgtUUaWvFEmiSOe1zId+QU+C
0PucsBJa7FgYyg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 22:05:21 2026 by rpki-client