Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
File: kkecrihHZdYoBEEZAJiA0op1YLE.mft (raw, json)
Hash identifier: 0XTJnYbeOUvzpyldPJEWzWCNm7lKvp5nMUZ/aWO9DMw=
Subject key identifier: DF:6C:15:88:7E:DD:B8:D2:F0:93:EE:E8:D9:48:F4:68:95:3C:D9:B9
Authority key identifier: 92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
Certificate issuer: /CN=92479cae284765d628044119009880d28a7560b1
Certificate serial: 019D27E01EB01C7E3FC002531884A22490E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
Manifest number: 1886
Signing time: Thu 26 Mar 2026 02:01:32 +0000
Manifest this update: Thu 26 Mar 2026 02:01:32 +0000
Manifest next update: Fri 27 Mar 2026 02:01:32 +0000
Files and hashes: 1: kkecrihHZdYoBEEZAJiA0op1YLE.crl (hash: x68A37A/56jjxbJS3yzP32T/WIEOABv3vE9L2IpsMWs=)
2: nHDzEWljU7MsVz78dLg5QpTrFFg.roa (hash: xbqDoLAsVsrweaY+Yx0dFP2C1Mp47CbJGV+7MwZaYi0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:1e:b0:1c:7e:3f:c0:02:53:18:84:a2:24:90:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92479cae284765d628044119009880d28a7560b1
Validity
Not Before: Mar 26 02:01:32 2026 GMT
Not After : Mar 27 02:01:32 2026 GMT
Subject: CN=df6c15887eddb8d2f093eee8d948f468953cd9b9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:73:09:98:20:97:56:64:6c:de:e9:52:2f:fb:
e7:36:b5:3a:10:76:db:04:57:27:9d:d6:11:96:ff:
46:40:59:ba:09:82:dc:4a:96:1e:4d:73:07:42:1a:
db:99:e7:6e:91:89:d5:a3:8e:56:32:a4:f8:24:f4:
4d:3b:d5:a6:44:6f:d0:8e:ef:bf:41:aa:7e:7f:19:
0c:ea:2d:2e:ec:68:aa:9c:59:8b:69:b6:5d:2d:ce:
04:fa:54:64:7a:5a:5d:95:60:6c:95:b4:52:27:10:
89:6e:52:7b:8c:d1:d7:5e:4d:ff:85:5f:b7:e1:65:
a8:3e:04:33:9b:64:2d:80:e4:88:27:dd:b8:74:15:
a8:e8:1c:ef:1b:9b:a0:9c:30:6e:b6:e4:7a:45:02:
45:e2:9e:98:f7:d6:83:df:a5:5b:ae:cd:ae:d6:ae:
5b:1e:50:40:c9:ec:11:eb:e5:c1:62:1e:7b:9f:ad:
29:05:44:46:3f:ed:95:12:88:a5:70:24:4a:51:5b:
61:fd:ef:da:f5:3f:7f:5d:37:0f:e8:f8:f1:f6:11:
87:62:0a:07:2b:dc:66:20:41:5a:c0:50:89:86:c7:
aa:2a:d0:b4:60:95:96:be:2c:f2:01:ae:65:4f:09:
eb:5b:d4:f3:bb:30:03:67:ea:1d:72:81:b3:66:7f:
26:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:6C:15:88:7E:DD:B8:D2:F0:93:EE:E8:D9:48:F4:68:95:3C:D9:B9
X509v3 Authority Key Identifier:
keyid:92:47:9C:AE:28:47:65:D6:28:04:41:19:00:98:80:D2:8A:75:60:B1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kkecrihHZdYoBEEZAJiA0op1YLE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/17/058220-596e-480a-a058-0246868aa0ed/1/kkecrihHZdYoBEEZAJiA0op1YLE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:3f:c9:66:82:62:8f:90:64:27:b6:5b:4e:71:62:b2:cf:4a:
36:b9:08:ea:19:49:27:e3:b5:0a:f1:da:7e:a8:d0:c0:1a:8c:
f9:45:e1:8c:b5:82:1e:ef:27:a4:09:f4:65:b9:fc:ca:89:bd:
fe:43:80:9a:c0:66:e2:e0:8f:96:b5:55:b4:0f:b7:ae:ec:cc:
03:cb:7d:a8:85:3d:46:f2:03:14:28:35:80:f9:61:f4:7b:51:
82:60:47:2e:c2:6d:9c:b6:37:35:49:87:3a:e5:a5:58:d3:ba:
d0:6b:c5:31:42:1a:62:f9:98:a6:c0:0a:3f:80:46:53:be:68:
93:83:0e:1c:38:a5:2d:aa:7b:9e:d5:1b:5d:7c:82:2b:88:a6:
52:ad:4d:de:1c:94:28:e1:98:d5:1f:e0:ce:87:59:0b:32:e6:
63:61:e0:fa:df:b7:82:1e:29:ce:c7:98:47:97:4a:f0:ba:3f:
62:24:44:c9:3b:f6:00:d2:19:05:80:4c:26:a1:79:88:a4:78:
c3:45:f8:5c:1a:f0:3c:95:9b:d6:04:d3:e7:59:a9:e0:6e:b1:
de:7a:c5:aa:89:e1:2c:57:77:18:f5:49:43:e6:ca:62:33:da:
74:0a:f3:ec:4a:15:17:2e:66:a9:3a:a5:a4:e6:60:d4:6d:6c:
25:e3:6a:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:41:39 2026 by rpki-client