Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: nSifFDLPtwBOHs0rfdrqh9jYqjS3UQ+pCVpAnPZcaYI=
Subject key identifier: 33:FD:47:E8:61:CF:24:49:17:36:8B:5F:FC:CA:DA:6D:2D:40:55:58
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 019D27DFA0C090575F2D1256EE426E91B782
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 02:01:00 +0000
Manifest this update: Thu 26 Mar 2026 02:01:00 +0000
Manifest next update: Fri 27 Mar 2026 02:01:00 +0000
Files and hashes: 1: 8v0CcVyve98suRZMz0YYAeGqttU.roa (hash: gavUEFBgnAVuBp4EUd0FRwiP3lAlf2Xbyzla4xcdz6s=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: /AhKHmr1i/FKJXJ7nmxD2LRAV13vub7yHzfKfHJyPEc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 02:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:a0:c0:90:57:5f:2d:12:56:ee:42:6e:91:b7:82
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Mar 26 02:01:00 2026 GMT
Not After : Mar 27 02:01:00 2026 GMT
Subject: CN=33fd47e861cf244917368b5ffccada6d2d405558
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:00:b9:60:ed:86:5a:83:73:59:9f:57:3a:fe:
da:57:2f:de:a5:1f:d8:3b:2c:e0:ed:9c:e2:98:9c:
32:b2:bc:8e:4d:c9:34:08:d5:4f:ba:b1:8d:f2:91:
0c:b0:de:d1:d4:1d:c9:96:49:85:a6:fd:99:4d:0b:
2d:62:c5:43:3b:c9:2f:7b:1b:0f:b3:2a:46:ce:89:
66:e1:a6:b6:48:ce:71:be:0f:37:8a:0e:af:8f:d1:
79:76:22:cb:d1:13:43:1f:be:2a:94:48:46:84:4b:
17:6c:15:2a:90:82:1f:b2:b0:07:55:8b:bd:cc:d6:
fb:0e:c4:ae:2e:f5:22:03:a3:b2:b3:1f:3a:39:fa:
bd:cd:24:42:e0:04:23:af:12:0f:0f:ba:f6:0b:ae:
c1:74:7f:8c:fd:c9:74:c3:51:30:20:34:c1:16:a2:
f9:e5:81:e8:7f:40:f8:86:b1:73:e1:e6:d5:42:02:
28:22:e8:7f:51:13:b4:a4:c2:82:5f:78:59:27:21:
f4:42:9f:0b:4e:c6:e1:1b:f7:61:24:cf:3f:8d:60:
79:0d:99:04:3a:e8:00:50:34:d2:0b:9d:20:1b:0e:
eb:cc:65:d6:7f:3d:10:4b:1d:8d:be:84:f2:c5:07:
dd:0b:27:51:cd:fa:11:87:91:a4:58:84:dc:4d:21:
31:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
33:FD:47:E8:61:CF:24:49:17:36:8B:5F:FC:CA:DA:6D:2D:40:55:58
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:39:36:de:f5:5e:ea:05:32:68:ad:05:ee:e4:fd:84:8a:65:
fb:2b:4c:83:64:28:da:97:40:68:60:3f:ec:c0:e6:c8:ea:71:
2c:2d:12:f1:6c:e2:a6:3e:73:29:e1:b0:a3:4e:60:69:a6:58:
09:8a:6e:f5:38:42:0e:8e:a5:a9:8d:c9:76:b6:d9:f0:64:f8:
fa:bb:78:df:04:24:01:92:8d:58:c2:2a:1b:bf:ef:47:f4:bd:
a7:ae:8c:4e:84:02:92:29:40:c9:51:86:9b:85:fd:03:5f:1e:
09:0e:6b:88:33:24:15:bb:69:47:0b:60:6b:59:72:eb:3d:82:
e4:59:73:35:2d:5a:7f:3f:96:96:21:50:85:ba:a9:9e:dc:4e:
05:a8:b0:bf:db:24:d0:27:f4:6e:76:a9:2f:61:69:d3:e8:00:
54:bb:0f:93:f6:22:0c:2b:47:b2:20:c7:29:4e:86:47:4e:91:
80:d7:39:fc:b1:86:b7:c8:f8:d5:53:f7:72:1a:8b:6f:a1:6e:
cb:0a:03:66:21:ab:8f:55:a8:f6:a0:0e:a9:b3:f0:f1:78:b7:
74:ab:70:eb:dc:3e:b5:da:57:76:88:72:55:93:4d:11:21:9a:
38:e0:dc:c9:b1:f7:13:a2:6e:47:55:9a:8f:48:7e:93:04:2d:
cc:f6:6a:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:53:25 2026 by rpki-client