Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json)
Hash identifier: P5C8r4TihsQIJC2XgbdktKIfBqYhlqpQXK/m71RzqMM=
Subject key identifier: F3:2F:87:1A:AC:09:B8:1E:65:74:1C:E8:57:98:41:48:D6:64:54:AC
Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534
Certificate serial: 019D2D73570240551D7A36751B622AB9E2E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
Manifest number: 1889
Signing time: Fri 27 Mar 2026 04:00:26 +0000
Manifest this update: Fri 27 Mar 2026 04:00:26 +0000
Manifest next update: Sat 28 Mar 2026 04:00:26 +0000
Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: 5N6Xqo84mMQsTv5CxBrsD3mFl7p3xwZetDQ1/m1Z2gE=)
2: MhVJs-dWDJmrXlKqcMfoLN_84JY.roa (hash: 2g0t0h8Fxp46vhAobXXA0I4CYe8p0TLn16sQB8keFq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 28 Mar 2026 01:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2d:73:57:02:40:55:1d:7a:36:75:1b:62:2a:b9:e2:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534
Validity
Not Before: Mar 27 04:00:26 2026 GMT
Not After : Mar 28 04:00:26 2026 GMT
Subject: CN=f32f871aac09b81e65741ce857984148d66454ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:79:40:f7:89:f6:95:d0:75:07:e6:14:4c:4d:
f8:92:66:6e:b3:f9:88:26:15:15:e5:02:b5:a4:7c:
c1:5f:6c:f8:ab:80:63:38:14:9e:9a:3e:4c:75:0d:
3e:d3:72:f8:e5:d1:9b:b1:da:5d:cf:16:a0:7b:b8:
f7:94:c0:ed:26:f2:42:01:24:c1:b7:c7:10:09:ed:
bb:31:9f:8f:05:48:76:6c:74:f4:99:7f:ea:ab:89:
8b:ff:72:cf:a3:4f:15:b4:0d:eb:b0:4d:f5:f9:fc:
9b:9a:ea:98:92:b2:82:13:2c:bb:40:58:08:10:58:
ef:b7:6a:67:86:0c:e4:1e:b9:6e:9a:62:5f:b8:c3:
31:10:fb:ea:ce:6c:c0:84:13:46:b6:4b:f9:c6:ae:
e0:34:32:7c:41:17:27:a6:34:3f:80:44:c2:c2:ea:
63:d8:21:a9:0c:2a:c6:51:98:1b:13:ea:0d:92:90:
ab:8d:00:ac:30:e7:5f:09:f1:0d:76:3a:2f:45:73:
f8:db:0e:b1:02:09:f3:2c:20:de:ef:01:d1:da:0c:
95:b7:50:97:bf:8c:d0:12:6b:79:4e:df:56:17:26:
f6:cb:5a:a4:92:40:84:a9:01:ea:0c:82:55:b5:f9:
9d:fb:87:f8:a9:b4:d9:f8:49:30:a9:eb:6a:ac:d6:
e1:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:2F:87:1A:AC:09:B8:1E:65:74:1C:E8:57:98:41:48:D6:64:54:AC
X509v3 Authority Key Identifier:
keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:4e:7e:88:f6:dd:76:43:ff:20:14:05:39:d7:1f:0b:cb:63:
83:2b:38:67:17:e8:01:bc:83:98:92:82:87:03:f2:b6:0e:a5:
89:9e:02:89:56:73:46:66:33:8f:19:39:ed:26:54:20:6e:d0:
f4:4d:dd:1f:4a:90:29:7d:83:e6:01:51:c0:5a:ad:08:95:8e:
68:53:f2:d1:8d:83:5b:41:23:f8:20:b0:c9:49:15:15:e3:60:
30:ba:3c:b0:41:6e:fe:41:3d:5d:d9:54:ed:a3:a0:02:b2:9c:
f1:1f:b2:28:3f:26:ee:fe:75:1f:e5:61:e4:c9:ed:4d:85:30:
55:94:e9:27:98:38:e4:6b:77:62:c1:5a:33:d1:7c:82:77:45:
88:96:a9:05:70:9e:0d:ff:9d:a4:d6:52:af:89:7f:d8:54:93:
3f:5e:14:07:00:2b:29:49:92:5c:34:aa:6c:4b:11:19:c4:02:
54:31:9d:13:53:e0:5b:4e:46:d6:f6:cc:db:81:5d:5a:cc:be:
1c:6a:8b:13:4b:3d:e5:94:ec:fc:82:32:aa:c2:e8:e5:8c:52:
a5:6b:e5:5d:ad:a6:76:57:4c:03:0a:55:93:2b:1c:10:92:6c:
17:ed:4b:3a:39:fc:29:07:c6:97:47:d8:05:e3:a8:f9:10:97:
ab:eb:47:e2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 06:41:36 2026 by rpki-client