Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: YQtkOkcQZiif6xoShQURIQfsOf+qBRdr999vO/ucgi4=
Subject key identifier: 8D:61:FF:15:EF:23:4E:F2:54:85:6C:0C:BA:E5:9C:EF:EE:D0:0C:B2
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019D27A8900EF5DE6C5DD20A6BEF41ECE6E1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1893
Signing time: Thu 26 Mar 2026 01:00:51 +0000
Manifest this update: Thu 26 Mar 2026 01:00:51 +0000
Manifest next update: Fri 27 Mar 2026 01:00:51 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: WSBY2UTBzmp3SjuNjG/j4qDKkfHS3IuOrS5pwLn2XqM=)
2: oPGWWYaAX9Sd9i7DrFXYN9EHrLY.roa (hash: gWn6/oluANX78L0hnctxoTZX7zawfsnjM4XEj/gL06s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:90:0e:f5:de:6c:5d:d2:0a:6b:ef:41:ec:e6:e1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Mar 26 01:00:51 2026 GMT
Not After : Mar 27 01:00:51 2026 GMT
Subject: CN=8d61ff15ef234ef254856c0cbae59cefeed00cb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:27:93:5f:ad:b1:37:f0:65:00:ca:9f:ec:bb:
62:1e:cf:51:57:46:f0:83:d7:f3:2c:c2:34:93:b2:
68:6f:05:00:ad:49:03:53:43:83:0b:b8:80:5f:f9:
3b:bd:8f:80:be:46:ac:0c:90:b0:8d:8e:c9:c3:82:
9b:cd:93:48:f1:69:2a:a0:54:7d:10:da:1b:40:c3:
89:6f:43:f1:66:29:0c:10:c6:db:0c:44:d1:1b:6a:
7f:5b:2f:3f:c3:46:4f:3c:1b:a9:61:7c:72:f8:92:
62:f3:d6:61:26:2b:27:16:df:78:90:b7:23:16:a5:
23:73:e2:a1:1c:1b:91:ff:e6:b6:99:8a:d6:c6:eb:
cd:60:fe:8e:a3:55:08:71:d4:a8:e1:00:0d:5d:38:
67:00:52:f1:af:ed:97:e9:7b:8f:4a:9d:bc:1e:92:
c2:7a:41:e2:11:d9:1f:c3:b4:81:64:0b:c4:95:79:
6c:8e:fe:ce:0f:5e:b5:92:02:57:64:a5:6d:0f:a2:
ee:fe:cf:01:5c:d6:d7:25:55:81:60:1a:c7:73:d9:
16:8b:be:13:53:cf:78:87:9e:df:da:12:71:6a:7e:
b1:04:03:84:fe:05:01:08:3b:07:71:0e:1a:1f:0b:
ed:81:d1:d5:9f:4e:f3:d2:12:42:eb:74:90:98:bf:
ec:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8D:61:FF:15:EF:23:4E:F2:54:85:6C:0C:BA:E5:9C:EF:EE:D0:0C:B2
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:60:4c:2f:e2:6f:99:30:81:aa:fe:50:08:a6:5d:a7:f6:49:
c5:a2:95:c6:97:ef:4b:69:30:85:3a:47:11:c5:c4:62:0f:55:
cd:07:c7:26:32:de:ab:fb:69:bf:59:85:86:d3:a3:bb:78:fa:
28:f1:40:19:9c:34:4b:0c:2c:1e:c4:2a:d5:89:f4:22:c3:3b:
0a:27:9b:87:b7:c2:30:84:84:bb:97:46:c7:13:10:28:c7:e3:
90:7e:74:cc:af:fc:20:b4:9f:00:bd:ad:42:81:fd:b5:55:b3:
86:e7:d1:07:12:8c:87:e6:a0:14:2a:43:83:0f:9f:0c:e9:10:
50:e8:29:79:5c:94:5c:73:ba:21:cf:9d:cf:d2:90:00:14:22:
b4:28:e6:29:c8:c7:85:0c:a5:ab:db:23:2a:b0:88:4d:3d:28:
80:00:56:d6:91:bd:74:28:de:56:bb:1e:20:bf:62:79:c9:dd:
d1:77:e6:e3:c6:f9:fb:92:e0:fc:b6:f6:db:a8:61:64:cf:12:
b2:f2:d1:b5:14:24:b1:50:31:91:bd:be:79:38:da:f2:61:4b:
9a:4f:27:11:18:fd:9b:c5:ad:4b:7a:70:93:d3:73:3a:ca:aa:
7b:1f:2d:18:0c:f3:4f:27:0a:14:13:5d:a3:76:7a:34:6d:4f:
8f:dc:11:6d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nqJAO9d5sXdIKa+9B7ObhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxYzFjODViZjVjNTM0NzFhOTk3ZWY5ZmE5OTlkMGMxNmJl
ODU0NDQwHhcNMjYwMzI2MDEwMDUxWhcNMjYwMzI3MDEwMDUxWjAzMTEwLwYDVQQD
Eyg4ZDYxZmYxNWVmMjM0ZWYyNTQ4NTZjMGNiYWU1OWNlZmVlZDAwY2IyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ieTX62xN/BlAMqf7LtiHs9RV0bw
g9fzLMI0k7JobwUArUkDU0ODC7iAX/k7vY+AvkasDJCwjY7Jw4KbzZNI8WkqoFR9
ENobQMOJb0PxZikMEMbbDETRG2p/Wy8/w0ZPPBupYXxy+JJi89ZhJisnFt94kLcj
FqUjc+KhHBuR/+a2mYrWxuvNYP6Oo1UIcdSo4QANXThnAFLxr+2X6XuPSp28HpLC
ekHiEdkfw7SBZAvElXlsjv7OD161kgJXZKVtD6Lu/s8BXNbXJVWBYBrHc9kWi74T
U894h57f2hJxan6xBAOE/gUBCDsHcQ4aHwvtgdHVn07z0hJC63SQmL/suQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFI1h/xXvI07yVIVsDLrlnO/u0AyyMB8GA1UdIwQY
MBaAFJHByFv1xTRxqZfvn6mZ0MFr6FREMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2Et
NDUxNDM3NGU2ZmZhLzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80MC8wMzQ3ZDMtZTU0Yy00NGMwLThmN2EtNDUxNDM3NGU2ZmZh
LzEva2NISVdfWEZOSEdwbC0tZnFablF3V3ZvVkVRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU2BML+Jv
mTCBqv5QCKZdp/ZJxaKVxpfvS2kwhTpHEcXEYg9VzQfHJjLeq/tpv1mFhtOju3j6
KPFAGZw0SwwsHsQq1Yn0IsM7Ciebh7fCMISEu5dGxxMQKMfjkH50zK/8ILSfAL2t
QoH9tVWzhufRBxKMh+agFCpDgw+fDOkQUOgpeVyUXHO6Ic+dz9KQABQitCjmKcjH
hQylq9sjKrCITT0ogABW1pG9dCjeVrseIL9iecnd0Xfm48b5+5Lg/Lb226hhZM8S
svLRtRQksVAxkb2+eTja8mFLmk8nERj9m8WtS3pwk9NzOsqqex8tGAzzTycKFBNd
o3Z6NG1Pj9wRbQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 09:59:18 2026 by rpki-client