Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: zH4lkQltnVwWtZMt0RS4bsiBV8P7Ugz3QJJ1YX2CVXk=
Subject key identifier: DA:BF:FC:1E:FB:CE:E6:4E:27:CC:CB:01:69:DD:E5:0B:AE:A6:31:03
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019E1E6CC144E7F86E05C220B47861EA22C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 087C
Signing time: Tue 12 May 2026 23:01:44 +0000
Manifest this update: Tue 12 May 2026 23:01:44 +0000
Manifest next update: Wed 13 May 2026 23:01:44 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: hJ39Hko1xRr7pfORLf9x1XTF9PI83fpWdqHEd8H1Tlo=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1e:6c:c1:44:e7:f8:6e:05:c2:20:b4:78:61:ea:22:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: May 12 23:01:44 2026 GMT
Not After : May 13 23:01:44 2026 GMT
Subject: CN=dabffc1efbcee64e27cccb0169dde50baea63103
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:d3:0d:05:77:cf:8b:ae:a6:36:ea:db:88:0f:
73:25:40:be:5b:79:55:ec:b2:66:e8:67:e0:6d:1d:
cc:66:55:4b:86:6b:dd:7b:1b:6d:a8:be:ac:13:c8:
c9:31:8a:44:0d:83:99:ca:9d:02:9e:58:d4:46:43:
58:ed:83:af:28:ee:2d:8a:54:c4:e6:06:7b:eb:68:
1a:85:25:2b:a5:01:4c:40:5c:48:45:02:b2:15:61:
ed:4b:0c:27:ce:ab:7f:8d:31:75:e5:f2:2d:4b:6f:
86:a7:3d:8f:a9:9b:af:1e:b7:9f:d8:13:f7:62:95:
8e:3c:74:18:fb:67:b2:b6:52:4f:fa:34:aa:91:59:
4a:96:34:b1:03:ca:15:d0:4c:78:24:5c:66:03:e3:
4e:c9:2c:7a:09:f7:ad:99:a7:16:90:6d:27:e8:6a:
8a:84:fb:72:2b:e1:f1:8b:5b:84:9d:70:70:b2:01:
c9:db:0b:66:9a:d2:dc:ea:cd:8c:16:d7:45:0c:14:
96:ce:18:4b:ee:ac:cd:d2:c7:36:e9:4f:b2:d4:80:
96:a8:c6:35:3b:5f:37:1e:12:a4:e2:65:d6:7e:53:
b9:fb:a3:96:8c:4e:f9:91:ad:c9:20:c6:46:09:f9:
19:f7:4f:72:e1:77:4e:29:f6:be:e4:56:d4:88:a5:
a6:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:BF:FC:1E:FB:CE:E6:4E:27:CC:CB:01:69:DD:E5:0B:AE:A6:31:03
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
25:09:9f:b6:c1:f4:06:60:51:99:48:4b:fd:d7:12:7a:59:1c:
7f:92:fd:d2:bd:9e:c4:e6:8e:5f:9c:50:5a:1a:95:14:6e:8b:
53:1d:50:a2:c8:55:72:0b:0e:9c:63:33:36:3c:b5:56:f4:91:
18:30:ed:ba:ed:82:6a:5b:59:fb:c5:7b:5a:d6:01:02:54:15:
fc:fe:48:6f:4f:eb:11:0f:9e:73:38:26:ee:ab:71:3d:19:52:
28:5d:0c:e0:86:84:8e:14:1e:f9:6d:c1:09:43:4b:1a:28:f1:
e9:46:76:bc:a7:92:44:c2:88:91:33:3f:a9:41:a2:93:3a:aa:
db:65:58:b7:96:ac:2c:ad:88:5e:64:60:b0:97:d5:03:9c:f2:
47:f4:56:9f:29:94:6c:0b:67:2b:d3:42:75:48:e2:fa:a3:f4:
0e:f6:41:60:e7:0d:09:9f:55:48:0b:dd:71:45:43:03:5a:df:
68:28:fc:7c:d7:83:75:d1:22:80:95:ca:86:d9:ae:a2:80:92:
ef:40:e6:48:f6:7e:af:10:a2:71:9c:a3:ea:f1:59:c8:13:db:
90:12:c2:ce:7f:f6:2c:e5:58:47:62:a1:59:e1:c0:15:c9:1e:
f2:e9:ec:57:ce:31:f2:19:df:4e:e2:56:26:dd:d4:57:47:3b:
4d:34:12:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 06:52:59 2026 by rpki-client