Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: 1S41yNwWs6OuaJELV95/NuNtgPLCpgSR4it44W9TeIo=
Subject key identifier: D0:45:79:77:B4:49:AE:43:0E:C4:12:61:8D:47:D9:D6:53:41:24:16
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019D273AA3EA3190D7F96FAB906BBF510F05
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 07FC
Signing time: Wed 25 Mar 2026 23:00:47 +0000
Manifest this update: Wed 25 Mar 2026 23:00:47 +0000
Manifest next update: Thu 26 Mar 2026 23:00:47 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: OePHLdmhhMikNK65HbDUdnoq1s3c0SemBo3ZUB79yn8=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:00:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:a3:ea:31:90:d7:f9:6f:ab:90:6b:bf:51:0f:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Mar 25 23:00:47 2026 GMT
Not After : Mar 26 23:00:47 2026 GMT
Subject: CN=d0457977b449ae430ec412618d47d9d653412416
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:a0:e9:45:44:7c:e0:f1:c0:0b:11:8f:a4:71:
02:b1:e4:63:4f:0c:63:9b:e8:0e:c8:46:3f:31:21:
b0:ff:de:23:f3:e2:4c:74:46:f6:1b:19:66:7f:3d:
b1:97:99:1f:dd:39:17:9f:da:1a:bf:10:fd:46:b3:
b5:bf:e9:96:14:b6:14:b6:70:b4:58:91:84:61:29:
e3:ec:12:47:03:da:d4:5b:87:d9:48:17:f6:04:8d:
3a:7c:b7:7c:54:9a:16:24:c0:9a:99:9b:37:53:3a:
72:0d:62:a8:a4:c4:14:a6:ab:69:ca:88:50:db:6a:
0f:8b:96:2b:60:ff:65:75:ff:d3:32:bf:08:67:83:
e7:2c:d4:a2:10:1d:0d:cb:86:fb:df:30:47:b9:c9:
d9:d7:6a:ba:11:fd:ae:9b:ca:fd:05:aa:95:8c:3a:
47:22:19:dd:7c:31:86:18:e8:cc:72:bd:a6:58:0e:
11:ee:48:0f:3b:28:cc:fc:72:30:27:e5:d4:cb:f2:
3a:ae:d8:ce:b0:ff:d0:95:31:88:a9:53:4e:22:e9:
b0:a2:0e:91:43:28:5d:8a:c5:e5:85:74:5b:ce:16:
59:7f:4f:17:29:d0:c7:df:80:fe:9c:d9:be:23:4d:
2f:b8:9e:9d:ab:a0:a7:b4:5a:77:5e:ac:ac:bf:cf:
00:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:45:79:77:B4:49:AE:43:0E:C4:12:61:8D:47:D9:D6:53:41:24:16
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
71:13:09:4a:b9:89:59:4f:9a:71:e1:26:15:a0:ee:71:76:57:
64:a4:7a:96:6c:66:91:b1:93:32:03:42:88:ed:9f:4f:57:10:
67:7f:33:19:2c:40:69:f6:e2:b6:70:3c:af:82:35:c6:bf:41:
c6:53:23:bb:29:5c:78:28:4f:4c:9a:2c:37:2a:2c:e4:bf:d2:
11:e9:54:d5:af:38:fc:5a:67:a1:f1:3c:d2:65:8b:d2:f6:11:
cd:df:5c:5e:e7:50:ef:15:76:60:46:4f:8a:84:38:bc:c5:bd:
fb:14:94:ac:b9:18:09:a1:c0:97:ea:6e:2b:7b:7c:57:00:48:
b6:32:bf:d2:75:31:71:f0:ce:ac:76:c2:83:cc:dc:bc:16:37:
02:32:7b:cc:93:f1:0e:89:0c:6a:e2:76:d7:f7:17:a5:2d:86:
88:cf:4e:ac:ce:4f:72:3f:05:f0:cb:0e:90:13:26:62:1e:e9:
0b:36:07:1f:90:ed:32:cb:53:a7:dd:25:94:55:b5:cf:6a:6d:
2f:9b:9e:ce:2b:c9:79:d3:b2:08:ea:14:4c:de:4a:be:fb:77:
c0:e9:c4:c9:eb:d8:41:13:40:37:7b:2e:3c:55:e5:c7:b9:6e:
cc:b3:66:38:23:67:12:ab:d7:7a:d0:2c:7b:a9:28:63:7b:ed:
e3:ff:ce:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 07:01:11 2026 by rpki-client