Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: gZ5FV0AF4yuV3TYYoX4i0YH6cvjQMjeuao/6pQQLdM0=
Subject key identifier: 2A:EB:BC:2E:70:62:F4:BA:AB:CE:CD:AD:ED:0C:F1:24:4C:8E:C7:B6
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 019D26CD3E542120DE99B43A8F165B32CB1B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 0662
Signing time: Wed 25 Mar 2026 21:01:18 +0000
Manifest this update: Wed 25 Mar 2026 21:01:18 +0000
Manifest next update: Thu 26 Mar 2026 21:01:18 +0000
Files and hashes: 1: AXdXSPys8K4gKCZL761_CRlXkQg.roa (hash: Eq65FPzgWfwxVUVR4WpFvfNbVj2sB466X23GUTRrgvw=)
2: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: YjKjfLyHWh5sYIL8NTk5wHPXDj5ZGzYbpKPJP7X9pcg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:3e:54:21:20:de:99:b4:3a:8f:16:5b:32:cb:1b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Mar 25 21:01:18 2026 GMT
Not After : Mar 26 21:01:18 2026 GMT
Subject: CN=2aebbc2e7062f4baabcecdaded0cf1244c8ec7b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:e1:59:3d:34:a0:67:ae:58:05:3d:3a:35:f0:
74:f1:68:f1:c2:25:5e:2e:87:be:63:b8:17:35:97:
56:44:c3:97:f1:43:3d:8b:72:53:5d:0b:ca:2b:97:
76:b9:ab:39:06:55:ba:1e:2f:78:85:2b:9b:e3:7b:
cc:47:e7:e8:2b:61:ec:2b:bb:36:14:12:17:c6:70:
7d:13:f2:b0:be:d7:9d:54:21:d4:ca:52:a0:c9:08:
81:63:cb:bf:99:ca:16:64:e8:f9:19:18:cc:24:d4:
9f:b1:67:80:ce:17:8e:5a:2c:a1:8a:1a:be:29:09:
90:96:24:33:ce:01:bb:25:50:a8:d6:22:d9:55:78:
7f:9d:c6:7e:d1:fe:a0:62:ec:89:10:47:39:cc:85:
94:9a:96:bb:44:82:8f:44:7d:90:c6:f3:2f:f2:d8:
e4:99:1c:cb:2c:86:98:99:1f:38:b6:88:00:2c:ce:
38:dd:15:35:84:cf:c1:ce:19:03:84:e4:23:54:65:
e4:77:7b:e7:f1:25:ba:51:6b:99:96:13:c5:ef:26:
bf:81:1e:c2:69:3f:a1:4d:31:11:f8:a0:fc:ad:4f:
39:1e:3a:36:f4:1b:46:48:34:a3:31:17:6e:de:4c:
7f:65:33:ff:8c:50:c8:13:6e:56:0f:63:c7:c1:8b:
0d:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:EB:BC:2E:70:62:F4:BA:AB:CE:CD:AD:ED:0C:F1:24:4C:8E:C7:B6
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:8e:38:ba:8b:01:c7:bb:85:a8:7b:71:6d:9b:97:c5:be:fb:
f5:01:05:39:58:70:9f:dc:73:ca:1b:00:44:7d:51:f3:2a:59:
bd:07:6f:6b:01:e4:e3:67:7e:c6:14:7c:c5:93:45:f7:da:20:
0e:9c:66:4b:dc:2e:f9:9f:b4:1a:d2:e4:72:87:53:96:09:4d:
ef:70:7b:c5:1b:f9:32:3a:d2:c4:81:17:cf:0b:a5:c6:40:1e:
a2:97:4d:94:a8:1d:9f:ad:2b:04:d2:10:53:60:4f:9f:91:ee:
b8:8d:4b:1b:bd:74:19:14:22:c1:e1:04:8a:71:4a:48:57:dc:
35:51:b5:c1:7c:4c:e5:98:0a:ef:fe:42:8f:48:cb:64:1b:3c:
a7:a7:eb:48:31:2a:ed:8a:c1:8f:3a:88:60:75:b3:57:ba:a0:
45:2e:b5:21:1a:ab:06:70:5c:46:b6:2a:05:ee:92:48:36:79:
75:eb:ef:3a:9c:0e:d8:6f:06:3b:a2:a9:69:ac:0b:0e:fd:81:
95:8e:b2:8b:2e:1b:de:30:68:73:50:f8:85:b1:89:c3:06:5c:
33:df:98:07:24:5e:a6:20:4e:f5:da:2e:13:18:a3:8d:bb:f7:
1a:00:4b:db:a1:bf:a0:c2:4e:23:0a:5d:8d:14:af:03:fb:4c:
c8:1f:1d:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:31:31 2026 by rpki-client