Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
File: KFJhMsT89rTN_3QCVWAsz53LBC8.mft (raw, json)
Hash identifier: L23qtuJxWATG9a5LE1tJBmdwNYxJGZ9TMd+LAMD3fzo=
Subject key identifier: C8:24:9C:54:9F:FF:F6:E7:0E:47:0C:87:65:EE:52:C6:AF:CD:12:8F
Authority key identifier: 28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
Certificate issuer: /CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Certificate serial: 019D29616B8620CB9534B534894BC341509F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 09:02:23 +0000
Manifest this update: Thu 26 Mar 2026 09:02:23 +0000
Manifest next update: Fri 27 Mar 2026 09:02:23 +0000
Files and hashes: 1: KFJhMsT89rTN_3QCVWAsz53LBC8.crl (hash: ISBeQWG8+YbbURGtD7PcfpKVLoptlh9qOcMxf/Z9RLQ=)
2: fkreEwL9i_WFct5R3Lmih3A6nXk.roa (hash: mAkb5z60hK6EVuMnyR6xB4SOK+FJ+cVNYl8vrOn5u5Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:6b:86:20:cb:95:34:b5:34:89:4b:c3:41:50:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28526132c4fcf6b4cdff740255602ccf9dcb042f
Validity
Not Before: Mar 26 09:02:23 2026 GMT
Not After : Mar 27 09:02:23 2026 GMT
Subject: CN=c8249c549ffff6e70e470c8765ee52c6afcd128f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:e2:c6:73:a0:9b:06:02:26:38:70:74:91:2c:
77:74:98:ba:bb:b7:cb:74:83:11:6b:12:8a:8f:80:
81:a1:8f:d8:6a:19:37:12:85:6a:c0:eb:4c:79:e6:
c4:db:38:cc:89:66:e3:05:bb:ac:62:8b:e4:9c:fc:
93:a7:4a:86:7e:f8:3f:26:1c:69:9a:6d:f2:53:f9:
cc:3c:0e:01:58:b2:bc:1f:ad:48:18:89:7d:99:89:
59:5f:bf:b2:17:55:c9:2c:32:82:7b:d4:60:63:25:
8d:ac:52:6e:4b:d3:6e:8c:82:72:f3:d9:20:d6:d2:
db:62:77:e2:f6:57:d0:66:cd:e3:b0:8b:cb:24:a3:
56:3f:89:a5:f3:70:ed:b2:59:77:d5:24:3e:ac:6b:
78:41:c3:37:83:da:47:45:e9:b8:0a:51:cc:46:32:
14:77:c2:11:84:16:1b:bc:bc:01:87:06:1b:d9:a3:
0c:60:c3:41:57:2d:ae:ae:7c:8b:16:64:27:cc:52:
89:f7:12:af:b0:1c:17:4b:fc:aa:20:fc:f3:52:75:
ef:47:a4:9c:58:4e:95:a1:4a:83:c8:43:9e:bd:88:
9c:77:89:d6:c4:cf:08:ff:61:8b:3c:f6:94:02:ed:
9f:f9:62:20:92:ca:75:61:6a:15:22:39:f1:b5:ac:
62:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:24:9C:54:9F:FF:F6:E7:0E:47:0C:87:65:EE:52:C6:AF:CD:12:8F
X509v3 Authority Key Identifier:
keyid:28:52:61:32:C4:FC:F6:B4:CD:FF:74:02:55:60:2C:CF:9D:CB:04:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KFJhMsT89rTN_3QCVWAsz53LBC8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/83168b-6b40-4d12-8ed7-1f99317c6c94/1/KFJhMsT89rTN_3QCVWAsz53LBC8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:92:9f:f0:a3:10:bf:bf:24:47:ed:53:97:2b:b0:01:94:33:
a5:8b:51:cf:3c:94:23:71:74:c3:92:13:31:2c:06:72:30:c5:
d3:d7:fa:a1:1a:3a:40:ce:e7:5d:e1:3c:77:f2:34:b7:e2:e2:
80:87:cb:a9:50:51:a8:92:af:38:27:4d:66:c7:ec:c7:0b:f9:
89:7a:b9:4d:dd:d3:ba:30:49:be:59:ed:b1:65:43:6f:f4:ce:
6d:ee:4a:7e:60:eb:44:02:f7:f0:0e:21:3f:47:3e:e0:8a:ee:
e5:af:c5:72:7c:fa:af:21:1f:12:20:43:e1:13:e7:5d:4e:19:
a4:b0:58:92:5e:71:9f:a6:ef:09:30:26:5c:e3:3e:67:d9:19:
68:f2:64:5c:9f:d5:80:33:c3:60:d0:6c:a1:88:0e:9d:39:94:
43:5b:c2:6d:be:b9:ae:e3:fa:57:90:c2:3a:14:81:2f:6c:79:
3f:30:0b:a1:53:9a:41:e5:4b:58:de:fa:52:e0:1c:75:cc:42:
a9:aa:12:d6:b2:2d:c0:ab:30:a3:a9:58:99:5c:ea:eb:23:43:
9a:20:80:d9:6a:52:49:ba:02:4c:88:34:61:ac:41:1f:6d:76:
f3:8b:0c:2a:d5:6a:83:a7:08:5a:c9:9d:27:be:bc:2c:5f:be:
24:e0:5e:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYWuGIMuVNLU0iUvDQVCfMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4NTI2MTMyYzRmY2Y2YjRjZGZmNzQwMjU1NjAyY2NmOWRj
YjA0MmYwHhcNMjYwMzI2MDkwMjIzWhcNMjYwMzI3MDkwMjIzWjAzMTEwLwYDVQQD
EyhjODI0OWM1NDlmZmZmNmU3MGU0NzBjODc2NWVlNTJjNmFmY2QxMjhmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9uLGc6CbBgImOHB0kSx3dJi6u7fL
dIMRaxKKj4CBoY/Yahk3EoVqwOtMeebE2zjMiWbjBbusYovknPyTp0qGfvg/Jhxp
mm3yU/nMPA4BWLK8H61IGIl9mYlZX7+yF1XJLDKCe9RgYyWNrFJuS9NujIJy89kg
1tLbYnfi9lfQZs3jsIvLJKNWP4ml83Dtsll31SQ+rGt4QcM3g9pHRem4ClHMRjIU
d8IRhBYbvLwBhwYb2aMMYMNBVy2urnyLFmQnzFKJ9xKvsBwXS/yqIPzzUnXvR6Sc
WE6VoUqDyEOevYicd4nWxM8I/2GLPPaUAu2f+WIgksp1YWoVIjnxtaxiCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFMgknFSf//bnDkcMh2XuUsavzRKPMB8GA1UdIwQY
MBaAFChSYTLE/Pa0zf90AlVgLM+dywQvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82ZC84MzE2OGItNmI0MC00ZDEyLThlZDct
MWY5OTMxN2M2Yzk0LzEvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC82ZC84MzE2OGItNmI0MC00ZDEyLThlZDctMWY5OTMxN2M2Yzk0
LzEvS0ZKaE1zVDg5clROXzNRQ1ZXQXN6NTNMQkM4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5Kf8KMQ
v78kR+1TlyuwAZQzpYtRzzyUI3F0w5ITMSwGcjDF09f6oRo6QM7nXeE8d/I0t+Li
gIfLqVBRqJKvOCdNZsfsxwv5iXq5Td3TujBJvlntsWVDb/TObe5KfmDrRAL38A4h
P0c+4Iru5a/Fcnz6ryEfEiBD4RPnXU4ZpLBYkl5xn6bvCTAmXOM+Z9kZaPJkXJ/V
gDPDYNBsoYgOnTmUQ1vCbb65ruP6V5DCOhSBL2x5PzALoVOaQeVLWN76UuAcdcxC
qaoS1rItwKswo6lYmVzq6yNDmiCA2WpSSboCTIg0YaxBH21284sMKtVqg6cIWsmd
J768LF++JOBeRQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 13:38:39 2026 by rpki-client