Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
File: KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft (raw, json)
Hash identifier: bApnF5YuEgidqgMdeKL6nUY5kPbxpkglt6Dk1f0SwG8=
Subject key identifier: C5:39:8D:18:9D:3D:EE:61:A6:34:C6:CB:71:55:07:C1:8D:C6:F5:AA
Authority key identifier: 29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
Certificate issuer: /CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Certificate serial: 019D27E07C3E5B8128F5FC24F98FEB9B8C8E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
Manifest number: 0F21
Signing time: Thu 26 Mar 2026 02:01:56 +0000
Manifest this update: Thu 26 Mar 2026 02:01:56 +0000
Manifest next update: Fri 27 Mar 2026 02:01:56 +0000
Files and hashes: 1: 8MjIJrMCtESuP4QqUGedaulHiEY.roa (hash: vbuM2+Vw7my75+nhubY19iz46sd5x6zE3G/wV0tOkZ8=)
2: KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl (hash: 5Xcvb2aAKiltoN2wPcGOVgQjWmqFQI6spDrHCYGf7TM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:e0:7c:3e:5b:81:28:f5:fc:24:f9:8f:eb:9b:8c:8e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=297194f4b52b9ff433f2bf0d16b58c11c7cf1131
Validity
Not Before: Mar 26 02:01:56 2026 GMT
Not After : Mar 27 02:01:56 2026 GMT
Subject: CN=c5398d189d3dee61a634c6cb715507c18dc6f5aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:fb:b0:35:37:45:19:2f:07:d5:e4:e8:8e:37:
5b:96:aa:44:7a:72:1e:da:c9:c1:ed:ff:b0:88:db:
6e:2c:86:21:c6:57:18:3a:69:d3:3d:a0:16:9e:9c:
60:bb:23:4e:84:33:23:f8:13:1f:a9:98:bc:52:90:
96:13:81:f5:f1:96:16:7e:cc:b0:60:a1:64:6a:05:
e8:bb:b9:28:18:90:6f:3f:de:87:ed:b9:7b:e6:0b:
1c:c9:2e:48:d0:0f:8b:34:23:10:38:02:5a:31:e2:
2f:3c:67:d4:88:11:f7:5f:99:44:45:27:34:4f:50:
37:a8:9a:b1:fd:9d:a5:1e:c9:0b:d6:c6:67:f5:23:
04:8b:ae:b7:f2:0a:1b:2b:e2:78:1e:51:0f:1d:41:
ac:a6:dc:73:a4:08:77:75:5d:93:05:88:69:97:76:
db:51:d8:4c:9b:c4:65:ef:ec:fd:eb:50:69:f1:a5:
fa:0d:2f:c7:ab:6a:df:d5:ca:21:29:27:a5:da:06:
e1:a4:72:66:7b:ce:3a:df:f7:66:17:fc:e3:cb:11:
82:f0:dc:66:82:9c:c8:75:a4:83:5a:0e:52:b5:a5:
48:8f:f2:09:ff:7c:90:3c:24:eb:fa:c1:a3:6e:08:
9a:73:73:45:e5:da:e8:d8:bc:4f:12:23:d2:df:47:
1b:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C5:39:8D:18:9D:3D:EE:61:A6:34:C6:CB:71:55:07:C1:8D:C6:F5:AA
X509v3 Authority Key Identifier:
keyid:29:71:94:F4:B5:2B:9F:F4:33:F2:BF:0D:16:B5:8C:11:C7:CF:11:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KXGU9LUrn_Qz8r8NFrWMEcfPETE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/85/80b4c0-06cb-4424-9dd5-5a988931ea33/1/KXGU9LUrn_Qz8r8NFrWMEcfPETE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:0d:e7:29:1a:9f:c4:cf:8e:46:5e:d5:25:15:8e:50:b3:7e:
60:71:13:6c:e7:53:c4:2e:88:bb:d3:2d:86:ea:6e:92:07:d3:
d4:b5:43:00:54:5e:77:66:9a:dc:25:e6:8d:de:55:64:63:dc:
c8:e9:3d:11:3e:92:52:4c:b0:a6:d7:d9:e3:07:1d:39:84:69:
9f:29:25:7f:87:17:10:c6:a9:fa:27:d7:20:c8:c9:87:da:d0:
4e:a2:3a:17:2c:c0:6b:fb:3b:b3:52:bb:9b:67:34:97:de:5c:
3f:13:cf:6e:9a:17:3e:aa:70:54:25:1a:33:7d:3f:7f:91:84:
37:ef:cc:46:e0:51:85:3d:46:45:8f:ac:62:99:6c:e8:37:86:
5c:06:e1:8e:e7:eb:16:2a:71:54:bd:6b:d2:9d:b3:8e:f6:fe:
7a:59:f8:02:2d:ce:d1:45:69:ad:26:d1:fa:1d:b3:09:7c:d4:
76:3c:d2:29:a6:59:88:a9:32:ec:99:c8:92:e5:59:b1:98:a4:
82:94:cc:e2:8b:12:b9:f0:39:a5:46:95:a7:63:bd:91:d8:49:
4f:90:60:9d:ed:72:86:2c:7a:f8:8a:50:1c:b0:19:da:0b:83:
10:96:65:c1:24:0b:bd:12:58:ec:01:72:8e:c8:ea:f8:a9:8e:
12:d3:b0:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:52:11 2026 by rpki-client