Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
File: KqJOWBL8wxBrnrCusA5ie6I10FY.mft (raw, json)
Hash identifier: mqq2bED673bwBD/J+HFvmsEDlf9VovxeKEU/6UKLxmM=
Subject key identifier: 3B:1E:B3:26:24:5A:60:43:03:28:76:3D:9C:0A:DE:46:EE:BB:91:51
Authority key identifier: 2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
Certificate issuer: /CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Certificate serial: 019E1FB5B519D66CEF1338AEC145C5ABD78B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
Manifest number: 0B9B
Signing time: Wed 13 May 2026 05:01:02 +0000
Manifest this update: Wed 13 May 2026 05:01:02 +0000
Manifest next update: Thu 14 May 2026 05:01:02 +0000
Files and hashes: 1: KqJOWBL8wxBrnrCusA5ie6I10FY.crl (hash: 0K4y7WVjOWdG2l1aBuS8n0lz24t6s6DRvXYNHUyZelc=)
2: yXEtTJb7Q9QNq9QwBOpKF1Og1mg.roa (hash: DbsY9yqJmKOSdLO9tL/m8Sp1oKJbQqdJXvqChVz5qJw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 05:01:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:b5:b5:19:d6:6c:ef:13:38:ae:c1:45:c5:ab:d7:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa24e5812fcc3106b9eb0aeb00e627ba235d056
Validity
Not Before: May 13 05:01:02 2026 GMT
Not After : May 14 05:01:02 2026 GMT
Subject: CN=3b1eb326245a60430328763d9c0ade46eebb9151
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a2:62:88:20:c0:dd:43:3c:b8:85:bf:a9:44:
fb:6d:c0:72:ca:0d:be:52:17:ed:8e:59:16:73:41:
c7:78:e9:52:e2:9c:de:27:14:cb:b5:1a:f2:00:03:
78:e7:5d:55:47:a9:cc:9b:68:26:fa:c4:4f:ee:c3:
a5:7b:9b:f0:ee:e7:71:2f:5c:ab:a7:62:66:25:8e:
43:83:61:c2:03:bc:5d:fb:76:1c:d7:8c:3c:e2:ea:
e1:b5:90:10:f2:78:d3:ae:9e:95:30:4f:34:44:4b:
a9:6d:c3:64:c6:f1:62:3f:69:7e:a2:6d:8d:92:62:
eb:b0:0a:52:39:5c:63:c6:e5:54:91:96:85:d2:00:
72:ee:6d:59:2e:42:51:ff:1e:98:57:cf:33:67:e3:
9b:af:77:82:21:8d:ad:7c:fa:f5:d3:b2:c2:2d:ab:
46:5e:77:c6:37:f6:2d:1d:42:74:d6:bc:2a:b3:63:
6d:20:0e:61:0a:bf:a4:57:75:6b:0a:79:57:10:62:
e0:39:42:32:cb:8c:28:26:5d:66:6d:c0:26:57:b3:
b1:d2:09:97:36:3c:3f:bb:77:8e:bd:4a:d9:4d:76:
97:3e:0b:7e:df:7d:0a:fa:ec:b8:83:e7:66:bc:c3:
7e:9a:26:2c:13:70:52:d3:7a:de:6c:5a:97:9c:e0:
56:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3B:1E:B3:26:24:5A:60:43:03:28:76:3D:9C:0A:DE:46:EE:BB:91:51
X509v3 Authority Key Identifier:
keyid:2A:A2:4E:58:12:FC:C3:10:6B:9E:B0:AE:B0:0E:62:7B:A2:35:D0:56
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqJOWBL8wxBrnrCusA5ie6I10FY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/10346e-1504-43dd-ab28-66858bc8eb77/1/KqJOWBL8wxBrnrCusA5ie6I10FY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:4c:80:cd:61:fd:24:af:5a:a3:71:27:5d:08:15:5a:34:36:
f2:31:f9:09:a1:5c:a6:a0:a5:e9:5d:23:85:97:41:32:1a:b6:
7e:ab:04:21:3e:1f:c8:68:8a:e8:c3:29:c8:e3:19:d5:ea:82:
04:79:8b:bb:b3:29:5b:16:6f:e4:68:18:aa:ef:b6:c1:72:de:
a4:6f:32:c0:9d:bc:5d:68:68:9d:45:fe:b2:d7:27:bb:57:73:
bb:b0:9b:35:49:e5:0c:c6:25:50:dd:5c:3c:fc:05:3d:1f:18:
19:21:17:fe:2a:b1:d9:2c:db:97:25:2f:e3:0d:45:3e:57:65:
f0:3c:91:d7:90:23:3d:3a:df:b4:9e:1e:45:2b:2c:e3:65:f4:
61:39:93:2e:0c:33:b7:07:0e:d4:48:fc:1d:3e:44:cf:83:ba:
97:ff:39:18:61:c4:51:e3:66:2d:09:40:97:a0:cd:41:35:41:
33:b0:72:21:45:48:d7:33:96:42:3f:24:0f:95:84:29:eb:f0:
3d:f9:7a:38:8f:49:b3:db:68:fb:5f:a0:5e:01:cd:10:11:21:
09:16:72:8a:34:01:37:97:bd:5f:5a:15:d7:60:41:52:35:69:
bb:ea:bf:92:04:cb:b9:89:04:87:5e:58:a1:48:0f:d7:6c:0c:
55:bc:e6:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:17:29 2026 by rpki-client