Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: NnBCZL7rKAwe3dLW6EE16uJiIBegGgMJmYn/xAref7I=
Subject key identifier: 95:68:8B:53:59:1C:FA:5A:01:F4:88:A6:89:11:7D:6F:0A:03:97:59
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 019D27A8654656653B56DA69EBC071552421
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 189B
Signing time: Thu 26 Mar 2026 01:00:40 +0000
Manifest this update: Thu 26 Mar 2026 01:00:40 +0000
Manifest next update: Fri 27 Mar 2026 01:00:40 +0000
Files and hashes: 1: 5CrZJSgU3umnhBpv3SBW8GVEgqE.roa (hash: 2gixcHV7KBq6bvuQpRe8OX0ebav7J2q4kd7P6HGr740=)
2: 66eo3bJdi9RGbEdDXS4tD5cqq_o.roa (hash: 5t8peN4WCQBgYdxTrPyY0DXm3aBeHyQsSo4GmYIKBxg=)
3: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: 5+I4xP9YKk+D85HZP/EWBxgWqYrNn8yrJnJyfkHxtME=)
4: K_ZSiUHd1rB1pcqdi19och0DGOM.roa (hash: 8mJ7F1VxOqtPJAA3HEixFXJNyvdHfHViy/fRZXdsxig=)
5: QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa (hash: umOLljeZUfmplY2DajwQdgANFJvFzfTBHi6UK1dXAg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a8:65:46:56:65:3b:56:da:69:eb:c0:71:55:24:21
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Mar 26 01:00:40 2026 GMT
Not After : Mar 27 01:00:40 2026 GMT
Subject: CN=95688b53591cfa5a01f488a689117d6f0a039759
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:20:37:10:c4:03:f1:d9:34:e9:e4:d8:05:47:
e2:04:2d:e4:f4:65:42:ca:50:4f:70:99:38:fe:9c:
61:68:8b:b3:fa:cb:ba:20:62:9a:44:3a:19:d7:60:
0d:27:73:d6:c5:0d:3f:47:d3:d4:bc:cd:91:f9:1e:
76:97:01:cd:da:eb:c2:1e:e4:7e:19:9a:2c:ec:75:
30:73:02:82:85:8a:96:86:dc:2b:d0:01:bc:04:34:
dd:33:f7:68:28:7d:12:a6:8d:ed:00:cb:99:47:ea:
1f:f8:18:b1:d7:89:e4:f7:e8:20:5c:41:ba:9c:b2:
70:8e:db:98:3c:fd:30:90:b9:28:a1:1d:8b:bf:47:
ce:90:ab:bb:c0:61:16:36:f6:1c:51:cb:31:73:69:
bc:36:1a:43:13:00:0a:49:fe:56:34:43:18:0b:93:
2c:cc:ec:b8:56:e6:55:31:e6:fb:4c:2f:0f:55:b9:
3f:1f:ce:e3:d8:f2:c2:48:b1:62:f0:f6:c9:86:ba:
d5:17:8a:f1:9b:af:97:3e:f3:e5:6f:c4:4d:de:dc:
c8:9d:b2:02:99:30:26:da:ab:f7:86:8e:5c:84:12:
df:1f:90:cf:21:02:00:d5:f7:4e:f5:1c:d9:50:64:
a7:03:21:51:25:bd:9a:d8:bd:06:54:30:1a:33:18:
07:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
95:68:8B:53:59:1C:FA:5A:01:F4:88:A6:89:11:7D:6F:0A:03:97:59
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:24:9d:ad:b8:46:a4:70:ae:e5:de:cd:ca:41:88:9f:13:6e:
38:ff:a2:6d:b9:1e:a7:ca:76:1a:33:1c:ae:50:a0:41:5d:ac:
85:39:1e:2a:36:97:f2:97:f6:f6:70:41:8a:5a:dc:14:57:6a:
cc:5e:f5:62:54:22:47:aa:63:cb:7d:1a:3b:5e:1f:28:76:8c:
2d:97:35:6f:e1:70:f8:28:b5:ae:b5:7e:98:9d:e3:81:e4:e4:
cb:ef:b6:74:07:9d:bf:30:80:d3:54:47:03:11:df:34:c1:84:
d7:02:14:03:98:eb:59:3c:7f:2e:cd:91:db:96:a9:d9:55:95:
0b:8f:9f:72:1e:f5:b2:5d:d6:33:d2:05:46:65:ca:6f:06:6e:
6d:27:ad:ce:82:d9:b0:ee:cc:f5:5f:c6:de:e5:fe:cf:87:d0:
e9:5f:0b:a0:3c:ba:6e:33:8c:7b:9d:27:c5:48:33:29:e6:53:
b8:fa:c2:d8:b7:de:0a:ea:e8:82:4a:02:2e:14:5b:05:02:4a:
b4:fd:e8:d7:94:2b:e8:c4:ba:9c:64:8a:88:ef:76:33:cd:33:
95:d5:c6:51:27:74:25:39:68:fc:ae:0e:ed:4d:1b:13:4d:0d:
05:f2:1b:de:df:56:6e:13:92:96:b4:bf:e8:6b:b7:53:21:c0:
be:4b:62:43
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 06:16:54 2026 by rpki-client