Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
File: KcmwQBb28CGDMHwX32MKAonsW7U.mft (raw, json)
Hash identifier: gmqfIBJYvihTcDikoIW9HusW892vPA5oLXtxOS5eNvE=
Subject key identifier: 23:25:88:44:1A:82:99:F2:AA:79:F9:CA:F3:13:95:92:82:CF:10:BF
Authority key identifier: 29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
Certificate issuer: /CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Certificate serial: 019D2704AA4E7FCAE1E6E29C9480774D8173
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
Manifest number: 10E8
Signing time: Wed 25 Mar 2026 22:01:50 +0000
Manifest this update: Wed 25 Mar 2026 22:01:50 +0000
Manifest next update: Thu 26 Mar 2026 22:01:50 +0000
Files and hashes: 1: KcmwQBb28CGDMHwX32MKAonsW7U.crl (hash: jVXA9dm8TRaytPnPa/rmO9rSG3qc5ISG93jfkntGbN0=)
2: hTiJ6cCS_TiS4eI7qxisMIha6WA.roa (hash: RYMk/98nEg7OxXi5y6LpcIy05kfPWnp4XSK+7SVu8ys=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 22:01:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:04:aa:4e:7f:ca:e1:e6:e2:9c:94:80:77:4d:81:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29c9b04016f6f02183307c17df630a0289ec5bb5
Validity
Not Before: Mar 25 22:01:50 2026 GMT
Not After : Mar 26 22:01:50 2026 GMT
Subject: CN=232588441a8299f2aa79f9caf313959282cf10bf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:c9:08:4d:ab:c0:b6:ef:e5:36:cf:17:8f:f4:
8a:a9:81:fc:81:a2:fd:5c:cc:86:f9:1b:fc:84:33:
b7:ff:87:56:37:ad:36:e6:68:0d:18:6d:f1:58:b3:
3b:d3:e8:6f:e5:a9:0b:7c:81:ed:95:d1:d2:4f:14:
b1:5a:e4:b8:8e:5c:73:d5:11:59:30:1c:e9:7f:35:
6e:a5:50:98:1b:69:34:3a:58:e5:29:1f:2b:1a:5c:
5b:27:cf:5c:f4:60:8f:55:9c:97:e0:ef:c6:3c:b3:
f9:2e:33:14:b1:f9:f0:b3:87:be:d4:4a:99:af:1c:
10:be:0f:19:12:41:ab:66:72:d6:bc:27:41:87:94:
80:cb:f8:46:24:2d:f6:cd:0d:95:ee:8a:2b:21:93:
21:09:c6:af:a4:67:bb:fa:18:06:05:6a:7e:d6:8b:
68:12:ad:07:77:06:73:8d:e5:89:04:9f:aa:69:09:
5e:e8:d3:ab:c6:20:0e:ba:71:11:04:b5:0c:8d:c0:
a5:2f:fa:b8:a5:f2:1f:fa:66:71:ea:b8:4b:ae:41:
62:45:d6:b0:67:92:9f:a4:aa:da:b9:c0:fc:2b:cc:
19:02:59:e9:e8:99:92:85:56:22:b8:9c:3b:d3:c5:
22:91:bf:79:3a:5e:a9:2c:40:7d:3b:4b:fa:53:a8:
aa:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:25:88:44:1A:82:99:F2:AA:79:F9:CA:F3:13:95:92:82:CF:10:BF
X509v3 Authority Key Identifier:
keyid:29:C9:B0:40:16:F6:F0:21:83:30:7C:17:DF:63:0A:02:89:EC:5B:B5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KcmwQBb28CGDMHwX32MKAonsW7U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/551847-332d-4e27-b47a-1d591bbd4060/1/KcmwQBb28CGDMHwX32MKAonsW7U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:09:02:a8:f2:06:a9:cd:f4:27:92:e9:bc:b6:7d:a1:6b:28:
01:15:97:ef:89:15:64:af:96:a3:4e:00:ac:31:0e:ce:30:c7:
d3:ab:08:2e:96:c3:6c:0c:3c:e4:14:0d:f8:ac:15:84:7c:3b:
1a:51:34:dc:c1:8a:a5:30:b9:ce:be:4a:b9:a8:13:cb:b3:46:
a7:d1:3b:54:ab:a1:37:b7:5b:e1:4f:21:e0:63:bb:48:69:8d:
ee:3b:99:b3:1f:74:a3:23:28:cd:14:0b:6e:fc:0e:ee:c6:f0:
3a:a3:14:cd:d8:8d:95:12:92:79:e0:3e:90:14:88:e2:23:64:
32:a5:a7:9d:69:ac:12:89:e2:7b:1b:98:19:fc:dc:d5:e9:22:
58:09:c7:57:a6:2e:21:61:fc:a7:d6:be:66:5e:ee:d8:37:71:
93:2f:57:97:8b:03:f1:bf:a0:1b:25:02:3a:5d:7e:a6:46:a7:
bf:70:af:73:6e:20:98:f9:7b:38:ae:db:e2:30:29:f6:27:67:
22:15:4f:15:45:32:4a:cd:7e:65:4c:bb:8f:59:e9:10:55:90:
80:2c:8a:c3:c1:4d:96:1a:9d:7a:9d:bb:0e:e0:d3:87:75:43:
38:54:f1:87:98:c6:15:52:a1:56:2d:a4:57:65:02:6d:9f:00:
5e:6f:8a:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 05:00:29 2026 by rpki-client