Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
File: KhfSVHdMl6nGhansXSTy_GlomQg.mft (raw, json)
Hash identifier: A8QevwHLTFqONod6D3285J6/tWxumlnuzj9CQ+PWwCo=
Subject key identifier: 90:3C:15:87:57:F9:5C:4F:0C:D5:D4:34:CE:20:AE:0F:50:5D:84:F4
Authority key identifier: 2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
Certificate issuer: /CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Certificate serial: 019D26964E9E9B9D904DFF3E94A5EA400B68
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
Manifest number: 15C2
Signing time: Wed 25 Mar 2026 20:01:17 +0000
Manifest this update: Wed 25 Mar 2026 20:01:17 +0000
Manifest next update: Thu 26 Mar 2026 20:01:17 +0000
Files and hashes: 1: 1-UeNT_mEXVZRgA_7glg9OO4Sjtw.roa (hash: 1z29a91IWJoK+mNlT9BWeHq46/FmmyPlWPOT1hR/7F8=)
2: KhfSVHdMl6nGhansXSTy_GlomQg.crl (hash: w8gveaamZcbmHEUdD8OufH3IdPiQQzxbibjpaj4r/s8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:4e:9e:9b:9d:90:4d:ff:3e:94:a5:ea:40:0b:68
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a17d254774c97a9c685a9ec5d24f2fc69689908
Validity
Not Before: Mar 25 20:01:17 2026 GMT
Not After : Mar 26 20:01:17 2026 GMT
Subject: CN=903c158757f95c4f0cd5d434ce20ae0f505d84f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ff:4b:4f:80:f5:b3:2b:83:34:f3:14:f2:90:49:
12:9e:48:6b:0b:73:79:76:3e:e0:a3:c0:8c:cd:91:
e5:48:d2:88:9d:eb:44:4d:3b:99:50:3a:c5:7e:b9:
c8:b6:a7:b7:97:5e:23:e8:ff:f7:0d:e7:a9:db:c2:
c6:54:a9:68:22:d4:de:e8:4e:22:d2:53:65:ef:69:
1f:44:e0:1e:bf:65:41:ea:4c:3d:17:60:20:a0:5b:
0f:e4:5f:1a:10:3e:61:8f:ca:2b:5b:6d:3d:8e:eb:
30:f1:48:48:be:ac:9b:ec:81:bb:cb:23:dd:b7:b1:
b5:a5:c5:81:94:3e:6a:d0:98:d8:e5:f2:48:ac:b1:
49:07:ff:29:08:d7:0e:cb:37:4a:5e:a1:24:47:c3:
fe:33:43:5a:a5:4d:01:e5:0f:ba:93:d1:31:3b:b5:
0d:ea:24:02:fc:d9:9b:d0:d9:38:7e:3e:e3:a1:af:
8b:42:83:10:43:ea:e4:60:c4:98:83:79:24:90:35:
83:8c:01:f7:9b:e5:3f:1d:4e:6f:f0:8c:b1:0d:6c:
56:33:f5:ed:44:97:55:eb:77:60:a0:91:c7:a1:ac:
bd:ff:d7:2f:05:81:e7:52:b8:15:3f:1a:f6:37:f2:
6c:cd:e0:5c:e9:32:71:3c:3e:bf:28:fd:c0:3c:a0:
93:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:3C:15:87:57:F9:5C:4F:0C:D5:D4:34:CE:20:AE:0F:50:5D:84:F4
X509v3 Authority Key Identifier:
keyid:2A:17:D2:54:77:4C:97:A9:C6:85:A9:EC:5D:24:F2:FC:69:68:99:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KhfSVHdMl6nGhansXSTy_GlomQg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/66a439-cf33-47c5-92ab-80b5118abaf6/1/KhfSVHdMl6nGhansXSTy_GlomQg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:48:94:a7:f0:8a:a9:c8:c8:b3:49:50:07:24:0f:c1:19:a1:
87:0d:64:42:4b:cc:eb:32:55:c4:2b:43:85:f2:34:9e:2c:14:
f8:35:7a:ac:ec:e7:fe:cc:f1:bf:23:a0:11:40:a2:96:3c:98:
06:aa:0c:f3:bf:11:41:34:b5:a1:27:0f:96:f9:77:cc:be:0a:
6f:3d:2b:62:b9:1d:77:b2:ef:a3:6b:d8:d1:cf:9c:25:59:69:
f2:8b:f6:b4:2f:9c:4a:5c:1d:98:e0:c7:09:9b:47:02:65:a4:
89:56:d6:a9:42:3d:13:60:00:04:51:51:03:0d:40:7c:3b:9d:
b5:eb:73:c4:5e:27:20:ef:76:41:21:47:ff:84:0d:48:f2:b8:
0e:51:b4:f0:ad:92:45:e9:43:17:af:2f:b3:09:fb:1a:ae:ad:
9a:15:9c:73:a6:c6:92:bc:11:d2:29:3d:c0:5e:70:6a:26:58:
8c:36:f5:3b:bc:57:d2:af:a7:07:98:ab:fe:1f:e0:7f:2e:6b:
ce:45:f1:16:12:5e:0c:a0:1a:79:bd:5c:58:2e:a6:ab:c5:64:
67:d0:5c:f0:d6:af:86:47:b2:df:21:05:49:c1:cd:48:a7:30:
a9:52:1a:76:64:99:94:32:4b:9d:67:35:ae:cc:13:5b:25:f2:
c3:ed:63:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:36:39 2026 by rpki-client