Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: nsIHDmZCq8aRNVuYm8ZzWa+3NPllTXaEcAJfKoNAbr8=
Subject key identifier: D6:5F:A8:AA:22:E6:E4:B9:6E:AB:02:4D:EE:3D:96:6E:9E:F0:B3:06
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019D26CD273765BD976604143FB01495D44C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 0444
Signing time: Wed 25 Mar 2026 21:01:12 +0000
Manifest this update: Wed 25 Mar 2026 21:01:12 +0000
Manifest next update: Thu 26 Mar 2026 21:01:12 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: cMufzuNwZTFvvrzFPQ874A91oyUP4XoVJgVLtqI1MAk=)
2: p5OtBuJ_H7AvfUmYp0Nby5w6BSc.roa (hash: oRePnKuJGEJuRAGyqz3spXqznhrS2YOXLr+XXfpc3VY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:27:37:65:bd:97:66:04:14:3f:b0:14:95:d4:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Mar 25 21:01:12 2026 GMT
Not After : Mar 26 21:01:12 2026 GMT
Subject: CN=d65fa8aa22e6e4b96eab024dee3d966e9ef0b306
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:cc:a3:e7:21:fb:c0:8b:d7:f5:a6:77:76:d7:
de:e2:8c:d6:c8:07:f4:9a:a9:23:07:31:bd:ca:5d:
16:d6:54:23:29:a6:4c:84:6f:04:8b:4b:63:41:a7:
ea:b7:c0:f5:9a:45:1d:15:42:5e:32:20:c3:9b:be:
f4:38:f4:70:56:0b:0c:ad:20:9a:49:0e:de:5d:77:
4e:83:3a:62:ef:7b:e8:3a:5f:6d:ec:44:17:29:f1:
d4:a9:39:58:df:41:e4:d9:b6:47:9e:de:14:e4:bf:
66:15:7a:07:6c:68:c5:f4:7f:90:c5:5e:9c:7a:1a:
2e:03:67:56:a9:b5:f3:a8:a5:b0:02:87:fb:30:a7:
91:eb:51:a6:a7:f8:ad:47:da:8f:3f:52:c1:58:c2:
52:8f:ac:45:a0:75:75:21:89:9c:9f:3f:5c:02:f4:
ed:98:23:ed:a1:c7:d6:07:00:56:ff:1c:dd:91:2e:
7c:b6:70:eb:b5:72:ce:9c:0f:6e:3d:8d:e8:48:ac:
66:07:55:9b:c8:81:5e:8d:e9:dc:54:fb:5c:df:59:
0e:61:30:a5:dd:19:c3:29:67:ab:0a:21:b2:6e:a7:
00:63:b3:2d:e0:c4:81:e7:ba:4a:93:8d:7a:fe:13:
3c:45:a5:d4:79:37:db:33:be:0e:b4:04:fa:46:39:
76:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:5F:A8:AA:22:E6:E4:B9:6E:AB:02:4D:EE:3D:96:6E:9E:F0:B3:06
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:f2:7d:28:0e:d8:99:99:bf:b0:db:a6:34:c8:92:de:cc:4d:
88:97:47:78:51:63:42:f9:f5:b0:eb:89:d9:b5:c9:fe:35:fb:
cf:fb:99:1a:14:32:43:eb:b8:72:f4:30:ae:a2:a5:84:da:87:
2a:2c:c8:03:70:7c:93:91:1a:b5:1f:80:34:2a:78:d8:e0:11:
68:3c:a1:88:a9:1b:d1:36:b3:6e:35:f7:a2:31:24:7d:8d:73:
77:01:3a:25:ac:37:fc:bb:0e:71:6a:b4:2b:a1:6a:d3:65:b0:
0d:b4:da:cd:c4:fd:cf:af:7e:81:f5:50:0f:b6:a3:44:5c:1d:
6d:97:a8:8e:ca:e2:65:bb:4f:aa:e3:de:e0:34:50:8b:aa:4c:
f9:ae:1d:15:de:e8:92:6f:2b:8b:ae:b5:92:36:f8:a9:85:29:
9e:62:1b:11:60:43:e5:98:55:29:4f:02:e7:3e:11:24:49:4d:
39:36:44:97:a4:75:ff:dd:10:05:49:27:bc:38:6a:30:ed:86:
b4:a7:84:3c:1d:28:cf:ba:3e:c9:68:6f:2e:01:e5:cf:ca:f5:
52:a1:39:05:fc:2f:f0:fe:78:df:9a:e8:af:62:ce:34:b8:f0:
48:81:35:aa:a1:4e:22:72:50:1d:75:db:a6:01:ab:37:88:89:
53:01:ea:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mzSc3Zb2XZgQUP7AUldRMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODA0NzRhOTYxNjFkZGUyOTQyY2ZiOWYxODU2YzJmZmM4
ODA5MDQwHhcNMjYwMzI1MjEwMTEyWhcNMjYwMzI2MjEwMTEyWjAzMTEwLwYDVQQD
EyhkNjVmYThhYTIyZTZlNGI5NmVhYjAyNGRlZTNkOTY2ZTllZjBiMzA2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt8yj5yH7wIvX9aZ3dtfe4ozWyAf0
mqkjBzG9yl0W1lQjKaZMhG8Ei0tjQafqt8D1mkUdFUJeMiDDm770OPRwVgsMrSCa
SQ7eXXdOgzpi73voOl9t7EQXKfHUqTlY30Hk2bZHnt4U5L9mFXoHbGjF9H+QxV6c
ehouA2dWqbXzqKWwAof7MKeR61Gmp/itR9qPP1LBWMJSj6xFoHV1IYmcnz9cAvTt
mCPtocfWBwBW/xzdkS58tnDrtXLOnA9uPY3oSKxmB1WbyIFejencVPtc31kOYTCl
3RnDKWerCiGybqcAY7Mt4MSB57pKk416/hM8RaXUeTfbM74OtAT6Rjl2CQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNZfqKoi5uS5bqsCTe49lm6e8LMGMB8GA1UdIwQY
MBaAFCiAR0qWFh3eKULPufGFbC/8iAkEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAt
NzQ2MWE1NmNlOTVlLzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYS82OTNjYzMtYWI3NS00NGM2LWE3NDAtNzQ2MWE1NmNlOTVl
LzEvS0lCSFNwWVdIZDRwUXMtNThZVnNMX3lJQ1FRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOPJ9KA7Y
mZm/sNumNMiS3sxNiJdHeFFjQvn1sOuJ2bXJ/jX7z/uZGhQyQ+u4cvQwrqKlhNqH
KizIA3B8k5EatR+ANCp42OARaDyhiKkb0TazbjX3ojEkfY1zdwE6Jaw3/LsOcWq0
K6Fq02WwDbTazcT9z69+gfVQD7ajRFwdbZeojsriZbtPquPe4DRQi6pM+a4dFd7o
km8ri661kjb4qYUpnmIbEWBD5ZhVKU8C5z4RJElNOTZEl6R1/90QBUknvDhqMO2G
tKeEPB0oz7o+yWhvLgHlz8r1UqE5Bfwv8P5435ror2LONLjwSIE1qqFOInJQHXXb
pgGrN4iJUwHqGg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 08:26:21 2026 by rpki-client