Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
File: KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft (raw, json)
Hash identifier: 1F0bXaeMYqHEy62mjHX0MwEOdJtdJMc8TENh1YvWDmw=
Subject key identifier: 99:EF:3B:96:37:A8:E0:90:A9:B4:C1:93:C2:3E:98:FB:8F:5E:F6:C2
Authority key identifier: 2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
Certificate issuer: /CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Certificate serial: 019D27DFEDD260F10EED1078F0546484D119
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
Manifest number: 0856
Signing time: Thu 26 Mar 2026 02:01:19 +0000
Manifest this update: Thu 26 Mar 2026 02:01:19 +0000
Manifest next update: Fri 27 Mar 2026 02:01:19 +0000
Files and hashes: 1: KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl (hash: KWf28c/4+YITtkLTxYBL0Rgqxq3BkpgBg3VZWSV0agA=)
2: m6f0KblgDdn2oDmiijUoJd1_umI.roa (hash: QlWp9v6ktsMkYvji1hdedyPM7rbbm0wOY1KKEhtnmFw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:df:ed:d2:60:f1:0e:ed:10:78:f0:54:64:84:d1:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b1707889794cea0622bd4921d6bdbdd56ef0b06
Validity
Not Before: Mar 26 02:01:19 2026 GMT
Not After : Mar 27 02:01:19 2026 GMT
Subject: CN=99ef3b9637a8e090a9b4c193c23e98fb8f5ef6c2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:60:39:a7:ac:e6:69:1c:3b:f7:87:68:c1:a1:
2d:db:49:b0:d5:d1:b1:f4:0a:67:bc:f4:7d:d6:39:
9a:d4:3b:7d:11:ef:ed:4f:7e:13:59:67:ca:60:d5:
a9:b2:ec:a7:2b:ed:52:11:d8:17:5f:fc:12:50:05:
9a:33:a4:fb:a6:f6:a1:fa:84:cb:0b:ba:c2:f3:3b:
65:ee:e9:f0:00:10:91:d0:92:a7:7a:13:e5:78:0b:
35:e7:64:ee:d6:6e:a0:03:42:40:4e:da:f1:ba:42:
d8:b1:56:8b:00:63:5d:6e:4d:b2:7b:b4:d3:e4:93:
7b:ad:8e:f0:99:21:01:78:43:bb:29:e7:54:45:88:
dd:87:b5:9b:a9:2d:2b:c9:0e:33:3e:16:37:11:73:
68:99:40:34:18:a8:7b:d6:fa:68:60:c3:20:ed:fe:
12:28:fa:cb:8c:b6:f2:03:5c:f4:6e:45:be:9b:84:
45:83:3b:75:99:dc:a3:e4:3c:33:50:42:21:e9:41:
a8:dd:a0:93:95:1f:3e:c1:8c:7a:49:77:62:7e:cc:
f8:a7:ec:1d:ab:01:fc:97:2d:79:c9:66:e2:77:37:
f7:49:f5:04:12:c6:e7:cb:70:37:47:08:f9:4c:9f:
79:d8:02:cd:b7:4d:63:0e:58:04:34:0c:7f:c6:8a:
56:ed
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
99:EF:3B:96:37:A8:E0:90:A9:B4:C1:93:C2:3E:98:FB:8F:5E:F6:C2
X509v3 Authority Key Identifier:
keyid:2B:17:07:88:97:94:CE:A0:62:2B:D4:92:1D:6B:DB:DD:56:EF:0B:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KxcHiJeUzqBiK9SSHWvb3VbvCwY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bacc77-df30-4941-be33-dcb5b9e88e9a/1/KxcHiJeUzqBiK9SSHWvb3VbvCwY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:38:93:44:d8:62:81:a1:91:7b:1a:bf:4f:97:79:03:94:0b:
61:bd:6a:83:9c:c1:4d:8c:31:21:c6:26:26:23:6a:e5:1f:82:
6e:a7:1e:ef:eb:b4:7d:ce:36:e1:3f:f5:f0:46:a9:5e:e6:4c:
d3:dc:07:b4:99:3f:70:a7:78:a7:4d:3a:7e:bc:cf:de:c7:56:
67:ae:85:0c:72:67:90:3d:45:76:2b:61:38:eb:26:84:ce:dd:
38:63:cb:26:f6:93:f5:a3:49:be:19:b3:1e:8b:c8:fa:0e:e7:
3d:11:5d:0c:00:80:46:d6:95:96:3d:83:ae:73:10:79:51:b4:
d0:0a:21:13:74:5e:78:21:11:4c:a5:31:7e:83:97:01:cc:29:
5d:be:c8:f1:35:1f:3f:94:f3:af:b8:a3:eb:8c:29:46:56:fd:
4a:70:81:2a:b3:c3:d5:c5:3d:47:5c:76:19:5b:4f:8f:46:20:
6a:b8:d2:9c:1a:3c:10:40:06:0c:75:b0:8b:3a:73:a6:00:e8:
47:b0:9f:e2:ba:c5:88:37:75:96:ba:76:df:02:46:b3:64:14:
81:ee:df:7b:2f:2b:29:4c:af:c8:a3:fb:5d:0a:53:99:b9:1a:
43:0c:a4:35:42:1d:65:ee:48:51:19:06:a1:8a:fb:dc:eb:dc:
ba:99:b7:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 09:25:38 2026 by rpki-client