Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json)
Hash identifier: VmpxRuGsYuVxVl1jCXjA8pEAyJRadKqAohlSNWahS/c=
Subject key identifier: 3F:8C:72:26:B8:D2:03:11:8F:AB:51:E2:AE:2A:C9:CE:7C:D4:96:72
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 019D26961CA4DFA0E2EB81B6F17353130618
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
Manifest number: 0DE7
Signing time: Wed 25 Mar 2026 20:01:04 +0000
Manifest this update: Wed 25 Mar 2026 20:01:04 +0000
Manifest next update: Thu 26 Mar 2026 20:01:04 +0000
Files and hashes: 1: 5pnLPx_2hpy3VygTZwAGCHra7kE.roa (hash: 1oHSHq2YY2wBUKVcldVeO85+GN6kBhjSJ3cQgz8RWLo=)
2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: wqwZtH6+b8dGoa/jd2MlNdj7CMvPDrTuALoqeIR/KPY=)
3: KnbEX4UkCWaV7O0wuCkr7A4YupA.roa (hash: LLlXw5GN0fkhrRlbhrlywwISvztA4DkGKjffqRJI8NQ=)
4: ZlWEEzGYFVqbln14VFTl7vY0xlM.roa (hash: 4+sTiTIEM7Q8B0+aFICyPTm4dchReZ/Z4NBsp9md7hs=)
5: hARTp8Mibx8WODEuOIUHpvobncw.roa (hash: xaYjb6X7y2C4MO+aFX5sY8YM6es27SbRjICMp6w4VYw=)
6: yUO-bSyekqEzkSiFcTb4DbKNZ_o.roa (hash: Yz2sZPO7RTS7G2x7CfUC5DUG1B3ygbMjzbaefkWF+54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:1c:a4:df:a0:e2:eb:81:b6:f1:73:53:13:06:18
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Mar 25 20:01:04 2026 GMT
Not After : Mar 26 20:01:04 2026 GMT
Subject: CN=3f8c7226b8d203118fab51e2ae2ac9ce7cd49672
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:8e:3e:cf:5b:25:3d:0c:1f:08:ed:f3:1d:f5:
cb:b0:83:d6:4d:00:86:4f:f7:c7:bb:05:d3:ff:40:
5c:26:83:66:2c:ec:7a:06:7a:a7:77:27:55:4f:db:
eb:d6:c1:a8:e7:9c:ea:49:45:6f:95:39:60:d2:a2:
72:c0:62:8a:cd:b8:34:ce:9f:0c:00:84:6c:2d:78:
5f:f4:7a:7e:38:18:59:98:f7:6b:65:a4:d1:e5:df:
e0:6a:cc:3b:1c:a0:85:97:fc:bd:1b:5a:de:8d:d7:
2c:f2:33:3c:19:97:e9:11:1d:4e:7d:18:53:79:62:
66:51:e3:aa:3a:7a:e2:a1:16:d2:b1:18:7b:d8:b6:
61:10:33:f4:ed:e7:15:5e:d0:8e:e0:c2:37:45:64:
c7:7e:44:3b:21:a6:e6:d7:e5:b4:ba:0e:78:93:19:
b8:8d:07:96:d2:28:d6:29:76:c6:2a:5f:7c:8f:7e:
2f:57:ce:07:a0:71:20:cf:59:49:3d:85:ab:f4:92:
27:a2:8d:38:9d:c7:72:17:8e:74:03:1c:ea:e7:5b:
47:2b:de:f7:a2:87:3b:f6:e5:44:e4:54:fe:b0:51:
a5:f5:a7:ab:87:f4:3a:3c:c6:f5:98:fe:69:e9:5c:
fc:09:be:b4:5a:a0:0b:8a:1b:6c:e7:65:d0:79:ad:
c3:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:8C:72:26:B8:D2:03:11:8F:AB:51:E2:AE:2A:C9:CE:7C:D4:96:72
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5e:1c:99:53:e0:07:ec:c1:c5:d1:17:9b:5a:b3:22:60:09:6b:
64:50:8c:3d:55:ca:04:71:69:d2:40:4b:8d:15:c1:6b:51:a2:
90:8a:46:54:12:0b:b0:a0:65:96:ef:4a:2f:2d:7a:d7:47:d8:
63:0a:b2:e0:f5:bf:e9:f4:f3:cf:d2:c2:f9:85:ad:35:97:28:
5e:2b:65:c2:12:7d:39:70:2e:4b:6b:5c:e1:d3:44:da:82:dd:
4b:91:cd:b8:5a:6b:14:a3:ba:eb:30:22:3a:06:0c:af:27:61:
d6:61:e2:e6:72:cf:39:da:c0:73:b7:10:e0:9d:1c:36:9c:fa:
50:48:ec:fe:7c:64:2f:41:4c:4e:2d:d3:97:bd:77:c5:e6:68:
ea:1c:34:70:8a:c4:f1:ec:51:12:f8:d0:bd:f1:11:0f:ea:99:
e8:64:8f:e0:ae:63:a0:24:b0:ac:7e:4c:bf:cb:35:d3:ab:f4:
59:ac:95:89:93:18:11:81:ff:86:19:68:8e:f4:c9:a5:24:b2:
d8:4e:94:aa:2c:41:8c:30:73:f2:d0:86:71:aa:2d:d1:99:ed:
b2:11:07:ad:95:1c:6c:c6:fe:26:a3:de:ca:33:ce:11:33:0e:
71:d8:63:28:de:aa:0a:cf:b1:cc:cb:a7:d6:1d:9b:fd:bf:85:
65:03:bc:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:17:32 2026 by rpki-client