Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
File: KfzfdinE4A6QbxQ19EndEJ9BC2w.mft (raw, json)
Hash identifier: OQYyI2qFgduMwKcKgALeW8yTAkNi2/DKuoDjAqARPsk=
Subject key identifier: CF:9D:03:9E:6B:6D:98:34:42:2C:4C:A1:CC:AB:2E:E1:77:6D:CC:14
Authority key identifier: 29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
Certificate issuer: /CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Certificate serial: 019D2960A63427D5967764DE125D36A3D25C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
Manifest number: 1565
Signing time: Thu 26 Mar 2026 09:01:32 +0000
Manifest this update: Thu 26 Mar 2026 09:01:32 +0000
Manifest next update: Fri 27 Mar 2026 09:01:32 +0000
Files and hashes: 1: E8wnMkiSbVSzBboh28_7QoxLc2I.roa (hash: zCR5rbo9HIv2yKajw50w0oXIYg6lZF+5ym6K0CZI1dU=)
2: KfzfdinE4A6QbxQ19EndEJ9BC2w.crl (hash: cqN+tDj9qBoEenprpj7FK6F5zSPKZGSvt64BVwLBiCU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:60:a6:34:27:d5:96:77:64:de:12:5d:36:a3:d2:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29fcdf7629c4e00e906f1435f449dd109f410b6c
Validity
Not Before: Mar 26 09:01:32 2026 GMT
Not After : Mar 27 09:01:32 2026 GMT
Subject: CN=cf9d039e6b6d9834422c4ca1ccab2ee1776dcc14
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:a8:38:9d:3c:3c:47:35:7b:17:6d:b7:ca:b6:
eb:7e:5e:e4:8a:65:af:1a:71:86:69:b6:74:c2:5d:
70:15:0f:e8:f8:e5:5e:e4:ab:7a:f6:30:d5:1a:88:
b4:15:d9:9b:7e:a3:3d:f8:2f:22:1b:28:bc:c2:4e:
94:3f:08:27:72:af:39:f0:f9:46:c9:75:b3:3f:b7:
e6:1b:82:a2:60:bc:20:49:2a:5a:16:65:dc:16:87:
5d:b6:cf:ed:68:95:5c:0a:60:39:a0:9e:85:b7:23:
62:75:de:33:29:a6:d7:e1:02:67:e0:36:5d:90:43:
b4:30:2b:b8:d9:25:78:7d:f0:7f:c2:89:2a:d4:79:
3a:16:fc:f6:0c:a3:70:90:9d:69:96:25:77:1a:18:
a7:47:94:f1:89:9f:6f:9e:ec:fd:39:46:7d:52:00:
8d:ad:43:b6:e4:45:7c:0b:06:6a:26:21:b9:6b:af:
50:39:3c:41:e6:13:0e:37:b3:db:7e:62:d8:73:1a:
76:69:ef:b0:80:d8:95:eb:f2:b7:26:7d:b2:be:cc:
e0:33:17:b0:99:90:8a:c8:c2:fe:17:c7:9c:52:f5:
f3:0a:3f:84:dc:07:1e:42:cc:7e:11:ba:a3:e5:67:
0d:65:aa:b7:e0:8c:cc:af:d7:e2:a9:43:03:4f:5e:
9a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:9D:03:9E:6B:6D:98:34:42:2C:4C:A1:CC:AB:2E:E1:77:6D:CC:14
X509v3 Authority Key Identifier:
keyid:29:FC:DF:76:29:C4:E0:0E:90:6F:14:35:F4:49:DD:10:9F:41:0B:6C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfzfdinE4A6QbxQ19EndEJ9BC2w.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/d47be8-2ff0-4c93-b912-905e763f048d/1/KfzfdinE4A6QbxQ19EndEJ9BC2w.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
80:2e:13:4a:b2:79:d8:84:0b:ca:00:2e:56:97:5a:9c:89:a0:
f1:10:cf:22:82:5d:31:04:d8:78:9b:21:09:33:4f:a3:1e:38:
96:2c:49:c3:5d:da:0a:fb:18:aa:f0:38:ec:e3:81:0c:33:38:
34:2f:fd:05:bd:30:96:f5:d6:48:b3:6a:ba:c5:be:ee:0c:f6:
20:e7:a1:bb:6d:a4:db:0a:55:d4:f9:17:81:8e:53:83:8f:22:
bf:69:42:19:c8:b1:fd:47:27:2b:64:d3:a3:f5:35:cc:30:f3:
89:35:83:79:82:88:ac:a2:a5:21:1a:f0:38:26:ab:6e:48:b3:
a8:6f:81:11:a7:64:d5:1a:8c:9a:07:ab:e2:da:fd:2d:af:de:
5f:2d:2f:c2:08:62:b4:c5:f0:4b:04:ce:51:4e:be:f2:f2:2b:
68:da:07:bd:b4:42:3e:92:95:b5:87:90:ac:ba:59:35:de:54:
34:f5:5e:de:09:c7:c7:13:73:a0:d8:8d:dd:2f:94:7a:79:3b:
e9:18:df:39:90:f1:50:44:ee:af:a9:ae:bb:ca:54:4e:0b:ec:
79:97:13:b7:1b:ca:dd:f8:39:40:e4:6c:93:88:86:58:08:e8:
1f:ba:c9:5a:92:c7:78:cc:da:3a:42:7d:c0:7e:b4:b6:02:af:
28:e4:4e:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 12:59:57 2026 by rpki-client