Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json)
Hash identifier: L/1RsfhEy+VnQSG8/zbiSX1lSLVG0FTtITF8yIbzIZ8=
Subject key identifier: 9D:C2:07:F0:B7:19:45:31:56:66:CD:8B:30:9F:D5:78:AC:3F:7E:BF
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 019E205AB9D97EA905F20F9F2388166597D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
Manifest number: 0D98
Signing time: Wed 13 May 2026 08:01:17 +0000
Manifest this update: Wed 13 May 2026 08:01:17 +0000
Manifest next update: Thu 14 May 2026 08:01:17 +0000
Files and hashes: 1: 8VSXxcCzy1RczpkkhVuNiNqCitk.roa (hash: nHCP0IVV9N4g1kQbqZXT/navSl3Gd+BXXPdTIW2ZhBA=)
2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: dU4yI0uYyu7AOACUVJ5aRT3W7ADsPuQi1wL5mAYToYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 06:33:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:20:5a:b9:d9:7e:a9:05:f2:0f:9f:23:88:16:65:97:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: May 13 08:01:17 2026 GMT
Not After : May 14 08:01:17 2026 GMT
Subject: CN=9dc207f0b71945315666cd8b309fd578ac3f7ebf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:7b:6c:ed:9b:f3:b1:36:60:d1:3b:8b:27:85:
2f:93:50:50:45:f6:0a:d1:ec:f5:ec:dd:0f:6e:8c:
43:a9:00:30:47:58:a3:62:0c:72:67:b7:e4:93:1c:
81:6c:2c:1a:f8:e6:8f:da:0f:0c:59:77:10:52:53:
40:c4:d1:fc:a2:a3:13:27:c0:19:a0:62:6d:7c:fd:
87:80:ee:ae:50:14:94:0c:0c:3c:d1:ff:33:c5:ed:
e2:47:0d:a0:e5:d2:8d:bd:23:ae:de:84:0d:cf:80:
60:ab:22:74:53:3d:4f:b3:81:ef:bf:f7:8d:f2:94:
7c:14:27:83:ad:3e:b3:79:ce:93:74:03:ae:4b:ca:
cf:b9:d1:ac:8e:df:87:67:27:57:35:a8:4d:8c:c8:
53:43:e8:83:a3:7f:f7:f1:a4:15:88:17:a7:82:02:
b8:47:47:ef:55:5f:91:98:46:3e:2a:7a:3f:2e:59:
4e:2c:7f:b9:66:ed:27:a4:22:f8:23:80:a9:32:63:
4a:7e:18:ec:ac:89:09:87:ab:ae:f3:08:a6:63:eb:
00:d7:14:bd:63:3c:98:f3:78:c5:03:ef:f8:a5:61:
8c:28:38:32:53:58:40:bc:b6:75:f6:55:4a:c4:c2:
17:7d:75:df:a7:de:06:75:5e:37:59:9f:01:4c:69:
56:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:C2:07:F0:B7:19:45:31:56:66:CD:8B:30:9F:D5:78:AC:3F:7E:BF
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:3e:f1:93:58:e7:a1:4f:cf:20:f9:1e:7c:9f:a0:c8:b3:b4:
59:04:67:96:c4:2d:da:80:c7:e9:b0:1f:73:a0:a4:67:77:20:
29:a8:9c:bd:02:a7:e0:e1:39:8d:56:9b:ef:10:fa:79:d9:92:
42:a7:0a:c5:8a:a3:49:a9:09:aa:39:11:9d:ca:b3:06:4e:08:
44:2b:cc:75:15:6e:3b:5a:49:5d:74:1a:7a:01:c2:c1:62:19:
8f:5a:c6:98:6a:ea:9f:3e:82:e6:86:cd:58:63:9b:47:4f:ac:
50:a1:98:b0:c2:d0:f2:16:01:8f:c3:08:2e:b9:1a:01:3a:21:
e7:81:b4:9e:05:90:87:cc:2e:26:c5:06:75:53:e0:d4:11:d4:
b1:a2:bf:fc:f9:dd:d6:68:11:02:2d:da:3e:a0:e4:90:3f:57:
db:3e:89:f7:6e:7d:56:0c:2d:67:97:29:97:18:88:a6:5d:66:
dc:f0:2d:68:ca:69:5d:1f:9e:ac:59:8e:25:1d:89:1b:29:ba:
e9:7f:8f:45:9c:e8:12:79:44:54:dd:1d:cb:98:40:45:b4:15:
26:6d:86:54:97:1c:3a:ea:19:84:5b:25:5b:24:23:f2:39:d3:
34:1f:38:b1:b0:1f:27:fb:58:d1:46:80:99:bf:e0:55:7c:fe:
72:4e:62:5e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 16:00:44 2026 by rpki-client