Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
File: kq8Dyi32Qjt30O83N7D0eRqgNaM.mft (raw, json)
Hash identifier: C4LMaXpKvHLtjVP0nZVTATXpq6nj6hNzJs9COSlqI1k=
Subject key identifier: B6:6D:B0:10:73:96:88:74:6A:6E:4B:CE:E7:00:8C:C2:BD:75:55:52
Authority key identifier: 92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
Certificate issuer: /CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Certificate serial: 019D273B2D5EE8EE703B0F6EFA3A4BD90FA5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
Manifest number: 0D17
Signing time: Wed 25 Mar 2026 23:01:22 +0000
Manifest this update: Wed 25 Mar 2026 23:01:22 +0000
Manifest next update: Thu 26 Mar 2026 23:01:22 +0000
Files and hashes: 1: 8VSXxcCzy1RczpkkhVuNiNqCitk.roa (hash: nHCP0IVV9N4g1kQbqZXT/navSl3Gd+BXXPdTIW2ZhBA=)
2: kq8Dyi32Qjt30O83N7D0eRqgNaM.crl (hash: 1d0Ln65HbMCuuYA3/OFSXintehQ5l22JX/iG8VwqgO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:2d:5e:e8:ee:70:3b:0f:6e:fa:3a:4b:d9:0f:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92af03ca2df6423b77d0ef3737b0f4791aa035a3
Validity
Not Before: Mar 25 23:01:22 2026 GMT
Not After : Mar 26 23:01:22 2026 GMT
Subject: CN=b66db010739688746a6e4bcee7008cc2bd755552
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:10:e8:a3:42:cf:3c:6f:d3:4d:d6:ba:e1:7f:
75:4d:0d:21:cc:e1:b6:cb:7f:98:b6:12:3e:0a:5e:
af:cc:b1:bc:10:2f:d7:0c:a5:af:4f:9b:84:2c:99:
dc:19:81:f5:c6:d1:90:1a:3e:dd:7a:f3:70:ad:1d:
be:09:a9:70:9a:ce:e2:c4:20:a6:0f:5a:22:84:39:
13:ab:b1:c2:91:9b:47:09:f8:e2:6f:01:ad:0e:00:
6a:3a:03:88:9a:94:d7:a0:5b:b1:4f:84:11:fd:82:
d8:db:36:04:62:0a:08:f5:b3:e6:6e:95:f3:11:75:
f4:7a:06:80:fa:56:03:04:8a:ec:82:c0:1e:f1:85:
17:2d:8f:07:17:49:84:73:e1:15:59:6a:41:1c:7c:
bc:75:2e:09:5e:b8:90:cb:08:7f:bf:fc:78:5d:b5:
ce:91:21:9e:e0:99:e8:f2:79:58:3c:99:d0:43:6f:
e4:4e:bc:36:28:bf:1e:5c:32:d6:aa:66:01:24:c6:
92:5d:b0:f0:bd:f8:c6:72:10:14:8d:ee:5c:4e:cf:
04:3f:a6:19:aa:18:9f:bb:f1:bb:ba:b4:5b:53:2d:
ee:39:94:af:a7:eb:7d:3a:77:7e:65:fa:c1:85:6e:
cc:b5:04:65:85:45:11:80:d5:aa:b1:03:48:92:25:
b9:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6D:B0:10:73:96:88:74:6A:6E:4B:CE:E7:00:8C:C2:BD:75:55:52
X509v3 Authority Key Identifier:
keyid:92:AF:03:CA:2D:F6:42:3B:77:D0:EF:37:37:B0:F4:79:1A:A0:35:A3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kq8Dyi32Qjt30O83N7D0eRqgNaM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9822bc-1593-498c-8f6a-703b6b70a7ec/1/kq8Dyi32Qjt30O83N7D0eRqgNaM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:bd:5d:c5:b5:e3:0b:b2:78:df:19:55:72:5f:6e:a2:e7:e5:
78:aa:8c:60:7e:18:d7:bb:7c:a6:6b:bb:65:9f:76:2f:0d:a5:
cc:6d:12:69:1b:2a:ca:9b:d1:40:cf:c6:d4:54:a5:43:2b:9d:
81:d3:4e:fe:ca:ed:8c:00:cb:dd:d2:6b:9c:ed:2d:27:82:13:
48:bb:6f:3a:b8:d9:17:3d:74:dc:83:86:17:63:f7:39:21:3b:
b8:7a:b6:8f:a3:99:b7:30:e3:76:6f:9f:49:23:bd:a4:74:ac:
92:cc:5a:51:cb:73:9c:90:f4:1e:e8:48:61:90:1e:da:aa:7b:
8b:b0:ee:fc:27:b8:58:ac:37:00:b7:af:b0:30:35:b2:4c:b5:
5c:4a:cb:43:a9:b6:6e:aa:ed:6f:99:e7:50:af:48:af:ef:dc:
9b:31:e9:aa:67:66:e0:0e:d1:f5:6c:2c:a4:4c:1d:2a:3f:d3:
d7:9f:c1:ae:27:39:c2:75:79:08:da:12:9a:b3:a3:69:91:55:
f1:34:a1:7b:3e:b7:d5:71:21:b1:64:3c:ef:27:27:eb:39:8f:
60:e0:21:4b:4a:29:40:8d:00:ec:e7:5b:a2:56:7d:d4:7b:f7:
0a:3d:19:3d:c8:fe:77:dc:44:64:f3:ca:6a:4b:90:9b:1e:01:
28:b1:4d:cc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:21:28 2026 by rpki-client