Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: 2CQqy9xsoznEHqVHs/Fz0l6/9R6mPlQKFvcI5uv/3tc=
Subject key identifier: 78:81:3B:BD:BE:A6:52:11:7D:7E:B3:E4:54:9B:99:59:3E:07:99:AA
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 019D29975F350D5FF96D54C37BC68F0B89AB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 11F4
Signing time: Thu 26 Mar 2026 10:01:19 +0000
Manifest this update: Thu 26 Mar 2026 10:01:19 +0000
Manifest next update: Fri 27 Mar 2026 10:01:19 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: uJthX6pe9/1KOfZfHUHBU1Jbryyqy1zCAK0fEt5pknk=)
2: KT302nZV2Y2p4WDMTwVmIhKydvc.roa (hash: RA/+n+j+c+JYu9hIIUbQQ1FyM1sNRqfioO7K+YA4lYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:5f:35:0d:5f:f9:6d:54:c3:7b:c6:8f:0b:89:ab
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: Mar 26 10:01:19 2026 GMT
Not After : Mar 27 10:01:19 2026 GMT
Subject: CN=78813bbdbea652117d7eb3e4549b99593e0799aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:eb:94:f7:3d:ce:b6:7b:09:03:31:9a:4b:d2:e1:
55:d6:7b:43:8a:77:04:b9:3a:ce:a2:00:67:bf:b2:
d9:ac:2d:38:f7:37:c7:bd:91:2f:fe:5b:25:c6:31:
59:8a:c6:2d:68:11:17:c8:d6:fb:f4:66:8e:85:8f:
ad:e0:8c:41:30:55:5f:50:ce:c5:65:a0:2a:3c:40:
7c:3b:83:d6:ed:d9:94:56:f3:a9:3e:da:77:55:dd:
a4:13:28:bb:35:2c:7b:a6:be:ee:c5:e3:c0:5c:a2:
db:f4:c9:de:36:46:a1:9b:9f:2c:d4:85:a2:39:20:
00:87:13:d2:af:b2:cc:0a:4e:c5:93:56:e5:77:94:
95:65:f8:a3:28:00:d2:2f:94:50:9b:c3:40:b9:c3:
6b:a0:fe:84:6b:59:e0:ab:fe:ae:27:df:03:cc:bf:
31:83:88:a2:9c:09:9a:8a:17:f1:42:9b:b5:1d:cb:
14:b8:e5:e7:f9:94:b7:1b:e5:67:e5:e5:bd:9f:40:
c3:da:43:08:f4:af:cf:c8:35:dd:a9:de:16:62:1b:
88:7a:b4:13:28:80:4c:bf:3f:17:cf:9f:20:d0:b6:
2e:c1:d9:ec:78:60:86:ea:4c:be:80:c8:bc:9f:74:
f9:3d:98:4e:2f:d7:59:0e:10:61:51:f9:21:7b:a1:
3d:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:81:3B:BD:BE:A6:52:11:7D:7E:B3:E4:54:9B:99:59:3E:07:99:AA
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:85:a5:49:de:26:18:84:cb:8f:5b:88:69:dd:90:7a:bc:00:
77:71:87:64:bf:a8:a1:58:a9:5f:5c:65:cb:87:ea:df:5d:aa:
a5:16:d8:b0:4a:5c:ca:d1:1c:bf:28:60:35:8e:8f:1f:92:58:
42:89:81:e2:43:e1:80:54:8d:6d:a8:bf:30:7a:76:e2:40:b4:
69:ea:4a:9b:24:5f:9f:34:ed:59:4f:14:1d:6d:d3:11:29:a6:
7d:d6:10:59:de:27:56:99:11:cc:be:18:ea:e9:25:9a:f5:ed:
d8:15:3b:ed:e5:5b:b5:23:4f:0b:74:2b:2e:06:8a:30:d4:94:
1f:9e:ff:50:20:48:20:ee:1a:fb:cd:82:56:55:11:df:56:de:
3a:10:c5:59:ad:ff:f6:94:4f:c9:b0:4a:9c:8c:ef:56:b3:db:
7f:ae:2b:d5:7b:2b:1a:01:68:98:d3:ce:ae:48:ae:fa:a9:8e:
92:e7:65:03:04:35:24:5e:f8:ae:fa:9b:a1:a7:c5:70:60:f8:
21:1f:3e:49:d8:60:63:54:d0:71:93:ac:b1:79:62:9f:e4:6e:
d5:16:56:18:bf:55:02:9a:bb:ed:9c:b8:9c:0b:bc:37:92:ba:
e9:1a:ba:e5:c8:ed:95:89:76:5a:8e:9e:66:2a:e1:50:da:78:
e7:f3:8b:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 15:44:10 2026 by rpki-client