Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
File: KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft (raw, json)
Hash identifier: uoChHwe8OoF0etl31a0QLrsczkczxW99FM5645aos0s=
Subject key identifier: 76:AE:F1:D7:A3:FE:27:CE:6B:CC:5B:B7:A1:66:83:5A:DB:78:07:5B
Authority key identifier: 29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
Certificate issuer: /CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Certificate serial: 019D2B85B61C4D32A79A465BCDB3B0FD529C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
Manifest number: 11F5
Signing time: Thu 26 Mar 2026 19:01:16 +0000
Manifest this update: Thu 26 Mar 2026 19:01:16 +0000
Manifest next update: Fri 27 Mar 2026 19:01:16 +0000
Files and hashes: 1: KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl (hash: 2MIwdrf4tV1Otb9okzx0BivU4vXQ4JFVrSoE3qqog/M=)
2: KT302nZV2Y2p4WDMTwVmIhKydvc.roa (hash: RA/+n+j+c+JYu9hIIUbQQ1FyM1sNRqfioO7K+YA4lYo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 16:32:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2b:85:b6:1c:4d:32:a7:9a:46:5b:cd:b3:b0:fd:52:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2902c99ca732c64a19c7d9734a98fb24e5455549
Validity
Not Before: Mar 26 19:01:16 2026 GMT
Not After : Mar 27 19:01:16 2026 GMT
Subject: CN=76aef1d7a3fe27ce6bcc5bb7a166835adb78075b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:41:0d:35:ef:50:d6:11:a6:a8:9d:90:e6:7a:
92:04:38:6d:8e:6b:8a:9a:f2:65:6f:f0:a6:e1:13:
81:fd:11:19:21:4d:d5:3b:87:16:e4:d4:11:b7:07:
5f:8a:54:8a:93:9d:ca:e0:15:42:5c:31:8f:09:56:
8a:53:ed:9d:8f:97:02:a5:c6:bf:c8:6d:c6:eb:60:
a8:c5:3f:72:91:07:04:0d:5c:15:a6:40:ca:d6:91:
74:37:ad:fe:04:19:0e:f5:d6:09:35:35:71:f8:4c:
c4:bb:34:1b:90:03:47:ef:af:48:26:2f:e9:bc:96:
b3:5f:88:e9:50:c6:2d:da:5b:48:76:c8:2b:fb:bc:
f7:30:04:53:ce:61:43:9e:89:2b:d0:fe:70:ee:0c:
2b:37:5a:05:df:13:8e:bc:73:c1:95:7a:06:75:85:
c8:d3:69:bd:15:1d:3e:88:fd:0d:63:e7:96:f8:a0:
a2:f6:7c:a7:97:6a:bb:a1:fd:34:f1:72:68:96:e3:
c5:ad:7d:b1:0d:bf:f6:05:55:b3:8a:2e:0b:d2:0c:
62:c0:c3:a2:23:a5:b4:c7:f6:a9:a6:29:98:37:48:
c6:2e:ea:69:d1:d4:fc:aa:95:56:5b:5e:04:f9:73:
d4:1f:e9:92:58:c0:88:49:53:e0:36:0e:49:52:aa:
eb:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:AE:F1:D7:A3:FE:27:CE:6B:CC:5B:B7:A1:66:83:5A:DB:78:07:5B
X509v3 Authority Key Identifier:
keyid:29:02:C9:9C:A7:32:C6:4A:19:C7:D9:73:4A:98:FB:24:E5:45:55:49
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQLJnKcyxkoZx9lzSpj7JOVFVUk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/54ca24-6e56-47d3-a429-b649a578f89c/1/KQLJnKcyxkoZx9lzSpj7JOVFVUk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
85:4d:5a:85:89:4e:af:37:2d:cf:9e:26:70:af:50:0e:98:a1:
4b:7a:6e:ed:57:ee:c1:01:53:b9:74:1b:fd:b8:4e:1a:e2:1e:
cf:1d:5a:70:87:7f:29:5e:98:ee:45:47:f2:3c:2a:12:da:de:
30:53:bd:12:76:ba:7a:2d:60:86:a3:af:a5:ff:20:75:b1:6a:
42:7e:fe:b8:8c:b6:ab:70:18:8d:3f:f9:36:b5:a8:1e:f2:8b:
e0:53:30:0b:12:c7:5f:4f:e8:42:16:2a:56:5d:cb:b9:36:e7:
25:3f:50:62:4c:41:f3:b1:b9:45:87:1a:07:61:f7:b0:94:08:
03:a6:54:09:05:f4:4b:e2:1c:76:ae:1a:e6:5d:c6:89:a1:7b:
5b:5d:0b:ab:b5:be:dc:60:a9:ed:4a:56:4c:8d:5c:91:7f:59:
0f:0f:ce:6b:22:24:3d:ae:ac:dc:de:3d:94:7f:48:d8:66:d9:
5d:37:20:9d:83:85:2a:d4:73:c0:66:79:96:67:a6:d0:04:81:
5d:4e:82:89:c3:c4:46:e0:f3:e0:6a:07:46:92:7f:96:1c:f5:
07:de:ef:67:dd:99:3e:05:70:5e:e8:76:ae:2b:2a:fc:17:cd:
51:d0:45:81:73:00:bc:8a:78:12:be:dc:fa:90:9e:7a:c0:81:
59:78:f4:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 00:35:30 2026 by rpki-client