Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: HKci8/LHswRrzIaRZxWhYXj6ZwxWPSuSPbOcjFvF/u0=
Subject key identifier: D5:ED:A7:01:0F:83:14:43:F3:8F:F1:B8:45:55:DD:20:FA:40:26:AF
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 019CABD9530CF2ED7346298609F7988153B7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 00:01:12 +0000
Manifest this update: Mon 02 Mar 2026 00:01:12 +0000
Manifest next update: Tue 03 Mar 2026 00:01:12 +0000
Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: 8vR8lcZ37Lo3+9i89OLZ+7roPjfLvmmriyFCCccd3gY=)
2: tu8pFAR-lfRJrRr8DnEqag_8PIg.roa (hash: W8jBg2aJkkt/Cbf9tH1JvG4N3IVjC0bK1ORLH4MYXDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:53:0c:f2:ed:73:46:29:86:09:f7:98:81:53:b7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Mar 2 00:01:12 2026 GMT
Not After : Mar 3 00:01:12 2026 GMT
Subject: CN=d5eda7010f831443f38ff1b84555dd20fa4026af
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d6:8f:46:87:67:21:c8:8e:75:3b:55:7f:a1:e5:
2a:08:83:34:94:10:ad:19:54:84:f6:15:36:ed:2a:
85:6d:e9:84:a4:8f:bb:d6:1f:8d:ef:fd:7c:5b:13:
ba:99:1b:92:fc:68:9d:90:2e:e3:60:a2:f3:3f:fe:
6e:b5:c5:3f:95:6d:45:8b:c2:56:99:e3:9c:d6:64:
ca:5e:4d:86:45:d0:ad:c4:07:33:89:ee:d5:1b:df:
75:5d:46:06:93:f8:16:2e:69:70:bd:29:b2:07:d2:
dd:80:95:18:ec:13:a8:ef:7f:b2:62:e9:6e:ec:62:
2f:4a:84:90:1b:1e:95:ce:71:b5:93:50:2e:31:cf:
72:eb:e5:76:f2:14:a2:41:52:da:5a:c8:42:3b:2a:
85:d7:15:cc:b5:79:18:da:91:66:41:64:e7:e2:3d:
80:78:fe:68:e7:c7:86:5d:d5:3a:60:eb:80:db:85:
75:ce:9a:a8:66:d0:38:0c:46:85:a2:74:87:c5:2a:
98:80:be:33:d6:3c:55:4e:28:c8:b9:fd:65:fd:82:
4c:40:c1:34:5b:a9:74:8d:0d:b2:d5:d0:c5:81:b6:
82:09:f3:47:0f:5e:48:f2:fa:96:29:24:58:8f:cc:
92:5d:60:d3:ac:59:60:74:11:a5:a2:6f:0c:6d:87:
2a:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D5:ED:A7:01:0F:83:14:43:F3:8F:F1:B8:45:55:DD:20:FA:40:26:AF
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:69:dc:56:29:3b:f9:fb:bf:e3:a4:56:6e:56:46:04:78:fa:
c0:ae:ba:91:7f:27:05:d5:f8:b7:32:16:ba:64:4a:8d:4a:68:
61:61:17:ee:5d:a4:ce:02:4a:e0:5c:4d:3d:da:30:ea:62:f1:
9a:f0:34:26:8c:e8:83:12:5d:9e:46:f2:83:dd:71:53:14:ab:
f9:a0:68:b4:a1:5f:49:1b:72:0b:ba:c9:ca:a6:14:bb:cc:3d:
a1:a3:11:2a:fc:54:0b:91:e7:7a:08:4b:f3:13:a6:72:d1:96:
ed:34:53:1d:37:fa:b6:1c:71:6b:99:0b:0c:6b:d9:76:e8:c8:
a6:4a:8f:32:6f:26:c9:20:27:ed:37:64:26:2f:12:ab:30:db:
58:74:8a:c9:f3:6a:f7:63:1e:2f:e5:13:57:03:24:2f:c9:70:
df:56:68:d9:9f:52:4a:53:61:7e:89:ce:ec:7c:2d:37:b1:6a:
ad:1c:ab:eb:71:23:28:ed:a6:c7:02:3d:1b:af:f4:c6:6a:6b:
41:e3:68:04:b7:20:47:49:97:f3:12:b6:7a:7a:5e:17:b8:c7:
e8:f4:7e:e8:98:5d:6f:53:44:b6:23:bd:08:e0:86:27:2d:98:
d2:53:aa:15:e0:bb:4f:06:5f:aa:a7:87:dc:c9:0b:20:35:68:
40:24:57:e4
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2VMM8u1zRimGCfeYgVO3MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5MDFmNTAxOWE5NzBiYTViZTBjNzU0ZDIwZjc4NjcxODE4
ZjRhMmUwHhcNMjYwMzAyMDAwMTEyWhcNMjYwMzAzMDAwMTEyWjAzMTEwLwYDVQQD
EyhkNWVkYTcwMTBmODMxNDQzZjM4ZmYxYjg0NTU1ZGQyMGZhNDAyNmFmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1o9Gh2chyI51O1V/oeUqCIM0lBCt
GVSE9hU27SqFbemEpI+71h+N7/18WxO6mRuS/GidkC7jYKLzP/5utcU/lW1Fi8JW
meOc1mTKXk2GRdCtxAczie7VG991XUYGk/gWLmlwvSmyB9LdgJUY7BOo73+yYulu
7GIvSoSQGx6VznG1k1AuMc9y6+V28hSiQVLaWshCOyqF1xXMtXkY2pFmQWTn4j2A
eP5o58eGXdU6YOuA24V1zpqoZtA4DEaFonSHxSqYgL4z1jxVTijIuf1l/YJMQME0
W6l0jQ2y1dDFgbaCCfNHD15I8vqWKSRYj8ySXWDTrFlgdBGlom8MbYcqnwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNXtpwEPgxRD84/xuEVV3SD6QCavMB8GA1UdIwQY
MBaAFCkB9QGalwulvgx1TSD3hnGBj0ouMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUt
MmIyZjJiODkwOGNjLzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNC8yN2I2MmUtMzYzOS00ZTc0LWFmZmUtMmIyZjJiODkwOGNj
LzEvS1FIMUFacVhDNlctREhWTklQZUdjWUdQU2k0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZmncVik7
+fu/46RWblZGBHj6wK66kX8nBdX4tzIWumRKjUpoYWEX7l2kzgJK4FxNPdow6mLx
mvA0JozogxJdnkbyg91xUxSr+aBotKFfSRtyC7rJyqYUu8w9oaMRKvxUC5HneghL
8xOmctGW7TRTHTf6thxxa5kLDGvZdujIpkqPMm8mySAn7TdkJi8SqzDbWHSKyfNq
92MeL+UTVwMkL8lw31Zo2Z9SSlNhfonO7HwtN7FqrRyr63EjKO2mxwI9G6/0xmpr
QeNoBLcgR0mX8xK2enpeF7jH6PR+6Jhdb1NEtiO9COCGJy2Y0lOqFeC7TwZfqqeH
3MkLIDVoQCRX5A==
-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:40 2026 by rpki-client