Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: 2wlwxrc6g3L+fNH+gFUG5u7uwaYSPa8B4iF6y+G+Npw=
Subject key identifier: 4F:BB:30:5D:71:BC:D6:05:29:B0:DA:29:0D:AD:7E:DE:B5:4D:38:CB
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 019D9962BCA43B0D5BB3B0A01FA8CA33288A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 03:01:18 +0000
Manifest this update: Fri 17 Apr 2026 03:01:18 +0000
Manifest next update: Sat 18 Apr 2026 03:01:18 +0000
Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: 51ez9Hk9Ru/3l3QBx9MDoDoTe85cxagy8ksj4sYf+gg=)
2: tu8pFAR-lfRJrRr8DnEqag_8PIg.roa (hash: W8jBg2aJkkt/Cbf9tH1JvG4N3IVjC0bK1ORLH4MYXDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:62:bc:a4:3b:0d:5b:b3:b0:a0:1f:a8:ca:33:28:8a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Apr 17 03:01:18 2026 GMT
Not After : Apr 18 03:01:18 2026 GMT
Subject: CN=4fbb305d71bcd60529b0da290dad7edeb54d38cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:54:ee:ce:74:01:83:d3:65:2a:05:6a:15:64:
ee:93:26:64:f6:44:a3:6b:c2:18:cd:dd:4a:0c:3d:
7f:ee:94:c4:be:ff:be:80:f4:6e:c6:46:f6:ff:71:
15:d1:71:a2:4f:c7:5e:c2:3c:7a:61:e3:07:16:c9:
8f:c0:f3:b5:97:f6:63:3b:93:f6:86:c4:04:34:ec:
d8:8c:4c:36:9f:13:31:62:2a:00:7b:08:8a:46:e8:
ea:cb:e7:94:93:d1:dd:f2:89:39:59:38:be:56:13:
a3:14:d4:14:b4:d3:ea:40:8a:21:3c:9a:ce:0e:e0:
30:d5:af:da:d2:e3:b0:fe:51:37:37:14:ef:72:99:
99:18:33:cf:6c:56:bb:33:ed:6f:0b:fb:8d:8f:52:
e8:fb:29:d1:ea:66:fb:a9:83:a3:fe:7b:b7:ec:0e:
43:36:9b:ed:b8:6c:75:56:a3:ed:ae:c5:f7:97:81:
2b:be:61:c6:33:5f:8a:30:b0:6b:12:3d:f2:83:1f:
cd:b7:ec:4b:a7:e4:5c:5e:c1:ee:bc:51:79:c8:73:
cb:dd:62:46:e1:ef:7d:98:60:9d:df:7f:a1:4e:88:
50:c4:58:69:f8:4b:bb:c9:96:bd:0b:b7:2e:e3:3b:
d9:d3:cd:f5:ff:ae:01:9d:2a:15:a3:ee:bc:b3:59:
8e:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:BB:30:5D:71:BC:D6:05:29:B0:DA:29:0D:AD:7E:DE:B5:4D:38:CB
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:71:ac:07:80:d0:8d:25:cb:d6:05:69:99:4a:d4:a2:a1:fa:
b1:b6:fd:7c:8d:a7:d2:79:a9:9a:2a:9d:2f:28:2d:6d:ab:d0:
72:dd:85:59:46:5c:64:5b:bb:08:64:96:b6:6c:4c:0a:21:2b:
2a:3a:87:f1:a0:53:9f:fc:eb:d8:07:b9:cb:4a:6b:3e:ef:78:
5f:0e:eb:e3:13:a9:5e:6f:59:3d:ec:10:32:98:08:7a:49:76:
a8:27:c8:89:4f:25:5f:5c:63:51:8a:2b:bd:44:61:cc:23:bf:
a5:af:35:a0:4e:42:47:d2:84:a8:98:a3:90:31:c1:ea:06:d9:
ea:58:38:ba:fc:47:e1:7c:dd:b1:85:b5:0e:98:d3:42:b7:8c:
07:87:94:e8:2c:84:cd:dc:f8:5f:6e:3b:78:8f:22:ed:6e:d4:
63:ae:68:e9:af:0e:34:83:53:2e:8a:20:42:4d:2f:b1:62:20:
27:6f:ac:2b:c0:4a:df:07:24:95:87:d1:5d:63:21:35:fa:ea:
b8:a1:83:1c:6c:2b:fc:29:64:35:9d:64:40:4b:c0:90:76:89:
5a:17:c9:61:9e:64:ea:96:62:b9:5b:c8:04:57:28:aa:70:ca:
c3:e8:fa:be:3f:42:47:ee:74:76:6a:13:d7:06:e3:e9:82:a7:
83:87:14:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 06:49:23 2026 by rpki-client