Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: f7TPgPzMXUxtMk+oRYYxx+UPCdV53fUcog5I9zd2N8E=
Subject key identifier: AC:F2:93:ED:44:DC:8F:AC:4E:B6:C2:D9:90:F7:5F:FE:31:9B:76:92
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 019CAA58F671AEEEB5286E061E06162DCB03
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1847
Signing time: Sun 01 Mar 2026 17:01:22 +0000
Manifest this update: Sun 01 Mar 2026 17:01:22 +0000
Manifest next update: Mon 02 Mar 2026 17:01:22 +0000
Files and hashes: 1: 8v0CcVyve98suRZMz0YYAeGqttU.roa (hash: gavUEFBgnAVuBp4EUd0FRwiP3lAlf2Xbyzla4xcdz6s=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: 0h07SmLrz03PtbLKnOHP0BRCVvmBsps84wMB6qhXCiU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 17:01:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:58:f6:71:ae:ee:b5:28:6e:06:1e:06:16:2d:cb:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Mar 1 17:01:22 2026 GMT
Not After : Mar 2 17:01:22 2026 GMT
Subject: CN=acf293ed44dc8fac4eb6c2d990f75ffe319b7692
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e2:e1:b7:83:3a:60:40:6d:7c:d6:d1:27:f0:
2d:db:39:0d:34:7c:c6:96:63:cb:be:a5:3e:cc:93:
90:93:31:1d:aa:cc:81:7f:a6:9a:05:e2:18:8d:9c:
3b:54:7f:18:3a:be:97:54:ff:21:ed:06:11:d4:5a:
19:bb:c0:03:6b:e4:de:30:42:1e:db:db:19:39:c2:
ea:20:dd:91:c0:f7:ec:56:bc:f0:d5:7e:ff:92:2a:
53:bc:12:66:07:a1:cd:4a:87:72:a9:33:1e:7f:67:
e4:aa:dc:18:6c:8d:29:f5:46:95:6e:91:cf:2f:4e:
ab:f1:83:9f:c1:fa:06:d0:56:0f:cf:b5:97:cc:ea:
5c:64:63:90:4d:b0:01:6f:a8:04:62:61:cb:e4:11:
15:9a:7d:f9:e3:9b:74:23:5f:08:de:f9:9f:67:f0:
7a:75:aa:ea:af:14:fd:11:cf:75:e7:5e:a9:11:b6:
18:7b:32:e3:3c:cd:59:ca:45:13:46:af:81:4a:41:
48:6d:dc:8c:32:c8:e3:35:ab:d7:2f:74:5b:85:c3:
2c:81:11:3c:a8:0b:2e:c6:f0:43:42:5f:ee:ae:c8:
5a:3d:4c:46:f5:a0:7e:ad:a0:4d:d4:82:67:d4:7d:
62:8c:5a:b9:9f:a7:16:19:05:74:64:b3:ae:43:79:
86:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:F2:93:ED:44:DC:8F:AC:4E:B6:C2:D9:90:F7:5F:FE:31:9B:76:92
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6b:65:74:d3:4c:6c:89:dd:89:dc:e4:83:d6:eb:c3:d7:cd:70:
0a:3b:50:df:ad:ec:5f:ce:47:5e:ac:14:58:f3:8d:9d:e0:a3:
6d:6c:4f:4f:b2:49:b3:a8:52:e1:2b:3f:c3:16:ec:94:7b:81:
1b:cc:a3:92:48:76:59:cd:58:a1:3e:7c:e7:40:5d:59:21:e1:
c4:4f:95:f2:3d:5f:ad:44:9d:a5:a8:5d:2e:36:a9:2e:8f:71:
38:d6:5e:7b:da:ee:80:9e:f5:7a:ee:db:ff:d9:f0:96:3a:77:
88:49:cc:b2:0f:bb:60:ad:4a:d1:ab:92:f5:20:07:60:5c:1d:
b6:68:39:80:a2:dd:b5:1e:a0:6f:ba:d2:f9:03:ac:5c:67:51:
1d:42:e9:d7:00:8c:9c:5c:43:b9:6e:76:23:7c:59:ce:e7:71:
b1:a9:1a:f1:f0:eb:38:80:d3:93:85:c9:d2:14:9d:6b:12:39:
17:30:72:60:80:5d:33:97:9a:9f:5a:0b:2b:d1:55:a2:75:19:
c9:dc:fd:e9:47:a0:85:59:64:6c:7f:7d:93:c1:b5:8a:6b:18:
66:25:15:31:5b:b6:01:d7:e2:63:8a:70:6d:fc:3a:4d:ac:6e:
d5:fb:f5:97:69:da:43:92:73:0a:0d:74:13:3e:4e:8e:b4:c4:
ae:79:96:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 04:37:25 2026 by rpki-client