Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File: KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier: r6m5wIayu6nCYRF2VFDCRiDwDLkA0xQnG0pfGHNLhfw=
Subject key identifier: D9:7C:FE:2F:A2:DF:8E:AC:9D:61:60:D5:03:82:47:7B:34:D4:62:59
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial: 019CAC476241A025C04FF0951ED2D20F309A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number: 1845
Signing time: Mon 02 Mar 2026 02:01:25 +0000
Manifest this update: Mon 02 Mar 2026 02:01:25 +0000
Manifest next update: Tue 03 Mar 2026 02:01:25 +0000
Files and hashes: 1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: Fp86nri2RF91L4DgtcsMGsL18m2Krxh+aGks79CWiQI=)
2: wkII8mT_euYThV1XwcC1p09SIq8.roa (hash: KTBmbNMYpZwuYjtqFt1PYs9OEJ/5++AGe1s/9JAMhzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:62:41:a0:25:c0:4f:f0:95:1e:d2:d2:0f:30:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Validity
Not Before: Mar 2 02:01:25 2026 GMT
Not After : Mar 3 02:01:25 2026 GMT
Subject: CN=d97cfe2fa2df8eac9d6160d50382477b34d46259
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:cc:67:fc:02:e9:6d:56:64:3f:7f:9b:72:57:
15:90:8b:a4:14:fc:e2:19:c9:3b:b8:e4:c5:06:76:
ef:2d:5b:46:02:f5:d6:9e:8f:84:60:37:9f:0f:b1:
8e:3a:6b:34:53:88:12:c5:c9:b3:08:4b:d0:f9:47:
c0:47:c7:68:8b:0e:20:aa:31:fb:8b:eb:c2:94:80:
1a:51:11:de:13:72:46:ce:41:de:fd:06:83:49:83:
e7:29:9d:5c:ac:f9:63:81:7e:06:42:b7:dc:21:32:
67:46:28:8d:d3:e8:22:c9:54:83:86:cd:7d:07:b6:
f8:a9:de:a2:58:4f:a2:0b:0e:be:0b:2c:41:bd:ba:
43:f4:ae:75:67:3d:5b:98:6d:27:54:68:dd:0c:f7:
2c:bd:dd:a4:21:08:a9:6e:4e:fe:ac:16:c4:53:1f:
0a:41:65:00:d3:96:b2:a3:47:e3:cc:2d:f6:30:fd:
c9:16:97:5b:c7:65:f1:e6:f0:19:c2:20:06:14:8a:
21:6c:30:86:95:b5:b2:36:a3:06:e6:45:fb:c6:16:
76:78:88:c4:ae:a1:23:79:8c:77:ed:e8:7e:ba:d5:
7f:e3:55:75:6b:ae:81:23:27:3f:ad:55:a8:29:c1:
0a:cb:78:3a:8f:24:c2:ae:27:af:2e:2f:84:bc:7c:
98:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D9:7C:FE:2F:A2:DF:8E:AC:9D:61:60:D5:03:82:47:7B:34:D4:62:59
X509v3 Authority Key Identifier:
keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:76:fa:29:fb:10:69:a4:79:8f:3c:9b:d7:1a:35:e3:f0:45:
60:ec:32:e2:6a:c3:16:76:02:72:f2:c3:d5:48:7c:e6:ce:12:
02:56:62:5e:c5:d3:ec:a9:50:23:cd:7f:4e:df:60:cb:fe:3c:
27:bf:50:71:fc:49:32:ed:c6:ef:7c:30:7e:1c:35:83:dd:25:
a0:a0:e9:8f:78:56:a4:88:4c:86:71:26:d7:74:36:b2:a7:a7:
5f:fa:dc:48:d7:20:05:05:4e:1e:23:d3:3d:41:fb:91:c5:82:
0c:bc:02:92:5f:d4:fc:1e:98:04:7d:e8:1e:07:bb:2c:a1:94:
0c:3c:22:05:cf:7f:78:aa:4c:2e:a6:69:85:6a:e4:46:80:68:
9d:95:b7:bb:4f:f8:4b:14:a9:c5:30:12:6e:d3:24:02:12:d0:
8e:4f:44:ec:16:67:dd:58:f0:d3:12:cf:2f:9f:cf:3f:23:70:
41:2b:cd:dc:ac:18:84:b7:e2:69:ad:bb:d2:68:5b:95:98:fd:
e3:c6:85:44:62:f7:7f:10:cd:f1:45:73:89:02:4c:aa:c1:b5:
b6:75:cf:fe:f8:35:cc:61:e3:e1:7f:bc:f0:9f:ba:b8:a8:a0:
1b:9a:7b:5a:d9:26:b7:d7:3e:75:55:d7:95:04:f0:ca:b7:41:
8f:cf:c3:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:54:16 2026 by rpki-client