Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json)
Hash identifier: WyyFdvUCGCocz1PR0vxhkmeC1I+HAzI7HcCeCuoqhzs=
Subject key identifier: B6:28:24:83:CB:C2:22:2B:2D:84:44:7D:7A:32:A1:C3:5B:B4:73:81
Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534
Certificate serial: 019D9B87876BE87C30F636906B0697373789
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
Manifest number: 18C2
Signing time: Fri 17 Apr 2026 13:00:43 +0000
Manifest this update: Fri 17 Apr 2026 13:00:43 +0000
Manifest next update: Sat 18 Apr 2026 13:00:43 +0000
Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: i1gNCQjvQre3Yx0Z0rQOzsb3D6/r+j79v78sdFtG0Mc=)
2: MhVJs-dWDJmrXlKqcMfoLN_84JY.roa (hash: 2g0t0h8Fxp46vhAobXXA0I4CYe8p0TLn16sQB8keFq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:87:87:6b:e8:7c:30:f6:36:90:6b:06:97:37:37:89
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534
Validity
Not Before: Apr 17 13:00:43 2026 GMT
Not After : Apr 18 13:00:43 2026 GMT
Subject: CN=b6282483cbc2222b2d84447d7a32a1c35bb47381
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:b3:c5:e9:7c:f3:82:86:37:6d:66:fd:b5:27:
2f:f9:c4:64:ae:41:16:b1:fd:61:80:3f:62:71:01:
c5:e6:03:4d:87:6c:c7:16:0f:bc:ec:69:27:a6:7a:
d3:0d:d4:db:3c:1f:b9:9b:9a:72:86:e6:fd:9d:bd:
98:7d:e0:30:e1:f9:f6:96:c3:0c:f8:08:37:1d:8f:
20:f7:5c:6c:8a:6e:02:7b:06:1b:54:c3:82:9e:bb:
b8:dd:30:a2:fb:a3:f7:3c:ee:32:27:40:90:ce:12:
fa:80:c0:ae:5c:2b:9c:0a:e9:e0:96:6b:57:b9:0e:
3b:d0:8f:4b:76:45:cf:ea:1f:2c:a4:9b:1b:83:79:
a6:fe:2b:72:ae:d1:48:e4:32:25:a8:e0:4c:f0:0e:
4a:c2:81:6e:db:05:0d:b3:b3:32:1e:b2:b5:7c:80:
0d:cf:1a:a1:4e:86:9c:55:b3:2b:39:90:d7:17:c8:
41:58:d8:04:2b:2a:4b:f3:21:03:60:6c:6b:e8:91:
2c:01:4e:56:16:6f:a9:01:c5:5b:6a:0d:1e:19:a7:
d4:89:ea:b7:49:87:9a:6f:63:b2:d8:8e:78:f6:2e:
6f:96:47:de:3e:f5:76:79:02:38:77:e7:3d:96:3f:
45:19:58:ac:a0:12:74:b5:6e:df:a0:a3:73:a9:71:
33:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:28:24:83:CB:C2:22:2B:2D:84:44:7D:7A:32:A1:C3:5B:B4:73:81
X509v3 Authority Key Identifier:
keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
53:fa:f3:8b:21:61:14:1e:51:e2:38:7d:2e:3d:d4:bd:bf:01:
f3:69:dc:b0:39:24:31:07:b8:38:61:4a:db:9e:86:ae:9e:f1:
87:77:88:bc:f5:17:a6:f1:f6:19:df:b1:82:10:a4:f9:64:10:
02:1d:e4:d2:b7:a7:af:00:a3:81:b9:ac:32:db:92:bd:53:0b:
fd:21:13:6d:3e:55:66:d4:cb:ea:04:e4:cd:53:96:1f:5e:75:
c9:65:db:e7:9d:fe:2a:c0:55:d0:64:91:a7:85:f1:70:21:23:
96:91:23:b1:f1:0b:9a:49:af:ef:b1:31:a6:cf:89:ee:6e:4e:
78:4a:eb:b9:3f:50:3b:81:0d:f1:b2:91:32:70:8a:7e:1d:39:
62:0a:77:21:6c:a1:44:ff:bc:16:85:47:b2:95:d8:09:65:fe:
45:fc:97:21:a2:1a:9f:b9:48:19:b9:4c:9e:43:84:90:3a:34:
a6:db:c7:2c:9c:3a:83:79:30:83:a8:5e:e2:e9:f2:04:c5:b1:
c8:2a:8a:67:d3:ba:53:5b:58:a0:cc:08:85:c8:5e:0d:5d:f5:
ed:2d:a6:45:b2:f7:a0:0f:52:08:f5:7d:ca:a6:10:9a:d2:88:
67:b0:e0:b8:d5:f5:82:67:c1:31:bd:37:65:dc:7d:e1:ec:b4:
f8:73:cc:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:46:44 2026 by rpki-client