Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
File: KyJEyKPrSjxtd20EbOkqvwHGwi8.mft (raw, json)
Hash identifier: vgRfxlPrWgqnmfSB1oInHdXiBLvVTINR1fwKww6gYf4=
Subject key identifier: CA:D4:EB:4F:9B:36:72:59:FE:50:38:A2:7A:49:7E:F5:6F:7C:AD:CB
Authority key identifier: 2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
Certificate issuer: /CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Certificate serial: 019CAAC617960367EE5411E124D244974778
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
Manifest number: 1843
Signing time: Sun 01 Mar 2026 19:00:34 +0000
Manifest this update: Sun 01 Mar 2026 19:00:34 +0000
Manifest next update: Mon 02 Mar 2026 19:00:34 +0000
Files and hashes: 1: DWxK7O4df_W8HA4KXmkc0bNeZRc.roa (hash: BoTdjcLNvInLjrHcqKbP+Q4OyLKz1VsHHG2lylnjHaU=)
2: KyJEyKPrSjxtd20EbOkqvwHGwi8.crl (hash: epQwGlhgvt6Pfd9P/h5qahgDYR81Q9PaomhBNoDVTAQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl
rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:17:96:03:67:ee:54:11:e1:24:d2:44:97:47:78
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b2244c8a3eb4a3c6d776d046ce92abf01c6c22f
Validity
Not Before: Mar 1 19:00:34 2026 GMT
Not After : Mar 2 19:00:34 2026 GMT
Subject: CN=cad4eb4f9b367259fe5038a27a497ef56f7cadcb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:0f:4c:27:73:b6:74:ce:65:69:4f:8c:e3:84:
1a:d6:16:f3:3d:58:d3:aa:77:b2:8a:fc:c6:6d:23:
73:6c:f5:fc:ea:c2:05:ed:a1:ac:ea:75:5a:60:5c:
bd:31:b7:2e:a1:3a:1d:a2:3c:57:67:d7:e6:05:5b:
e2:dc:e7:a5:94:a2:d2:2c:57:ba:2c:a8:72:57:25:
07:1e:c3:2c:4d:32:cb:17:d6:8a:47:2a:13:44:39:
7b:c2:aa:ad:e0:4d:0f:66:bd:ad:28:dd:c6:8f:4f:
61:54:8b:cb:d2:db:a0:99:8b:98:46:c0:0e:4b:fa:
07:09:97:a3:0b:30:40:34:16:73:8f:b2:aa:82:15:
b1:84:6b:d0:18:d6:68:43:ed:a8:b0:c6:7e:a4:b2:
d9:84:a4:ab:64:85:19:40:b9:2c:2a:2a:3c:98:01:
2d:6e:dc:1f:24:d8:50:77:7f:8b:c0:9e:2a:9e:82:
a7:e6:f3:fd:bc:f3:fb:60:0b:19:d2:42:53:13:88:
1d:e9:11:15:43:1a:c7:c5:4e:2a:d8:38:88:7f:1e:
aa:18:31:89:f8:3e:d3:98:8c:80:3e:31:a6:af:5e:
4a:5a:3e:16:39:84:5a:5d:74:b4:2a:e9:0a:10:29:
b7:f6:93:d0:50:51:99:cd:bc:8f:4b:90:a3:39:48:
c9:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:D4:EB:4F:9B:36:72:59:FE:50:38:A2:7A:49:7E:F5:6F:7C:AD:CB
X509v3 Authority Key Identifier:
keyid:2B:22:44:C8:A3:EB:4A:3C:6D:77:6D:04:6C:E9:2A:BF:01:C6:C2:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KyJEyKPrSjxtd20EbOkqvwHGwi8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/24/7cc7a7-aef1-408a-a1c6-df1cce4e6950/1/KyJEyKPrSjxtd20EbOkqvwHGwi8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:48:c3:77:5c:ba:6c:85:17:15:42:ae:e0:36:78:ec:e3:04:
44:ee:48:fd:20:fb:27:f4:08:b7:0c:3a:91:2b:ad:22:0b:5f:
1a:c3:93:34:f6:d0:ca:7d:af:45:91:6e:e0:ae:36:72:5c:25:
e9:98:d9:38:fc:2d:3b:8a:bd:d6:e9:34:23:5f:39:99:dc:79:
6e:80:08:75:a4:80:63:76:82:86:ca:9d:e7:48:21:68:75:20:
9e:9b:d6:57:df:d8:f7:3f:4e:ef:9e:c3:e6:a1:b1:d5:02:fb:
60:1c:de:7d:5e:61:a3:62:bc:d4:2e:07:23:8d:29:f9:e7:0a:
43:f0:49:5c:ad:ae:8f:06:92:6b:cd:79:b2:3d:ab:79:c6:aa:
e0:6e:9a:42:da:34:87:6f:ad:8a:d1:a3:64:21:6e:84:03:e6:
48:83:ea:96:86:31:9c:80:60:36:18:eb:2b:59:8f:b7:55:b5:
fd:11:dc:9f:38:3c:40:d8:aa:37:e5:5c:c6:5d:20:da:8f:55:
8d:56:df:51:7d:6d:4f:86:2e:fc:4c:b1:21:23:a5:2c:9b:14:
46:70:c3:af:c0:51:36:28:d0:f1:af:63:96:a3:a9:29:b8:c5:
b1:13:da:09:7a:0d:7a:7c:c2:e7:70:aa:d6:d3:9e:fa:0a:7a:
16:24:c9:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:07:58 2026 by rpki-client