Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
File: KBZKV1f91XJaYIRPKufvc7EHpMA.mft (raw, json)
Hash identifier: e6KQ9TMJZKKcpnkSzxEqss68iO6OLTPGA8HK4UE+pnk=
Subject key identifier: FE:77:C3:FF:24:C3:69:E9:4F:32:8F:FE:18:6D:05:C6:0C:A4:64:D6
Authority key identifier: 28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
Certificate issuer: /CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Certificate serial: 019D98501DDF7268A94B7DEC140DD8EDBF38
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
Manifest number: 18BF
Signing time: Thu 16 Apr 2026 22:01:20 +0000
Manifest this update: Thu 16 Apr 2026 22:01:20 +0000
Manifest next update: Fri 17 Apr 2026 22:01:20 +0000
Files and hashes: 1: 744IgXzHRA7i_KaZPXPHUM0eSxg.roa (hash: eqDQW7MUEHWcKNovBhhfViXrkME1qg3sj67Td6hUu3A=)
2: KBZKV1f91XJaYIRPKufvc7EHpMA.crl (hash: T9j9iPowqQpzTr83eDGuffE+LBzeXnksmDsQzMC/6mE=)
3: Q9Hzj6xYvSgvTk1AgA8SSFlzHjw.roa (hash: zRP8z6fqTAhTFBNH4EqdLJ2KR4AhqadHe/YBKRqTMqA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:50:1d:df:72:68:a9:4b:7d:ec:14:0d:d8:ed:bf:38
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28164a5757fdd5725a60844f2ae7ef73b107a4c0
Validity
Not Before: Apr 16 22:01:20 2026 GMT
Not After : Apr 17 22:01:20 2026 GMT
Subject: CN=fe77c3ff24c369e94f328ffe186d05c60ca464d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:93:5e:45:91:2e:9d:7e:83:64:f2:eb:af:45:
c8:af:2c:5f:90:f2:75:ea:6f:6d:62:1f:ac:11:32:
c9:97:54:e7:bb:02:e5:c2:79:2d:84:e0:42:31:c7:
ae:8e:bf:68:6b:17:f0:83:76:88:f6:a1:a6:97:f1:
1b:80:cb:d3:ea:f3:29:d8:b5:61:f3:5d:2b:32:0e:
af:4e:8d:a0:eb:c1:b8:a9:fe:86:de:ae:d6:fc:b8:
ad:0f:24:36:1c:f6:ac:03:a7:b4:d9:fd:40:ff:dc:
aa:c1:20:64:27:e5:9a:a2:76:a1:f1:80:d6:78:0c:
1c:b5:4a:e2:06:07:35:38:df:ea:02:23:74:8f:8c:
ba:6b:ab:87:55:53:51:3b:58:be:81:79:93:5e:eb:
8d:b6:fb:6c:cf:70:60:25:3e:90:4e:87:d8:53:4a:
ee:f1:1f:e9:ac:c2:5b:df:a0:90:bc:bb:5c:4b:13:
0d:f3:6b:64:e6:ca:b5:fd:5c:c5:59:b3:7e:22:1c:
af:c8:5d:8a:33:ac:6d:5e:df:45:36:c5:4e:cd:91:
c4:5b:d6:5c:80:3e:71:4f:e8:43:4d:3a:c6:fd:df:
ca:bb:86:ea:5d:df:0f:cb:82:4b:51:f9:78:8c:e5:
50:ca:b5:a1:a7:38:d1:a6:df:83:5a:c2:49:86:24:
10:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:77:C3:FF:24:C3:69:E9:4F:32:8F:FE:18:6D:05:C6:0C:A4:64:D6
X509v3 Authority Key Identifier:
keyid:28:16:4A:57:57:FD:D5:72:5A:60:84:4F:2A:E7:EF:73:B1:07:A4:C0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KBZKV1f91XJaYIRPKufvc7EHpMA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/95535b-e630-457f-8a01-aeae5bbc3920/1/KBZKV1f91XJaYIRPKufvc7EHpMA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:e9:07:ba:7e:99:99:01:09:ad:60:cc:bf:45:e9:80:78:59:
2c:e4:be:a3:30:63:9f:5f:14:3a:c4:65:26:ec:31:27:5b:14:
fc:03:26:b1:cd:51:1b:bf:20:a5:77:d5:15:35:29:d8:49:89:
f3:bd:5d:d6:53:57:0f:f1:3b:40:19:a6:49:43:df:9e:61:0c:
d9:ae:8e:bb:d8:22:9d:6a:d2:34:d4:0e:02:b5:8d:fa:e1:d0:
93:f0:ca:e0:8a:ec:98:18:de:98:c9:fe:cf:56:87:a6:bd:ea:
91:14:bb:af:76:90:bb:2d:74:cd:12:f7:6a:f8:9a:e8:88:65:
06:52:dd:d6:eb:5a:35:c8:71:de:15:1a:21:9d:34:a2:ac:d3:
56:63:07:1e:7b:30:6b:d7:3c:4f:6f:04:ef:6d:6e:82:c7:59:
77:80:ff:98:58:e3:08:61:e1:5d:e3:71:a4:77:4b:ba:2c:3d:
07:7c:5a:0b:89:6e:a3:73:34:c5:76:2a:4c:f3:10:eb:59:e3:
22:d2:74:cf:f9:f2:9b:3e:4c:b5:d3:7b:75:22:94:a8:cc:f9:
e5:bd:f2:45:3c:28:e9:79:7e:bb:ab:35:9e:e6:8c:b9:c4:99:
a6:8e:55:bd:eb:73:bb:7e:16:db:33:be:f6:15:20:76:f6:ad:
13:24:d0:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 04:16:26 2026 by rpki-client