Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: eB0qw0gRMp6g1DEjF1y/KoYz0OfryFNwROCmCFVPzgo=
Subject key identifier: 84:2C:9E:16:2E:E7:0D:B6:37:B3:E2:2A:26:25:A0:D1:92:90:40:69
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019CABA233CDC5ACE8188D23C3DF8D64F6DD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 1852
Signing time: Sun 01 Mar 2026 23:00:59 +0000
Manifest this update: Sun 01 Mar 2026 23:00:59 +0000
Manifest next update: Mon 02 Mar 2026 23:00:59 +0000
Files and hashes: 1: iGCKYLy5OifXCBp6y__hXqwBY-E.roa (hash: qEhWJEE9s0Q/c+XhoUDfPYQIsNqLlNPUuYN8qig5CL8=)
2: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: LYvD9Z/GstLN5JagQKgrolZy9AHRnaijKE3MqS6/0/E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 23:00:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:33:cd:c5:ac:e8:18:8d:23:c3:df:8d:64:f6:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Mar 1 23:00:59 2026 GMT
Not After : Mar 2 23:00:59 2026 GMT
Subject: CN=842c9e162ee70db637b3e22a2625a0d192904069
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:85:99:86:59:10:63:a4:de:4a:3f:b8:cb:b0:
49:5d:45:b8:57:cd:4e:1a:48:0c:67:6c:1c:4d:74:
7b:a0:90:0d:3f:97:b8:95:88:ef:83:3d:18:a9:17:
53:d9:fb:1d:30:a3:c2:23:b9:23:80:eb:5d:b0:3f:
16:d2:60:a8:68:e3:0b:12:5f:98:86:b9:f5:05:87:
a8:eb:1d:f5:4c:1c:e8:c9:8c:7f:9a:5b:c5:3b:6d:
0c:f0:83:23:4d:e2:7b:2a:48:53:f6:9a:eb:8d:50:
8b:63:bc:d9:49:ae:25:18:10:f0:9b:91:72:37:f2:
82:b0:0c:62:87:ea:c4:b5:e4:6e:46:d1:3d:4c:7c:
70:d3:f0:5f:52:1a:ad:67:de:8a:e1:14:d0:e8:19:
f9:d9:d9:b2:e9:92:29:d3:e1:f2:61:bb:12:98:8d:
96:38:ce:30:43:bd:4b:2b:19:b7:e9:73:46:c2:d6:
66:22:01:9a:b3:74:ea:ee:fd:a4:c7:44:dc:6d:79:
ee:f8:a0:75:62:c3:3e:8f:60:8a:8d:4a:29:e3:43:
ea:90:ce:52:cb:13:a8:68:07:b1:5a:27:69:c4:6b:
f9:8d:03:4f:ff:74:08:85:00:40:b2:ac:3b:1f:da:
7a:8e:3f:d1:b5:fc:78:1b:d6:dc:84:e4:eb:2e:ab:
b7:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2C:9E:16:2E:E7:0D:B6:37:B3:E2:2A:26:25:A0:D1:92:90:40:69
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
12:35:45:07:ea:a7:22:70:9c:54:ce:1f:8e:7c:a9:ab:10:78:
f8:7f:93:69:76:ab:4d:3c:81:3f:a1:d6:ad:f2:a1:57:7d:e5:
91:f8:53:d3:e7:cd:82:97:0f:d3:e4:de:ee:2c:21:a6:53:93:
7c:15:89:1a:dd:f8:fd:c8:b3:96:51:39:cc:f2:84:47:2f:7a:
a0:f0:8c:e8:54:99:90:23:99:b2:6f:ea:e7:5b:aa:16:21:18:
ce:54:86:9c:61:ce:2d:f7:97:4d:69:30:48:c2:ff:7d:79:2d:
38:4e:d3:a9:22:48:a3:fc:93:17:3d:c1:df:61:1a:77:45:d3:
04:b2:1e:bd:2c:0c:95:ca:95:03:ed:a0:3e:df:74:11:d4:ab:
e9:ca:e5:6d:f7:8b:2f:43:da:f3:e0:5a:97:23:ce:07:f0:ad:
50:09:73:77:e2:8b:2b:f8:61:f9:e6:b4:8d:54:05:75:46:f3:
be:10:40:30:f7:30:ab:34:ee:44:be:78:46:bb:59:c1:94:26:
0a:dd:d5:3c:39:59:ab:42:31:43:e7:c6:86:70:23:0a:93:d6:
dc:82:89:36:ed:f8:1f:af:67:8c:26:af:2b:16:fe:b9:7b:78:
4a:c1:68:15:3b:cd:f9:17:0a:96:be:3f:22:6c:c3:05:31:00:
0f:d3:00:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:57:36 2026 by rpki-client