Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: p7xcrQOwkkGVNCN3rZJtu3pZDNB5Y5pauw2nAABAoiI=
Subject key identifier: AF:93:EF:92:23:96:9D:7B:16:FF:FD:DF:46:12:0C:D3:A8:AB:7A:69
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019CABA2319AA598C464F4E17076D7728E65
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 07BC
Signing time: Sun 01 Mar 2026 23:00:59 +0000
Manifest this update: Sun 01 Mar 2026 23:00:59 +0000
Manifest next update: Mon 02 Mar 2026 23:00:59 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: G6134P1Cb0IK/DLG7Ax+6oK4H1yKrOeASGyk4FNPTiE=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:31:9a:a5:98:c4:64:f4:e1:70:76:d7:72:8e:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Mar 1 23:00:59 2026 GMT
Not After : Mar 2 23:00:59 2026 GMT
Subject: CN=af93ef9223969d7b16fffddf46120cd3a8ab7a69
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:06:cc:8f:1f:0e:f6:19:24:69:67:ce:44:7c:
f0:2c:5c:2f:01:eb:a7:7c:39:88:80:35:78:75:f6:
78:7b:50:a8:1c:ab:43:23:da:80:d5:0f:54:5f:c7:
78:7e:39:5b:7d:f5:ae:a3:c3:22:34:d3:12:c8:d2:
ac:4a:cb:cc:0e:6c:f9:01:aa:19:e3:3c:81:6c:66:
07:8b:a5:e3:d8:44:92:b0:e8:98:02:85:bd:83:8c:
1a:1d:4a:36:09:bf:45:2c:7f:09:6c:45:a7:53:ca:
ce:f6:4e:52:ac:66:c1:0c:b8:89:24:b4:17:c0:1c:
60:8f:18:54:57:f6:a1:2f:b2:42:53:20:e3:e5:db:
10:49:bc:ae:76:2c:2c:18:9c:62:0c:59:e8:99:13:
7e:ae:ce:40:a2:ba:c3:a5:4a:b5:a3:3f:a5:95:9c:
64:6a:92:e1:70:f9:a0:7b:76:86:1f:c6:8a:a6:f5:
7d:5f:d1:3e:59:fa:91:d0:98:e0:ac:21:b2:5f:6c:
3b:8b:c0:46:9c:31:44:45:99:2c:a2:3c:78:9c:73:
29:05:17:c4:05:88:26:b7:6d:18:64:09:5a:84:2a:
14:88:43:5f:0d:95:bf:89:9e:30:81:1c:3c:a8:9b:
e4:97:e6:4d:62:29:54:8d:04:69:c8:8f:e9:c1:de:
d2:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:93:EF:92:23:96:9D:7B:16:FF:FD:DF:46:12:0C:D3:A8:AB:7A:69
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:93:b8:c1:e0:18:dc:e2:71:17:22:03:bb:85:fd:ee:0e:1c:
91:5f:6b:e5:c9:c0:1a:5d:8e:db:98:6e:10:ea:e1:29:92:54:
5b:35:d7:32:b2:33:b1:6f:6c:08:5a:ae:96:48:d1:10:6e:1b:
72:08:fa:73:a0:ea:9a:d1:0d:45:20:1b:c1:5c:81:d3:0b:81:
a6:91:ba:1b:ba:ec:0c:23:9e:c4:10:b1:7a:ff:3f:04:95:d1:
65:2c:a9:82:d8:7b:38:3c:39:7e:c2:57:d0:44:75:b2:18:c3:
77:66:1e:80:d4:84:bd:f8:43:7a:03:9b:ce:31:93:48:14:57:
dd:0d:47:77:d7:2e:e4:8a:67:09:66:72:6e:d9:65:a0:71:d6:
f2:a4:b6:3c:d8:67:ba:23:c8:16:f2:d9:f0:75:0a:23:9d:fb:
e5:5d:86:9c:ff:b4:b7:c5:2c:bf:8f:22:d4:22:91:bd:ba:f7:
3c:92:e5:4a:b4:66:a6:cf:84:bd:ab:4d:58:8d:f2:73:fd:fd:
4a:16:ba:ff:04:e2:36:aa:cf:5d:dc:07:74:83:6e:0e:8c:7d:
77:07:68:f9:90:2a:2d:4e:3e:ec:c7:44:b3:ae:44:1b:c6:7c:
25:f6:c1:d9:6d:9d:d5:bd:19:f4:0f:d1:40:11:29:d2:82:0b:
7b:68:48:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:29:15 2026 by rpki-client