Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: VPfJ+YLqmTbOlAuLhiH81+s5IftJVKxcvJS5duWtepI=
Subject key identifier: 93:43:C5:16:89:03:C1:E5:07:A6:38:D3:F9:AE:F0:AB:F7:A3:68:1E
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019D992B7EC3CF99B34172629A38F352F8C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 0837
Signing time: Fri 17 Apr 2026 02:00:57 +0000
Manifest this update: Fri 17 Apr 2026 02:00:57 +0000
Manifest next update: Sat 18 Apr 2026 02:00:57 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: wjjzyGftH5ndmSfINAc0sE+ywDDQf5IAXgKEkAmgW3g=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:7e:c3:cf:99:b3:41:72:62:9a:38:f3:52:f8:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Apr 17 02:00:57 2026 GMT
Not After : Apr 18 02:00:57 2026 GMT
Subject: CN=9343c5168903c1e507a638d3f9aef0abf7a3681e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:85:54:86:ce:52:21:20:54:91:4f:be:31:23:bc:
95:33:f4:15:49:c7:f2:e2:32:d6:d0:89:f4:e5:eb:
90:d3:84:47:93:fa:85:ad:a3:d4:7c:32:7c:c5:72:
7d:01:c0:61:f9:b9:ed:b2:a7:c8:7a:3d:7c:b9:15:
19:a4:2d:a4:a1:12:86:40:df:d7:54:fd:71:7c:47:
3a:91:f5:7b:f8:46:e5:eb:4d:16:47:f0:1f:2b:94:
22:46:f1:b8:2e:9a:ed:e8:c3:c8:bd:89:f4:1a:04:
a9:8d:58:86:d6:dd:a2:51:ac:fe:2f:4f:97:ec:17:
96:47:6f:a8:e2:43:e6:07:da:21:0c:3b:d0:c6:17:
69:cc:2d:04:19:2e:97:e5:98:0b:72:63:ad:d2:4b:
62:0d:f3:22:bb:c7:9f:ac:b8:7e:78:f1:88:3e:9f:
c4:58:b9:2a:b4:e2:8f:c6:8e:b7:9b:3f:d1:19:df:
08:f5:c7:47:f7:eb:06:b0:d7:4c:c4:6e:cc:12:be:
a6:f3:99:ee:34:cd:68:2f:b3:00:be:6d:54:3e:e0:
91:81:b3:db:0c:fe:01:09:05:9a:b7:65:22:11:7f:
3f:10:81:0f:8e:04:f0:4c:54:95:30:34:bd:d7:a7:
13:d5:b8:c9:6d:6f:60:d3:ec:21:7a:91:5d:57:1c:
98:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:43:C5:16:89:03:C1:E5:07:A6:38:D3:F9:AE:F0:AB:F7:A3:68:1E
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:b5:39:35:0f:01:79:2b:4f:ae:ae:75:d4:07:7b:86:a0:ce:
c4:cf:d4:2f:0c:df:ca:9c:89:c9:c2:08:1c:07:a3:5d:59:e6:
16:82:5b:00:cb:22:ad:c4:95:b7:3e:eb:d9:de:12:25:de:44:
f3:25:eb:4e:f7:aa:d7:a8:7d:45:e0:c9:87:8b:98:9f:4a:70:
ce:d3:7b:97:32:27:4b:c3:51:14:fa:54:e4:d4:e0:de:57:d9:
56:a3:5f:ec:9a:df:2f:76:00:d6:36:f2:1a:54:ee:63:7b:d8:
cd:04:40:48:90:a3:a0:b2:60:47:47:3f:79:a3:c6:01:a9:ec:
26:c2:e1:6d:3c:1a:d5:5c:77:88:de:cf:33:0f:82:33:02:69:
63:00:05:0a:c4:2c:39:3f:6c:75:b0:c1:43:80:a8:30:6b:83:
16:b3:4c:bc:d6:3a:d7:ba:fa:16:3d:8a:f6:bc:14:66:82:ea:
87:c2:02:49:32:68:fc:ce:13:72:9c:a4:50:76:ab:1c:2d:c7:
1b:22:69:57:eb:c0:ab:0c:83:db:27:14:4f:9e:75:df:7e:8c:
b7:40:50:76:6f:33:f0:24:d5:8c:9e:b5:84:30:e7:36:50:5b:
93:d2:17:1d:12:e7:46:d0:8c:e1:be:6e:c8:fc:bc:a0:07:8b:
4b:31:c8:f3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 11:39:36 2026 by rpki-client