Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: 9R6wNt6m8D2RNuH4yE0DbX2lPXC9lr07h4GRyuqmxVw=
Subject key identifier: BE:BC:5E:28:4B:E8:BE:44:40:58:CB:7B:57:3F:6C:29:53:E2:3E:EE
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 019CAB343C96CE21AA7AC8A4D27F0FA1A75A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 0622
Signing time: Sun 01 Mar 2026 21:00:53 +0000
Manifest this update: Sun 01 Mar 2026 21:00:53 +0000
Manifest next update: Mon 02 Mar 2026 21:00:53 +0000
Files and hashes: 1: AXdXSPys8K4gKCZL761_CRlXkQg.roa (hash: Eq65FPzgWfwxVUVR4WpFvfNbVj2sB466X23GUTRrgvw=)
2: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: rXr3j4Jcix7+Z7+FHAkRHVsrZQzeF6XAL7hXYKVtOrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 21:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:34:3c:96:ce:21:aa:7a:c8:a4:d2:7f:0f:a1:a7:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Mar 1 21:00:53 2026 GMT
Not After : Mar 2 21:00:53 2026 GMT
Subject: CN=bebc5e284be8be444058cb7b573f6c2953e23eee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:9d:c3:a1:61:28:83:c9:b9:e2:98:98:a3:20:
9f:4b:ff:01:9b:35:5b:2a:23:89:57:8a:eb:bf:c8:
22:93:29:a2:f7:13:b1:3a:4a:31:eb:ee:87:a1:13:
a2:e4:24:c3:78:da:ad:17:f6:c9:83:a1:a4:7a:40:
06:b4:99:fe:49:49:d1:d5:08:47:1f:48:cd:d2:42:
f1:53:cc:c7:9e:f4:b3:9d:27:b8:3c:77:ef:66:a3:
88:1a:8c:67:f3:93:08:00:a2:b8:34:8b:bd:29:e2:
c2:b1:72:35:c4:75:c0:7a:55:75:f2:4c:eb:81:d2:
ef:bb:25:c1:69:0f:30:51:ec:d6:c7:ef:8f:c7:61:
af:0a:73:e5:62:01:44:bb:a6:e8:19:b5:cf:c4:a4:
d0:ae:45:ef:c6:11:88:88:06:85:74:1c:c0:c5:fb:
e5:56:36:ec:df:c1:1d:95:aa:f6:f2:3a:f8:4e:6c:
7d:13:5d:a7:36:e3:6e:ad:fc:7b:28:8d:1b:5b:98:
a0:2f:d5:39:86:60:88:5f:6d:f6:68:d6:9a:e7:b9:
6b:99:92:11:2b:1f:19:59:ee:d8:c3:86:b5:cf:dc:
1b:32:8f:68:68:b4:ec:17:c0:fd:16:a1:e9:4c:e3:
01:bc:8e:d6:d4:12:83:79:50:4b:09:6d:fb:7d:4d:
a3:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:BC:5E:28:4B:E8:BE:44:40:58:CB:7B:57:3F:6C:29:53:E2:3E:EE
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:d8:3f:ba:39:19:ad:be:26:9e:e0:69:73:9e:12:05:97:fb:
d9:3f:12:4c:c3:ae:0a:bd:2f:b7:c1:9a:15:32:7a:f8:d0:50:
bc:bb:50:a4:82:be:08:41:92:19:3d:de:cf:e4:f3:88:fb:b7:
09:4f:d3:60:3a:99:7c:13:ad:10:39:88:d6:4d:12:31:72:72:
b3:76:b8:bc:0c:2b:a3:b5:8c:e1:05:f2:5f:09:7d:26:46:dc:
35:83:fb:73:a3:26:0a:e4:63:28:13:0d:a1:94:d4:60:43:3f:
cc:8a:cd:8a:e4:f3:3d:f2:8e:ad:36:7c:8f:71:40:c4:07:82:
88:8d:e9:bb:4f:3b:45:b0:eb:06:a6:63:56:36:c5:c9:64:38:
32:1c:34:fd:3d:63:7f:ab:00:67:f6:73:08:fb:5c:4b:8d:1b:
cf:53:f7:cf:8e:8b:87:b1:95:d4:a5:0e:bf:7e:11:b8:57:18:
ff:b3:19:e5:07:33:0b:43:91:cd:67:be:e2:7f:b1:fc:62:8b:
18:69:75:07:24:4c:2c:13:96:f5:7d:73:e5:49:51:e1:0f:66:
d6:bf:47:03:29:ce:14:d0:79:dc:f5:72:69:f0:e8:98:df:e9:
1c:6c:27:27:9f:94:26:24:b1:1a:af:77:cf:20:3c:9c:0e:13:
1d:e2:0f:eb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:39:26 2026 by rpki-client