Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
File: KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft (raw, json)
Hash identifier: H5m+tgWf5RDHcmlcRrAujFhsUwFW55ikPCN0sMicvvY=
Subject key identifier: 62:B9:92:AE:6C:D7:66:CE:48:AB:D6:44:CC:E5:FD:B7:F3:74:65:C6
Authority key identifier: 28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
Certificate issuer: /CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Certificate serial: 019D9AABAE04E6026D88B3ED68CFAA0A7E63
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
Manifest number: 069E
Signing time: Fri 17 Apr 2026 09:00:35 +0000
Manifest this update: Fri 17 Apr 2026 09:00:35 +0000
Manifest next update: Sat 18 Apr 2026 09:00:35 +0000
Files and hashes: 1: AXdXSPys8K4gKCZL761_CRlXkQg.roa (hash: Eq65FPzgWfwxVUVR4WpFvfNbVj2sB466X23GUTRrgvw=)
2: KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl (hash: 7Eg+mQmisVKCWDKjUMUZIZePZ5SQmJSSVnrpyZu5yNY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:ab:ae:04:e6:02:6d:88:b3:ed:68:cf:aa:0a:7e:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28954e28f6e01ca5c7353bc372f369a5f51d9bb4
Validity
Not Before: Apr 17 09:00:35 2026 GMT
Not After : Apr 18 09:00:35 2026 GMT
Subject: CN=62b992ae6cd766ce48abd644cce5fdb7f37465c6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:0b:46:85:f5:a7:ba:9f:2f:cd:1d:4e:c9:f7:
66:1c:83:c8:db:7d:5f:17:9d:a8:f2:be:a7:04:db:
f9:60:fc:20:c3:50:ee:07:24:be:1a:82:5d:60:2e:
40:a9:34:50:f5:b0:d4:41:96:31:aa:b4:79:b8:8e:
3c:b8:a4:ad:93:0c:7e:00:e1:7d:6f:a2:d4:09:9b:
f5:0b:52:ea:27:cf:24:15:a7:2b:34:5f:ab:e9:f8:
4e:ea:33:9c:c1:3f:ec:ca:3b:9e:d4:b9:13:7f:bb:
e4:22:5b:a2:40:c5:90:e7:54:e2:76:e7:d1:b1:9d:
c5:0f:cd:9a:c2:2e:d4:22:81:09:94:5a:32:7b:b6:
8f:bc:67:53:4a:83:da:f8:fa:d6:e8:84:b6:15:1e:
52:4f:53:50:b3:92:bf:e4:f8:62:79:ba:15:39:6e:
b6:fd:23:0c:1d:b3:a2:1f:8c:16:72:bb:35:80:79:
e0:8d:69:27:1a:4f:c5:00:42:9d:b5:96:63:9f:ce:
b1:85:34:c2:0c:74:e2:13:35:8f:e2:50:b0:aa:35:
57:f7:d1:39:d9:f9:23:ed:2b:bb:36:f7:9c:79:5a:
ca:ce:29:3a:55:e3:09:ad:71:b1:8a:cf:fe:18:9e:
a4:01:a4:2c:50:ca:44:08:c1:d3:d8:b7:e4:af:94:
cd:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:B9:92:AE:6C:D7:66:CE:48:AB:D6:44:CC:E5:FD:B7:F3:74:65:C6
X509v3 Authority Key Identifier:
keyid:28:95:4E:28:F6:E0:1C:A5:C7:35:3B:C3:72:F3:69:A5:F5:1D:9B:B4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KJVOKPbgHKXHNTvDcvNppfUdm7Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/55/f37027-afc4-444f-8008-95ce2c755d47/1/KJVOKPbgHKXHNTvDcvNppfUdm7Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:11:d2:b3:22:de:c1:0e:0d:66:fd:ec:33:2f:d0:56:d2:c8:
6f:78:01:57:aa:09:71:4f:67:a1:14:d5:71:41:ca:34:af:43:
72:04:64:ec:6c:6d:a2:39:6a:cb:01:9d:9e:64:41:b9:cf:ee:
17:2c:77:7b:71:75:a0:41:b2:59:f6:07:ff:fd:16:31:4b:b9:
76:cf:99:b8:1a:09:3d:08:e6:82:da:d8:03:9e:9a:2f:25:88:
91:49:60:77:d3:b4:af:6c:f3:b5:5a:11:f2:b7:12:3b:0a:d5:
54:c5:97:c1:be:f0:ce:7b:45:b8:2a:33:15:7c:2c:de:c2:4a:
4e:06:3c:4a:10:57:22:8d:90:ce:5f:5f:d9:0d:11:bd:93:a9:
0e:e6:fe:74:88:47:59:12:58:f1:6c:e8:42:d0:4d:eb:a5:70:
6d:1d:10:41:56:77:d0:fb:cc:ea:eb:e2:50:05:a3:ca:4b:f6:
f3:35:e4:a1:c1:72:05:2e:0e:d6:f5:35:90:eb:d1:8b:62:8f:
ea:eb:71:f7:9d:3a:74:28:18:d3:48:6b:07:44:e5:22:43:98:
ce:a8:a9:92:d3:df:e9:82:e3:f5:87:22:7b:ec:81:19:52:b5:
89:e6:7e:ab:04:d6:b8:19:e9:7e:99:c5:54:36:8c:8b:0d:5c:
40:0d:35:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 16:44:02 2026 by rpki-client