Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
File: KpTH34VXtlNEfD4G-0s3LVEgoiI.mft (raw, json)
Hash identifier: a8mp3EP37qdKWkUvCOpMEQ+xiBUVeCVPA8644RRIJLE=
Subject key identifier: 46:FD:CC:35:4E:CE:2B:0B:9B:DC:A9:EF:F2:A4:77:A2:56:DC:63:F0
Authority key identifier: 2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
Certificate issuer: /CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Certificate serial: 019CAAFD6D516313CE329CC56D40603421F4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 20:01:01 +0000
Manifest this update: Sun 01 Mar 2026 20:01:01 +0000
Manifest next update: Mon 02 Mar 2026 20:01:01 +0000
Files and hashes: 1: KpTH34VXtlNEfD4G-0s3LVEgoiI.crl (hash: rJuOZSY2pFqIgicr6oKmqKHOwezYie3ZZZmr35iG5L8=)
2: zZyI4xvkwJixdxg_pCLk7a1BUdw.roa (hash: zpCoEd9p2O+8DPIDxhP2gPNS4VcEBvo6F6BavOxBd5Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 20:01:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:6d:51:63:13:ce:32:9c:c5:6d:40:60:34:21:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94c7df8557b653447c3e06fb4b372d5120a222
Validity
Not Before: Mar 1 20:01:01 2026 GMT
Not After : Mar 2 20:01:01 2026 GMT
Subject: CN=46fdcc354ece2b0b9bdca9eff2a477a256dc63f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:0d:16:22:b5:db:fc:2a:e5:14:a9:68:75:96:
87:65:f7:d9:b2:5d:20:41:fe:ed:d1:11:fb:f2:fe:
58:47:67:57:dd:8d:5f:e8:f6:8c:b5:26:f2:2b:cb:
6e:00:69:1a:59:0c:36:8a:23:ae:aa:2a:e4:36:8c:
97:a1:ee:db:07:04:a6:56:b1:8d:10:e3:ee:a0:4a:
cf:aa:98:12:a4:99:e9:7f:64:23:b2:1d:b0:b4:d2:
cc:00:e3:28:c9:9f:0d:25:9a:80:6a:81:58:c1:55:
ba:f7:7a:5c:bf:48:87:86:6c:ce:1a:fe:e2:e7:72:
e9:af:bd:72:d1:59:43:1a:7a:d8:5d:2a:4b:99:c8:
65:47:53:92:8a:5b:c9:87:4d:20:07:3d:2b:cf:7b:
d3:44:98:70:1d:c0:7c:73:ab:50:3c:14:46:39:93:
5a:8a:3e:d6:1d:42:0d:cb:19:20:fc:d1:91:1d:67:
04:2e:56:d5:1f:0f:24:09:28:2e:ef:0f:a6:96:30:
98:f1:73:76:24:a8:6f:ce:19:a5:ca:d3:4b:2c:9a:
19:90:36:cc:8a:1e:c5:d9:61:da:cf:72:ee:d2:c6:
96:2d:63:70:bd:47:e1:55:c6:e3:9b:fa:f4:99:f9:
c7:10:b6:57:29:0a:a3:ec:60:a6:d3:f4:fa:7d:72:
c8:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
46:FD:CC:35:4E:CE:2B:0B:9B:DC:A9:EF:F2:A4:77:A2:56:DC:63:F0
X509v3 Authority Key Identifier:
keyid:2A:94:C7:DF:85:57:B6:53:44:7C:3E:06:FB:4B:37:2D:51:20:A2:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KpTH34VXtlNEfD4G-0s3LVEgoiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/58/67caee-4c11-4a6f-bf63-5518b0e86566/1/KpTH34VXtlNEfD4G-0s3LVEgoiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:46:5c:12:9e:41:1d:98:32:ab:d5:03:0a:87:e5:7c:4a:9c:
b3:aa:0b:7a:66:1f:7b:d8:a5:68:fc:89:5e:7c:10:0f:af:6e:
6b:91:a0:6e:38:0c:77:2c:11:5f:43:85:50:c0:99:22:94:1c:
17:8a:de:37:92:4d:1d:dd:20:b6:98:88:9a:b7:e7:7d:2b:db:
14:7e:a1:7c:ec:ca:f3:b8:23:3e:f0:61:54:95:14:4d:b4:be:
7a:ae:7c:49:56:1c:aa:cd:f9:63:17:47:b8:54:5d:92:31:53:
6f:79:94:82:a9:bc:a9:29:b5:2f:ce:07:3f:4e:9c:0e:c5:77:
cb:47:77:80:af:4f:41:3e:90:a4:7d:40:cf:5e:d4:4b:67:01:
ff:c1:77:a6:16:c3:23:0e:f4:af:53:b6:50:22:ad:0d:18:58:
e2:1c:17:7c:90:7a:41:99:6b:1d:80:d6:01:c4:b6:3c:1c:6a:
c9:66:85:56:64:a9:6c:b7:fa:12:b2:43:97:cc:00:89:3c:90:
f0:c5:6a:90:50:a3:84:fc:fd:22:dd:01:d3:42:7e:ff:b5:23:
ae:e4:5a:59:88:15:72:07:b1:d3:41:25:a1:8f:46:e3:ab:cb:
b5:12:cf:8e:f6:e2:3f:c2:e0:dc:ed:9d:3d:18:18:2f:53:fd:
ab:2a:82:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 06:27:01 2026 by rpki-client