Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: r8s6FcbWPH6uHINk5HLpfnkdnBpRKYuXsKvvNSnGE80=
Subject key identifier: F7:69:2F:45:9F:60:32:7F:90:63:D2:F0:CF:DB:D5:76:EB:DE:96:BE
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019DA45438FD9D80E20B52251EB0A50EFA47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 0485
Signing time: Sun 19 Apr 2026 06:01:16 +0000
Manifest this update: Sun 19 Apr 2026 06:01:16 +0000
Manifest next update: Mon 20 Apr 2026 06:01:16 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: x88464lxFlKzNLkRhp2DyytyQijxYxH/F6d7O5uxhN4=)
2: p5OtBuJ_H7AvfUmYp0Nby5w6BSc.roa (hash: oRePnKuJGEJuRAGyqz3spXqznhrS2YOXLr+XXfpc3VY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a4:54:38:fd:9d:80:e2:0b:52:25:1e:b0:a5:0e:fa:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Apr 19 06:01:16 2026 GMT
Not After : Apr 20 06:01:16 2026 GMT
Subject: CN=f7692f459f60327f9063d2f0cfdbd576ebde96be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ac:d5:53:60:b3:bc:b0:a9:71:f8:88:f1:75:
19:3d:13:e4:ec:6b:ed:23:b5:91:08:7b:07:46:ae:
6b:bd:82:c7:d2:dc:68:89:ca:ee:d5:a7:7e:be:1b:
01:4f:f9:1e:4f:85:fd:b3:79:c2:6e:41:45:15:fd:
93:97:f3:0a:39:d6:af:13:2b:02:6f:44:48:35:d6:
b1:a2:e2:f4:86:28:32:5c:ef:a9:bf:29:90:79:76:
56:db:0b:42:5c:52:42:d1:eb:d1:55:16:3c:e1:01:
c3:74:6a:bb:4f:42:7e:4b:1f:7f:51:61:a5:72:f2:
c8:2f:04:87:64:05:8e:49:35:79:fc:dd:a0:bb:00:
f5:ec:01:ee:a9:5b:02:94:bb:20:e7:fa:88:29:42:
42:28:09:73:9d:e9:6a:51:d1:bc:9a:97:87:f2:01:
51:8d:1c:71:6d:e2:6f:4e:1f:ac:d4:d9:1c:ec:56:
4b:ec:a2:bf:4f:7b:3e:3c:2c:6c:ca:19:5c:24:31:
f7:63:b5:f5:7e:f8:71:70:e2:56:a4:e7:7a:46:9d:
63:b7:57:d2:97:ef:b2:5a:25:5e:86:ee:60:b2:97:
27:d6:ff:33:32:b7:6c:cc:de:83:20:c9:d1:dd:7c:
22:cb:cb:94:bc:3f:46:83:24:57:00:6d:99:52:46:
cb:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:69:2F:45:9F:60:32:7F:90:63:D2:F0:CF:DB:D5:76:EB:DE:96:BE
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8f:e3:0c:e5:ba:5e:c1:71:4e:68:ba:f1:5c:39:8f:17:77:b1:
8f:c5:f0:30:40:e6:79:8e:83:43:70:39:03:27:3a:2b:fa:b1:
85:af:d0:db:64:c7:f2:77:d1:81:16:74:e0:6b:9e:86:20:be:
0e:fe:3d:f3:9a:dd:58:2d:49:1d:17:5b:ba:e0:6b:a1:13:79:
b9:a5:b6:6c:65:66:b3:d0:1c:93:c8:fe:ca:85:39:ea:53:a1:
0c:0d:61:82:39:8f:1f:a4:85:a2:ab:23:66:94:8c:d5:d3:a0:
f6:b2:cf:ea:17:b3:f7:e8:64:e1:8a:91:13:8e:6c:ff:4d:a0:
2c:8e:a2:92:b3:ad:11:d0:a3:2f:53:eb:8a:67:4c:fa:45:2b:
bb:23:09:30:98:4d:92:87:af:65:68:3b:68:31:a9:75:21:a9:
1a:bb:69:70:03:5d:b8:b4:10:17:b6:a2:b3:4e:84:e2:07:c6:
12:7f:df:14:a9:2c:2e:1c:35:bf:ea:f1:f6:97:7e:85:1d:48:
b1:bb:06:a8:6b:3a:ed:ee:f5:3d:8a:25:ff:30:60:87:e2:4c:
6b:11:b1:b9:66:04:e8:8c:3f:61:d7:82:7e:c6:e5:fb:b4:bc:
df:4d:aa:9b:e1:ef:e8:98:85:64:25:ca:6d:29:50:bb:d5:b9:
b1:fb:21:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 14:21:03 2026 by rpki-client