Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: 9UEJsjCKLVwlu8EmrwHwIIDi6j6ZzgUVdXK83KtMqlI=
Subject key identifier: 58:BA:57:79:D8:21:B9:69:B3:76:79:F7:A3:D1:C8:56:29:D0:A7:D6
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019CAF10F91396CEC6DE8FF6C684C31595FD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 0406
Signing time: Mon 02 Mar 2026 15:00:50 +0000
Manifest this update: Mon 02 Mar 2026 15:00:50 +0000
Manifest next update: Tue 03 Mar 2026 15:00:50 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: bbEFIBC+KANvttOpMcyEooOlJFvy4hmbNsfR+uUMq/A=)
2: p5OtBuJ_H7AvfUmYp0Nby5w6BSc.roa (hash: oRePnKuJGEJuRAGyqz3spXqznhrS2YOXLr+XXfpc3VY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 15:00:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:af:10:f9:13:96:ce:c6:de:8f:f6:c6:84:c3:15:95:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Mar 2 15:00:50 2026 GMT
Not After : Mar 3 15:00:50 2026 GMT
Subject: CN=58ba5779d821b969b37679f7a3d1c85629d0a7d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:98:93:45:1e:7b:b6:85:ef:d8:19:2d:5e:e2:
73:2c:ed:ca:6e:05:30:1f:48:ba:12:37:5d:5a:69:
b9:01:22:da:2b:60:ce:4f:cf:c5:9c:ca:1d:ad:2b:
18:40:50:52:e0:10:ee:d6:09:db:90:b6:70:df:c2:
ef:61:2d:39:21:51:09:00:9d:7f:e2:7a:4d:eb:04:
6e:86:8e:33:cf:5b:db:29:73:c6:96:4c:6a:04:a8:
cd:58:62:66:8c:e1:61:f4:42:d8:41:96:78:af:94:
aa:94:35:64:f4:87:14:6c:15:6a:8e:bd:b7:ed:e8:
b8:7d:cb:d9:9f:f6:0d:0e:53:99:ca:4c:bd:ad:90:
bf:ba:18:ae:35:55:94:14:52:43:f6:65:b2:17:c8:
17:e8:30:08:f9:4d:1e:e6:70:54:b4:b8:98:20:85:
85:16:ce:d5:06:1b:8e:b0:4a:39:c2:b9:65:1c:03:
36:8d:7d:ed:70:d1:b5:8f:b3:92:11:aa:a4:9b:ff:
18:c9:9b:10:62:76:99:11:d1:3a:34:32:c0:f9:03:
f8:10:77:3a:47:8c:c2:15:a3:17:d5:6e:59:a9:83:
e2:08:29:93:ea:6a:fb:30:21:2a:83:7a:d3:4a:06:
aa:6f:56:3e:50:11:8a:84:db:7b:4a:a3:37:c1:49:
2d:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:BA:57:79:D8:21:B9:69:B3:76:79:F7:A3:D1:C8:56:29:D0:A7:D6
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:f0:2b:c3:74:d6:c6:ca:eb:4c:49:4e:4f:cb:cf:d7:06:a3:
6f:71:8b:64:88:5f:5a:8f:f0:06:3c:61:55:e7:13:8c:45:b7:
59:1d:cc:eb:d4:dd:6f:f0:93:9e:c1:a0:16:13:29:21:c5:c7:
73:cb:c3:6d:6a:51:0c:46:81:47:4a:70:3b:34:cd:2b:7e:a2:
06:b1:d2:4f:54:22:38:7c:61:a5:ec:89:a1:b4:ac:df:a8:95:
1b:99:7e:c5:c5:1e:ba:c0:2f:e3:64:e7:c7:17:3e:bf:4d:61:
28:ba:03:58:d9:ad:36:35:cd:2a:11:df:80:e8:9e:e3:20:8e:
e0:62:77:1b:6c:27:b2:fc:89:22:39:9a:7e:b5:83:62:d1:d4:
ca:44:a5:1c:18:09:49:41:dd:6b:7f:fc:5b:5a:77:39:2d:6a:
05:69:d7:1f:6d:cb:a9:a5:1d:88:1a:87:b6:67:b1:99:28:ae:
ca:1c:a8:76:16:e9:a5:c0:00:db:2e:22:66:3e:0b:ec:74:19:
0e:e2:94:3c:7e:97:57:ba:9d:9f:a6:d5:6b:93:7a:0f:9e:98:
51:aa:2a:75:dc:b5:41:7d:02:6b:1e:e0:3f:b5:53:9b:50:59:
b9:9b:6a:ff:16:e4:29:8f:66:e8:ec:6e:6d:95:87:8b:2d:8e:
ad:9f:5f:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 20:02:23 2026 by rpki-client