Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
File: KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft (raw, json)
Hash identifier: 6VLW6Btniqh37nT1QgY4VeRQ56P9/TMZMNk7CIFdsxM=
Subject key identifier: 00:71:1B:06:96:D9:23:A2:D2:A3:FF:F1:2A:59:92:7D:2B:0C:34:F3
Authority key identifier: 29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
Certificate issuer: /CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Certificate serial: 019CAAFD6250DBD0C54BAC7F7A8C4CFFEBEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
Manifest number: 0DA7
Signing time: Sun 01 Mar 2026 20:00:58 +0000
Manifest this update: Sun 01 Mar 2026 20:00:58 +0000
Manifest next update: Mon 02 Mar 2026 20:00:58 +0000
Files and hashes: 1: 5pnLPx_2hpy3VygTZwAGCHra7kE.roa (hash: 1oHSHq2YY2wBUKVcldVeO85+GN6kBhjSJ3cQgz8RWLo=)
2: KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl (hash: TEjgaYGAIFCVGKZ1PPxo4OOp25aZT1AF/uL+1Wm2v+4=)
3: KnbEX4UkCWaV7O0wuCkr7A4YupA.roa (hash: LLlXw5GN0fkhrRlbhrlywwISvztA4DkGKjffqRJI8NQ=)
4: ZlWEEzGYFVqbln14VFTl7vY0xlM.roa (hash: 4+sTiTIEM7Q8B0+aFICyPTm4dchReZ/Z4NBsp9md7hs=)
5: hARTp8Mibx8WODEuOIUHpvobncw.roa (hash: xaYjb6X7y2C4MO+aFX5sY8YM6es27SbRjICMp6w4VYw=)
6: yUO-bSyekqEzkSiFcTb4DbKNZ_o.roa (hash: Yz2sZPO7RTS7G2x7CfUC5DUG1B3ygbMjzbaefkWF+54=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:fd:62:50:db:d0:c5:4b:ac:7f:7a:8c:4c:ff:eb:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=290bcc50a9a33ba5651efd1afe40b6fdb02556f0
Validity
Not Before: Mar 1 20:00:58 2026 GMT
Not After : Mar 2 20:00:58 2026 GMT
Subject: CN=00711b0696d923a2d2a3fff12a59927d2b0c34f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:13:4e:af:98:40:22:5c:06:f1:3e:71:d5:85:
83:88:e1:fb:f2:5a:af:44:60:df:a2:1f:b0:31:95:
1d:91:41:01:bc:c3:10:d7:8e:90:25:04:ab:1c:ab:
07:24:12:5a:a1:c7:74:ff:ff:15:d4:8d:7d:29:55:
7a:02:ee:5d:c2:e8:65:c1:57:78:76:32:9f:a9:95:
1a:4a:56:11:6d:78:60:20:bd:9f:9b:62:02:4b:02:
c5:e8:03:1b:9a:d5:0e:04:7a:44:22:74:96:c0:fd:
73:f1:97:ab:ae:84:ac:7e:35:70:df:e1:79:50:33:
7c:6e:da:56:a4:d1:fa:4c:fd:7a:88:bb:17:84:b9:
9d:10:c6:9b:fe:65:95:49:42:0a:53:11:81:c2:45:
d7:6b:86:55:d3:ed:af:0b:73:53:40:2a:0e:3f:5c:
f5:82:8b:3c:5b:76:ea:c9:13:ce:0b:a6:a0:61:cd:
0f:69:4b:3b:bd:73:61:9e:63:f0:33:e6:2a:1a:bf:
70:0b:1c:d6:2e:78:05:f1:71:53:82:c4:30:50:cf:
07:62:57:d1:6a:7e:16:1c:5f:be:fe:11:c6:82:fa:
96:d9:61:fc:e8:db:40:11:bc:17:e7:8e:3d:b0:81:
56:55:4f:60:9d:8f:ff:20:5a:5c:33:fa:a8:d5:77:
38:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:71:1B:06:96:D9:23:A2:D2:A3:FF:F1:2A:59:92:7D:2B:0C:34:F3
X509v3 Authority Key Identifier:
keyid:29:0B:CC:50:A9:A3:3B:A5:65:1E:FD:1A:FE:40:B6:FD:B0:25:56:F0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQvMUKmjO6VlHv0a_kC2_bAlVvA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/4b6ef4-38ee-4c06-8cb6-76982493ea1a/1/KQvMUKmjO6VlHv0a_kC2_bAlVvA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:f8:66:60:e9:cc:e2:34:8a:aa:76:bc:07:50:82:50:4b:92:
25:43:cc:82:5c:8f:b3:28:62:da:e0:43:f8:5e:bb:79:a5:03:
32:8a:df:34:fb:53:27:b1:a8:cc:30:32:3d:f6:09:06:af:3d:
06:a2:68:75:e7:73:a6:44:bc:9a:d5:84:b7:4b:de:7a:a5:da:
3b:58:67:f1:37:44:4b:61:2b:a5:0a:c3:98:f3:c9:a6:ae:5c:
15:c3:92:4d:8d:f1:74:61:8f:ee:5e:49:96:3e:28:d5:41:b1:
76:78:70:ab:8a:67:81:62:3f:b9:b2:26:5c:7b:9d:f7:0f:52:
ad:7d:29:de:9a:15:2b:e0:89:0e:d3:62:4c:03:29:26:63:22:
15:1f:9d:17:6a:3e:35:b2:c3:10:6c:aa:78:25:dc:91:53:75:
ef:e1:37:38:ec:8b:5f:de:75:cc:e6:05:92:74:44:6c:fa:ba:
93:bb:a2:65:93:7e:65:81:1d:ad:a6:f6:4b:d8:d6:c0:6f:fb:
7f:36:09:6f:90:28:4a:cc:ba:8b:47:e8:fc:6f:3d:de:5f:4d:
b2:9e:a1:72:77:c9:1a:33:6e:e4:10:08:85:bf:e3:a2:eb:a7:
3b:49:c0:ce:62:52:52:1e:60:a5:0a:ae:ab:f7:9b:71:0e:33:
75:64:1d:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 00:28:57 2026 by rpki-client