Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: Wa5bATe26DaQzlxkkzmlK5X01BqJiL/A+L4tA9npJa8=
Subject key identifier: BE:90:B4:85:CD:74:2B:56:DE:5D:30:B5:3F:F9:D4:6B:6F:97:8D:3A
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 019CE3DAA0D9316B04915E04FE24C8CE8429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 15A3
Signing time: Thu 12 Mar 2026 21:01:21 +0000
Manifest this update: Thu 12 Mar 2026 21:01:21 +0000
Manifest next update: Fri 13 Mar 2026 21:01:21 +0000
Files and hashes: 1: 1-z20vDfkn7oH-6wUhtZ7pUOpXYs.roa (hash: 4MFRLpbPJz7onF3ec6CHT+GVAOztKot1i4cNl9/RUGQ=)
2: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: IWnXiPz0eJgxKh3uiOfjIpMuFCuv+OFu4Opm4uF8gL8=)
3: O21Shcq_z6RKIQVhghQ8x3iEUgo.roa (hash: PftCITy+sH9MILDPnvPA0rgTafRE24Enke6NGZ2wU40=)
4: kip9OEz8XKCqejVGiyHb4UeVJqw.roa (hash: 2JQk1BgdQDCMPFy2Bnpli4/vgD3QHxPKM4wyX0aSciw=)
5: qFN4BBxdmHy_3BcnNOupfLTZLMo.roa (hash: BnnmcXeCam4+KhT/CdouCX5HwDOQfbwphY/d8ikHz1E=)
6: uak-SP6C0SdGYf4Tcy5QLvzCEvQ.roa (hash: 5hi2l5GuzQIHHEKLjg//xukNKdrAlFGmuJKbjmJZ2aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:01:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e3:da:a0:d9:31:6b:04:91:5e:04:fe:24:c8:ce:84:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Mar 12 21:01:21 2026 GMT
Not After : Mar 13 21:01:21 2026 GMT
Subject: CN=be90b485cd742b56de5d30b53ff9d46b6f978d3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b9:a2:c6:20:d4:29:88:5b:7c:36:d5:4d:1d:
13:8c:2e:ec:08:3c:4b:b6:99:44:db:68:1f:6d:42:
ea:4d:47:5e:b9:f8:94:c2:24:e4:14:2e:8d:e4:60:
8b:69:2c:9b:43:6c:24:bb:96:76:4c:9e:80:dc:11:
12:f2:48:66:dd:af:fa:68:b9:a8:c0:ae:30:05:5a:
c6:f5:06:64:af:5d:0c:e0:cf:dc:ea:b0:6f:79:5c:
c3:fb:17:02:ae:71:db:9c:37:72:45:c6:92:4b:23:
02:81:dc:0e:81:7d:a1:c8:4e:bd:bb:63:c2:37:0e:
3c:05:f7:59:f2:d5:fb:fa:60:04:34:58:07:10:21:
38:16:00:02:b1:bd:ee:dd:3d:08:78:11:1c:fd:e9:
0d:52:85:1c:2d:b5:6e:db:f3:9e:85:00:db:0b:e8:
a6:b4:42:f8:f0:9c:58:a6:b1:14:e3:03:91:ee:9c:
db:11:72:63:e5:8a:c9:03:36:33:29:84:9e:0f:af:
7f:84:1e:27:1e:b1:4a:60:fb:c6:31:42:35:59:83:
16:77:99:1c:04:02:00:61:93:3e:71:90:cc:9c:5b:
ba:0d:0c:af:f9:72:03:4e:d3:22:47:b2:27:39:dc:
26:74:9e:a4:fd:3d:66:2c:c9:27:fb:24:dc:83:e4:
18:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:90:B4:85:CD:74:2B:56:DE:5D:30:B5:3F:F9:D4:6B:6F:97:8D:3A
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ac:24:2e:72:84:9d:d2:1e:30:6c:5d:9f:b1:79:88:6d:36:65:
52:70:48:5e:b7:17:05:44:f5:78:19:cf:0a:34:22:45:d9:c1:
61:96:6e:0e:1f:46:6a:a6:02:87:b5:35:13:80:0f:46:6e:21:
ed:76:25:48:82:f6:f0:fa:87:d7:33:63:9d:35:e6:4c:53:06:
21:65:25:e3:70:17:2a:8a:50:6f:95:fa:e6:3d:24:a6:35:be:
1b:03:16:19:8f:b5:a5:8f:16:74:27:94:ef:9a:a1:99:22:ed:
8e:ac:2b:09:82:08:14:20:37:5e:1c:a8:4e:5d:9b:08:92:78:
3a:b5:b6:d2:46:24:eb:b0:c4:31:fd:06:9c:f0:d2:c5:d5:96:
07:34:7b:d1:1b:51:4c:c8:e2:4c:a9:52:d7:3e:3e:1c:b3:24:
40:e9:70:d3:f7:e0:6b:a2:a8:b2:b0:a7:03:9e:90:29:7c:2c:
59:2a:c4:d8:ce:71:0c:4b:dc:11:34:af:51:c5:fa:82:93:c9:
c6:47:ab:b0:0f:0c:cc:54:9e:e4:1b:ba:62:6d:14:6f:95:59:
b9:2c:f7:e6:1f:88:0a:14:5c:55:93:ed:df:7d:d3:24:da:ae:
6c:af:57:bf:42:48:e8:59:5c:19:ad:d1:59:3e:55:55:42:7c:
19:6f:e8:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:09:53 2026 by rpki-client