Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
File: KvXkhmugmCASSm5REQT8QfpUGZU.mft (raw, json)
Hash identifier: iPmG9EM2mYZf0d48SlyqgotubsSQNwO2kdP8984IOJI=
Subject key identifier: AD:61:0E:31:D7:AA:DD:7A:AD:1C:7C:F2:9D:39:F6:0E:86:8E:0E:DD
Authority key identifier: 2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
Certificate issuer: /CN=2af5e4866ba09820124a6e511104fc41fa541995
Certificate serial: 019DCF755107C036F3FCEB12EFCB9725E854
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
Manifest number: 161D
Signing time: Mon 27 Apr 2026 15:01:05 +0000
Manifest this update: Mon 27 Apr 2026 15:01:05 +0000
Manifest next update: Tue 28 Apr 2026 15:01:05 +0000
Files and hashes: 1: 1-z20vDfkn7oH-6wUhtZ7pUOpXYs.roa (hash: 4MFRLpbPJz7onF3ec6CHT+GVAOztKot1i4cNl9/RUGQ=)
2: KvXkhmugmCASSm5REQT8QfpUGZU.crl (hash: tg3xFCMGDzOaczF/NZt6QHf1BrXCvNGv75DE6dfbtDs=)
3: O21Shcq_z6RKIQVhghQ8x3iEUgo.roa (hash: PftCITy+sH9MILDPnvPA0rgTafRE24Enke6NGZ2wU40=)
4: kip9OEz8XKCqejVGiyHb4UeVJqw.roa (hash: 2JQk1BgdQDCMPFy2Bnpli4/vgD3QHxPKM4wyX0aSciw=)
5: qFN4BBxdmHy_3BcnNOupfLTZLMo.roa (hash: BnnmcXeCam4+KhT/CdouCX5HwDOQfbwphY/d8ikHz1E=)
6: uak-SP6C0SdGYf4Tcy5QLvzCEvQ.roa (hash: 5hi2l5GuzQIHHEKLjg//xukNKdrAlFGmuJKbjmJZ2aY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 15:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cf:75:51:07:c0:36:f3:fc:eb:12:ef:cb:97:25:e8:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2af5e4866ba09820124a6e511104fc41fa541995
Validity
Not Before: Apr 27 15:01:05 2026 GMT
Not After : Apr 28 15:01:05 2026 GMT
Subject: CN=ad610e31d7aadd7aad1c7cf29d39f60e868e0edd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:e9:a2:0a:92:3e:67:b4:b5:b9:38:1b:95:1d:
93:a9:a1:97:f0:ad:57:3f:0b:05:20:b7:88:d6:f0:
e5:37:c8:19:c1:f1:3f:ff:57:82:41:a6:29:38:fd:
63:0a:4f:f3:8d:6e:c7:48:24:4d:d5:80:a5:37:c7:
bc:b0:19:e7:a7:94:c3:a0:26:8f:81:94:67:2f:3c:
d5:03:b5:61:e6:16:d4:e8:5a:54:4e:65:db:7e:06:
30:02:79:de:43:c2:3e:ea:1e:88:0a:ba:4f:99:2d:
dd:93:d5:03:b3:61:c2:06:e9:a4:ef:41:f7:a0:ad:
f7:05:04:15:ec:eb:80:55:c0:39:89:3b:a3:39:3c:
22:5a:ef:fb:c9:be:c3:6e:36:69:6b:a3:6b:77:87:
bc:d4:1f:0d:a9:a2:cf:b3:5a:f5:8b:0a:f3:13:f1:
e1:fc:a5:81:c6:e1:d0:c0:1a:0c:ae:f0:1f:f4:0a:
59:2c:6b:cb:54:e9:1d:5f:41:54:66:92:e9:2a:19:
bd:60:ba:9d:ba:4a:97:7a:04:0c:73:76:2c:84:fc:
fc:ed:a5:d5:7d:f8:77:a4:ef:ff:02:51:87:b2:39:
77:57:98:9c:ab:9f:54:55:aa:9d:77:5b:2e:56:83:
61:98:1b:1c:06:87:f9:c8:d7:3d:36:e5:b1:16:a3:
04:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:61:0E:31:D7:AA:DD:7A:AD:1C:7C:F2:9D:39:F6:0E:86:8E:0E:DD
X509v3 Authority Key Identifier:
keyid:2A:F5:E4:86:6B:A0:98:20:12:4A:6E:51:11:04:FC:41:FA:54:19:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KvXkhmugmCASSm5REQT8QfpUGZU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/252761-019a-4de5-957d-c320e50a3c79/1/KvXkhmugmCASSm5REQT8QfpUGZU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:99:a3:f9:be:2e:a5:5d:6f:22:d4:5d:d1:5b:d9:a0:fa:e1:
70:0d:72:c4:0e:5c:28:71:d6:e4:14:9d:8e:11:02:ca:88:6c:
69:fc:71:16:87:6b:27:51:a8:6d:15:eb:12:74:09:b3:28:98:
89:ab:99:bc:d1:50:11:76:e7:7c:0c:d7:92:e5:98:11:7a:93:
99:50:e5:02:ec:2d:12:de:79:d1:e3:6a:e7:d3:c2:21:04:e6:
e8:6a:65:32:dc:d4:b4:fe:51:65:09:ef:af:68:b0:50:e6:4a:
2b:bf:42:8c:ed:c5:ca:5f:fc:41:19:6e:fc:37:37:11:ce:dc:
d0:7c:07:f5:9d:6a:df:9d:17:fb:ef:65:0a:f1:af:58:24:d5:
aa:23:61:b8:98:4c:57:18:3c:fd:87:1b:43:61:7f:2a:94:16:
7d:70:81:d1:7e:e7:b6:b7:06:97:fb:4f:1e:7e:a5:ee:3c:06:
43:1a:4d:fc:e8:d6:ba:9f:15:58:22:e9:8a:28:4a:4d:63:c4:
44:a9:c9:36:a3:01:9c:98:4c:04:c2:8b:cf:14:bb:65:eb:a7:
e1:b4:5c:af:82:33:47:db:4d:6a:15:99:5b:ca:16:72:26:ef:
6e:79:b5:a1:ea:cc:9b:4a:5f:17:ea:2c:5a:d8:42:50:25:f2:
90:83:64:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 22:29:21 2026 by rpki-client