Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
File: KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft (raw, json)
Hash identifier: CZJEkJ86Voni9GzN7b1Yi3bRM/kYSt8ZBJh7Q5i3tzo=
Subject key identifier: 93:91:7B:C9:58:87:C8:50:39:77:71:DF:60:8A:76:B2:5E:CE:E9:C9
Authority key identifier: 29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
Certificate issuer: /CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Certificate serial: 019D38D351B652E9779705D2537BA1D12BAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 09:01:06 +0000
Manifest this update: Sun 29 Mar 2026 09:01:06 +0000
Manifest next update: Mon 30 Mar 2026 09:01:06 +0000
Files and hashes: 1: KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl (hash: GfzOQ0ShMUYSCGgShCFKk1pWwmdmQDZREjBYsVdzUtE=)
2: tu8pFAR-lfRJrRr8DnEqag_8PIg.roa (hash: W8jBg2aJkkt/Cbf9tH1JvG4N3IVjC0bK1ORLH4MYXDI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:51:b6:52:e9:77:97:05:d2:53:7b:a1:d1:2b:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901f5019a970ba5be0c754d20f78671818f4a2e
Validity
Not Before: Mar 29 09:01:06 2026 GMT
Not After : Mar 30 09:01:06 2026 GMT
Subject: CN=93917bc95887c850397771df608a76b25ecee9c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:0f:99:56:b2:97:b6:50:1a:8e:69:5e:0c:93:
05:f7:27:49:38:fa:76:d0:46:08:a7:0a:8d:6f:69:
61:0f:2b:b9:18:85:70:79:6f:8e:b9:88:2b:29:54:
2b:30:f1:45:6a:5b:da:46:80:99:38:9f:07:76:89:
fc:45:f1:97:39:c0:66:a3:88:38:b4:f7:87:41:58:
12:d4:39:a7:8e:0f:0f:3a:04:7b:b2:0a:0e:e0:e4:
43:c4:8e:ae:44:6b:a0:08:5e:1e:de:9f:67:f7:88:
27:d8:7a:ba:f5:f8:3f:02:36:96:21:05:6d:1d:97:
f4:d2:75:89:40:b3:e1:73:4c:4c:85:ce:a4:b1:94:
c9:7b:e7:43:ec:3e:5c:f7:fa:47:69:af:fd:46:0f:
6b:80:2a:e0:f4:6a:44:de:d5:db:be:d1:18:cf:17:
86:61:42:23:8f:16:73:09:ce:b3:1d:0c:b7:7b:89:
66:b3:e7:01:20:9d:b1:42:25:eb:04:59:f2:e8:b9:
51:71:49:ba:47:6d:7d:37:52:b2:ed:b8:71:3d:4d:
8e:25:91:02:5d:62:ec:e2:5c:f1:00:6c:86:40:b1:
77:67:8b:df:9d:2e:8e:7e:db:6d:6d:f2:2e:89:76:
aa:bd:23:a9:5f:ab:d2:52:5c:d6:57:64:4f:76:c1:
cf:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:91:7B:C9:58:87:C8:50:39:77:71:DF:60:8A:76:B2:5E:CE:E9:C9
X509v3 Authority Key Identifier:
keyid:29:01:F5:01:9A:97:0B:A5:BE:0C:75:4D:20:F7:86:71:81:8F:4A:2E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQH1AZqXC6W-DHVNIPeGcYGPSi4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/14/27b62e-3639-4e74-affe-2b2f2b8908cc/1/KQH1AZqXC6W-DHVNIPeGcYGPSi4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:01:0c:0e:85:69:ec:b2:4d:6a:5c:6c:c5:a2:b1:08:f9:32:
c6:b4:22:f6:74:45:b8:9e:6d:40:bf:4e:21:0d:b2:4c:99:fa:
22:bd:00:62:5e:3c:5c:53:20:81:52:32:bb:89:06:2d:88:09:
26:16:34:b7:03:54:3b:9e:3a:89:22:6e:7b:31:ec:77:96:4c:
12:73:44:25:ce:b0:0b:1c:1d:88:a4:75:e8:35:a8:33:27:83:
11:de:67:ce:de:98:4d:67:8e:69:4b:27:69:00:f5:f5:50:9b:
30:40:9f:79:7c:1d:ec:84:bb:b9:69:c7:81:68:4b:a1:14:dd:
09:ed:73:ae:ee:54:b0:d1:44:53:3b:63:a6:90:32:b0:a6:e7:
34:28:9c:e8:fa:cc:87:99:44:22:66:63:59:69:33:fd:28:5b:
b4:1f:47:95:79:11:ad:5e:a7:4f:79:0c:bb:ce:1e:0c:f5:e9:
2a:4a:bf:14:87:c0:8f:2c:84:a7:e7:9e:a9:41:c6:f9:85:a7:
24:0e:ca:10:fa:e4:31:1f:ba:f5:91:1e:46:0a:d1:05:ac:b2:
93:3c:c1:dd:d5:5d:e2:64:b6:9e:55:4f:1d:95:9e:06:9b:1a:
0b:ad:5b:ef:30:8a:ef:dc:16:30:04:0c:7d:df:42:07:89:f1:
a9:8c:26:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:13:13 2026 by rpki-client