Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
File: KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft (raw, json)
Hash identifier: kYdpXyUyAqnZY2fXbgOYsJCI1zppDh0G8ZdF/fWns8Y=
Subject key identifier: 27:7F:63:92:E7:E1:4E:82:78:26:61:D7:2A:D4:74:D7:06:C5:EC:89
Authority key identifier: 28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
Certificate issuer: /CN=28843db96e4f459b87df8c279057eed69bb9b862
Certificate serial: 019D394128132D332FDAD721AE62750FA66B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
Manifest number: 1891
Signing time: Sun 29 Mar 2026 11:01:04 +0000
Manifest this update: Sun 29 Mar 2026 11:01:04 +0000
Manifest next update: Mon 30 Mar 2026 11:01:04 +0000
Files and hashes: 1: 8v0CcVyve98suRZMz0YYAeGqttU.roa (hash: gavUEFBgnAVuBp4EUd0FRwiP3lAlf2Xbyzla4xcdz6s=)
2: KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl (hash: 7yESoo6c2U8mkhHXc+Ue3nLSb8jXA+rOXYblHf6jdXk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:28:13:2d:33:2f:da:d7:21:ae:62:75:0f:a6:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28843db96e4f459b87df8c279057eed69bb9b862
Validity
Not Before: Mar 29 11:01:04 2026 GMT
Not After : Mar 30 11:01:04 2026 GMT
Subject: CN=277f6392e7e14e82782661d72ad474d706c5ec89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:cd:5a:e6:0b:9a:6b:31:ba:49:fb:00:1c:66:
77:69:39:fc:e2:7c:b9:60:ae:8d:50:f1:52:69:14:
78:e3:49:4c:d6:56:c6:c3:f6:36:06:12:13:64:04:
e1:95:09:5d:69:d2:01:8f:3f:43:13:37:64:8c:03:
4d:ad:32:c7:5f:73:90:0f:f7:ea:43:6e:b8:2c:97:
1f:e1:32:cc:0c:d0:12:e7:33:6d:4f:80:2f:c4:c2:
bc:4e:09:a3:45:54:aa:7c:09:2b:fb:e9:02:00:f3:
9a:d1:10:bd:42:e3:5a:1d:4e:04:51:55:fe:89:3d:
11:d9:fe:c8:42:b0:b8:99:76:88:fd:5a:cb:fd:8c:
25:c9:26:e6:2d:e9:bf:c1:4c:c2:8d:80:e2:e4:1c:
02:da:6c:f4:bc:a4:bf:f5:29:82:a7:7d:19:ad:18:
7a:28:35:57:c8:94:ff:28:d8:e6:79:55:48:45:3f:
91:04:f7:ed:d4:a0:44:a6:59:a4:37:01:28:52:fc:
1f:7d:68:dc:fb:a9:42:0f:60:ef:9d:92:a0:d7:6e:
d4:43:3d:c2:c4:b2:d6:f9:d3:71:b3:5e:26:27:dd:
3d:58:93:41:aa:fc:f8:94:d9:2b:6f:2e:cd:e0:34:
7b:cd:8b:27:a1:4c:3f:97:81:48:d4:65:fb:4b:9b:
e7:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:7F:63:92:E7:E1:4E:82:78:26:61:D7:2A:D4:74:D7:06:C5:EC:89
X509v3 Authority Key Identifier:
keyid:28:84:3D:B9:6E:4F:45:9B:87:DF:8C:27:90:57:EE:D6:9B:B9:B8:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIQ9uW5PRZuH34wnkFfu1pu5uGI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/18/d3a55c-1f62-4779-86b9-61b50f6a6c02/1/KIQ9uW5PRZuH34wnkFfu1pu5uGI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:f7:08:7c:54:7e:41:22:72:d2:15:2c:e4:22:82:09:ab:0c:
9e:9b:1e:f9:0e:c3:bc:e2:9c:29:30:c8:6d:4f:a3:20:d2:0b:
fd:1a:ee:32:40:be:d0:66:92:49:78:68:b7:19:3a:1c:3e:b5:
45:36:44:a5:03:0a:b7:ad:4a:ed:df:f2:53:48:c7:c8:70:a3:
f1:5b:3a:3e:cf:a9:b0:42:aa:7f:85:e6:57:d7:ca:ef:37:dc:
90:e8:22:ad:01:4c:dc:29:88:75:d4:b4:84:23:57:36:0b:1f:
a5:ce:24:d4:77:1f:e0:ad:3c:6a:65:63:c4:4e:18:5f:99:ef:
a0:c4:f3:bb:c0:f0:ff:9c:88:d6:09:82:dd:4e:66:e8:9e:a0:
92:a3:de:08:20:d0:11:a8:37:3f:78:0b:cf:52:34:04:b3:2d:
52:6a:21:c5:b8:13:33:47:1a:44:20:90:9f:dd:a6:1d:59:15:
27:24:82:2c:f4:f1:18:3c:88:57:61:cd:2e:e8:01:0a:ce:a7:
1f:78:8c:9d:cd:33:2a:00:cd:b5:cc:e2:a6:9c:91:a1:79:10:
c0:61:14:99:c3:d5:8c:fa:d7:4d:15:df:d8:d9:2f:8c:5b:6b:
76:a0:16:de:dc:75:61:29:57:65:39:a5:54:73:ab:ea:04:83:
b5:d0:88:97
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05QSgTLTMv2tchrmJ1D6ZrMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4ODQzZGI5NmU0ZjQ1OWI4N2RmOGMyNzkwNTdlZWQ2OWJi
OWI4NjIwHhcNMjYwMzI5MTEwMTA0WhcNMjYwMzMwMTEwMTA0WjAzMTEwLwYDVQQD
EygyNzdmNjM5MmU3ZTE0ZTgyNzgyNjYxZDcyYWQ0NzRkNzA2YzVlYzg5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArc1a5guaazG6SfsAHGZ3aTn84ny5
YK6NUPFSaRR440lM1lbGw/Y2BhITZAThlQldadIBjz9DEzdkjANNrTLHX3OQD/fq
Q264LJcf4TLMDNAS5zNtT4AvxMK8TgmjRVSqfAkr++kCAPOa0RC9QuNaHU4EUVX+
iT0R2f7IQrC4mXaI/VrL/YwlySbmLem/wUzCjYDi5BwC2mz0vKS/9SmCp30ZrRh6
KDVXyJT/KNjmeVVIRT+RBPft1KBEplmkNwEoUvwffWjc+6lCD2DvnZKg127UQz3C
xLLW+dNxs14mJ909WJNBqvz4lNkrby7N4DR7zYsnoUw/l4FI1GX7S5vnTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCd/Y5Ln4U6CeCZh1yrUdNcGxeyJMB8GA1UdIwQY
MBaAFCiEPbluT0Wbh9+MJ5BX7tabubhiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2Yjkt
NjFiNTBmNmE2YzAyLzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xOC9kM2E1NWMtMWY2Mi00Nzc5LTg2YjktNjFiNTBmNmE2YzAy
LzEvS0lROXVXNVBSWnVIMzR3bmtGZnUxcHU1dUdJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYPcIfFR+
QSJy0hUs5CKCCasMnpse+Q7DvOKcKTDIbU+jINIL/RruMkC+0GaSSXhotxk6HD61
RTZEpQMKt61K7d/yU0jHyHCj8Vs6Ps+psEKqf4XmV9fK7zfckOgirQFM3CmIddS0
hCNXNgsfpc4k1Hcf4K08amVjxE4YX5nvoMTzu8Dw/5yI1gmC3U5m6J6gkqPeCCDQ
Eag3P3gLz1I0BLMtUmohxbgTM0caRCCQn92mHVkVJySCLPTxGDyIV2HNLugBCs6n
H3iMnc0zKgDNtczippyRoXkQwGEUmcPVjPrXTRXf2NkvjFtrdqAW3tx1YSlXZTml
VHOr6gSDtdCIlw==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:53 2026 by rpki-client