Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
File: kHpcTqRTtGyByxNtkrkwmxRsPkU.mft (raw, json)
Hash identifier: cDu3CQJKqDjtCWWZaGmH4r+jmSbhPpF/ErLB+fHY5G8=
Subject key identifier: 1B:6F:29:86:35:E5:43:CC:22:24:94:C9:31:C5:25:BE:F7:81:F2:D9
Authority key identifier: 90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
Certificate issuer: /CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Certificate serial: 019D378983DC1E8637E7DDDEDFB0436EA6A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
Manifest number: 0B9A
Signing time: Sun 29 Mar 2026 03:00:52 +0000
Manifest this update: Sun 29 Mar 2026 03:00:52 +0000
Manifest next update: Mon 30 Mar 2026 03:00:52 +0000
Files and hashes: 1: kHpcTqRTtGyByxNtkrkwmxRsPkU.crl (hash: shxlZ8D2nNT/lE512xNZDNLYQolea0ZxS/zVYWIXd18=)
2: riD84npooDzOqhlvH7nf9Aj294A.roa (hash: O+rbEotKGudbvk9Gq/WMzzdZufBN90ky0PyB//XXeaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:83:dc:1e:86:37:e7:dd:de:df:b0:43:6e:a6:a5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=907a5c4ea453b46c81cb136d92b9309b146c3e45
Validity
Not Before: Mar 29 03:00:52 2026 GMT
Not After : Mar 30 03:00:52 2026 GMT
Subject: CN=1b6f298635e543cc222494c931c525bef781f2d9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:c1:b2:ec:2f:ce:84:61:5d:9b:f6:d6:27:e1:
6e:30:0b:e5:d8:9a:17:5a:7f:6e:47:2f:e2:15:fb:
29:48:db:de:d7:10:81:ae:36:40:11:fb:55:a7:53:
88:dc:27:a9:89:1d:c2:34:84:68:65:b6:99:fb:32:
00:89:bc:3c:53:a3:18:d7:a2:2c:23:3a:69:46:3e:
3f:3e:bb:94:42:a4:06:88:c3:1b:87:c7:22:85:e5:
70:95:71:4c:09:56:ad:e3:7a:96:68:1f:39:fb:4c:
10:a1:74:27:32:e6:c4:be:84:7c:81:82:4b:86:0f:
ce:ec:6f:15:df:8a:87:ab:01:9e:f1:73:53:ff:4b:
0a:a6:fd:59:5f:5e:44:74:30:38:22:a5:aa:31:18:
8f:36:71:c0:ff:f5:5b:2b:ca:ff:6c:c6:c0:98:79:
b0:44:e1:b4:a2:f0:e1:c1:12:68:39:86:53:32:52:
69:bc:66:aa:b8:95:ba:4a:35:3c:46:08:7c:4b:d6:
e1:06:a6:00:d1:18:b9:5d:b0:9f:26:01:0e:49:f8:
4a:3f:1f:d1:fe:34:52:7b:34:4c:09:ba:d0:e7:7a:
25:6f:4b:c9:4f:e8:45:54:ae:6a:3c:3d:42:d1:3b:
76:98:a1:f7:91:89:27:2d:b1:5f:77:54:fb:fa:fa:
cf:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:6F:29:86:35:E5:43:CC:22:24:94:C9:31:C5:25:BE:F7:81:F2:D9
X509v3 Authority Key Identifier:
keyid:90:7A:5C:4E:A4:53:B4:6C:81:CB:13:6D:92:B9:30:9B:14:6C:3E:45
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHpcTqRTtGyByxNtkrkwmxRsPkU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/869f62-7a2e-4175-9202-b2a2b8b847b9/1/kHpcTqRTtGyByxNtkrkwmxRsPkU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
99:49:c6:cd:ca:d6:b5:83:b1:8f:30:56:1e:3e:54:03:28:83:
f0:80:53:fe:89:bd:7a:d7:ce:45:92:38:d8:a2:ce:e0:ab:5d:
a1:4b:9e:54:c3:00:47:27:8f:45:84:9f:9d:4e:2c:33:e9:cc:
ac:63:05:f1:b6:c9:84:4b:60:3d:bf:c2:ac:4f:38:83:24:43:
d7:6c:1a:1d:d6:90:3d:b0:6f:1f:77:6f:4d:d2:f0:99:93:d6:
8e:4c:fe:0a:ac:e7:4e:d5:a9:83:f4:2a:46:cd:c3:38:cc:58:
c7:83:35:8b:a2:40:b1:a1:f0:7d:22:37:d1:e4:92:55:31:10:
92:93:4f:11:f3:1f:c6:bd:ae:ab:35:66:4f:a6:b5:7e:96:5f:
59:19:90:7b:3b:c6:56:9a:df:16:84:02:2a:e4:c7:9b:30:45:
dc:b7:cf:c9:c8:7b:92:57:22:da:ee:d4:f9:c1:ee:f5:48:ba:
a2:19:fb:98:66:a4:45:12:2b:fb:14:76:fd:44:74:51:e3:a8:
fd:07:15:75:8b:68:2e:aa:f2:21:a5:31:d0:40:e3:d0:ea:69:
94:f3:71:50:c8:81:5d:7d:3e:47:04:5e:67:7f:08:b7:7b:79:
2f:62:2e:17:fe:de:15:08:28:de:84:ca:1d:87:72:b0:df:45:
23:e9:fd:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:36:28 2026 by rpki-client