Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
File: KD3ro7EwXJpI03S6Rzab8fgn7gg.mft (raw, json)
Hash identifier: Zh7KJqmXgyUuLJrQeOnZvlCZtqZgxvnzdQutYvvLR6o=
Subject key identifier: D4:6E:F1:A2:5A:96:CD:8D:89:F6:4E:EA:39:37:71:2F:45:7C:40:6C
Authority key identifier: 28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
Certificate issuer: /CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Certificate serial: 019CF429A33B818C29E9662439E40D616E47
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
Manifest number: 0BBA
Signing time: Mon 16 Mar 2026 01:01:35 +0000
Manifest this update: Mon 16 Mar 2026 01:01:35 +0000
Manifest next update: Tue 17 Mar 2026 01:01:35 +0000
Files and hashes: 1: KD3ro7EwXJpI03S6Rzab8fgn7gg.crl (hash: 6pZCSvR7pb28OCJRS/5/FB1Fx0kTgm+4eYYi98q8nVI=)
2: OQ2Ehq2LNnkoW69ybvSmF7Wii1o.roa (hash: R70NXYY+s+0zLQXH0/qTZ8MSPj794apmQlMiNuT9CX0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 17 Mar 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:f4:29:a3:3b:81:8c:29:e9:66:24:39:e4:0d:61:6e:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=283deba3b1305c9a48d374ba47369bf1f827ee08
Validity
Not Before: Mar 16 01:01:35 2026 GMT
Not After : Mar 17 01:01:35 2026 GMT
Subject: CN=d46ef1a25a96cd8d89f64eea3937712f457c406c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:30:17:d3:19:e2:9a:b9:0d:ea:e7:5c:e4:19:
99:b5:95:df:f9:8e:5d:76:50:72:19:6a:e4:2b:79:
ac:d7:05:b2:71:9f:70:f9:b4:60:1d:d7:08:8a:82:
3e:21:18:38:b7:d0:de:be:58:e9:fa:f8:0b:77:26:
24:62:ec:86:d9:e8:6e:ae:88:55:5f:ba:0d:ce:af:
7d:7b:f5:c0:3d:b5:58:6e:d1:43:b1:4f:5e:5d:c3:
38:27:d3:c9:bf:0e:20:c2:35:9a:99:a6:b4:50:af:
2e:55:9f:d4:a5:86:7e:17:55:68:38:75:ad:c5:cb:
2a:e8:ae:57:59:1b:0d:de:28:f9:2f:be:2d:b5:d9:
f9:9a:ab:d8:24:33:a1:ed:5a:a8:94:b0:76:3e:66:
a2:4c:aa:4a:a2:1a:7c:76:cc:ce:c4:19:38:76:77:
28:e7:51:c2:38:be:b3:11:6c:1b:93:01:84:8f:33:
3c:cb:e7:be:f2:d8:44:22:44:ee:eb:f3:41:e1:b9:
66:11:d4:e2:c8:54:13:34:2a:43:39:81:b4:c5:92:
2d:dc:2a:70:5e:9e:f5:7a:ef:7b:39:52:25:90:dd:
8e:0c:34:98:69:47:5f:0b:97:c3:67:bb:53:0a:2c:
8d:57:d8:80:4a:f7:57:43:7b:a7:5d:32:4f:d4:04:
4e:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:6E:F1:A2:5A:96:CD:8D:89:F6:4E:EA:39:37:71:2F:45:7C:40:6C
X509v3 Authority Key Identifier:
keyid:28:3D:EB:A3:B1:30:5C:9A:48:D3:74:BA:47:36:9B:F1:F8:27:EE:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KD3ro7EwXJpI03S6Rzab8fgn7gg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/e5dfa9-5196-48cd-9178-5a31f620b04a/1/KD3ro7EwXJpI03S6Rzab8fgn7gg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a2:ba:b2:38:7d:8f:ee:50:31:70:79:c9:97:cc:88:e8:f0:35:
8e:58:f5:e1:e4:90:a5:63:0d:a5:2a:c2:b5:83:96:25:94:1e:
ca:d0:0c:b5:85:81:87:68:ed:db:fc:b6:27:ac:ce:f2:92:98:
25:70:28:8a:24:2a:db:82:92:88:9e:11:77:fb:ba:cd:a3:32:
7b:c4:2f:17:31:80:f9:79:23:c2:8d:36:72:16:86:7d:7b:21:
e4:1e:70:52:c4:93:8f:a7:2d:4d:f3:16:4a:d2:c7:20:64:c5:
17:96:61:6c:d2:65:68:ec:79:0e:63:cb:48:2f:91:4a:9e:f6:
ef:4d:9d:9b:ee:98:d8:00:05:d3:b0:5c:9f:3a:08:08:92:7f:
2c:d5:fe:17:ab:31:cf:a5:35:3b:ee:4b:87:d0:71:5a:3b:40:
4e:69:85:36:16:95:7a:aa:27:a2:b5:60:a6:37:97:8d:00:6c:
e1:c8:be:8b:6a:10:71:39:a0:f4:6b:55:59:de:11:42:fd:56:
3f:b1:44:4d:54:60:e7:35:23:7a:5d:40:4a:fd:3d:f7:e6:61:
76:a5:9c:a9:39:57:50:39:5e:e1:d7:cb:b8:ac:22:ac:49:80:
56:bc:3f:57:5c:73:7e:79:f2:b9:13:61:03:65:83:d1:9e:8f:
45:b6:63:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 16 03:00:15 2026 by rpki-client