Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
File: KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft (raw, json)
Hash identifier: ZRvE/CmnVYU/x4gDoE+sRRMh1fp2VDiBPBM2JkKaxww=
Subject key identifier: 27:72:64:C2:2F:C8:AE:80:CA:DC:11:1D:03:92:95:B8:9F:6D:24:F3
Authority key identifier: 29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
Certificate issuer: /CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Certificate serial: 019D39417A22D89E1F6799C960AEC56BFD4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 11:01:25 +0000
Manifest this update: Sun 29 Mar 2026 11:01:25 +0000
Manifest next update: Mon 30 Mar 2026 11:01:25 +0000
Files and hashes: 1: KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl (hash: gfhWiD35H0rUBNb7EWPH7XyoCCB8iD60l1WKAdiuPQQ=)
2: wkII8mT_euYThV1XwcC1p09SIq8.roa (hash: KTBmbNMYpZwuYjtqFt1PYs9OEJ/5++AGe1s/9JAMhzA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:7a:22:d8:9e:1f:67:99:c9:60:ae:c5:6b:fd:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293bc3a5749733104f7b9cc0512dade136d70ad0
Validity
Not Before: Mar 29 11:01:25 2026 GMT
Not After : Mar 30 11:01:25 2026 GMT
Subject: CN=277264c22fc8ae80cadc111d039295b89f6d24f3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:05:dd:28:d4:e9:8c:46:3e:94:b4:32:0f:fb:
12:44:fc:6d:fc:cc:c5:04:00:de:36:db:f5:a4:12:
aa:80:bf:ed:d4:4e:34:7f:b6:cc:8a:b7:44:16:7d:
60:37:77:f5:49:86:b4:9b:4f:19:f7:21:03:1f:7c:
d8:c4:da:a7:2c:94:95:52:42:27:cb:be:ea:db:97:
33:40:5f:3a:c4:a8:4a:ea:a9:fd:be:70:af:9c:e4:
58:ca:03:87:91:31:5d:10:68:15:3e:2b:a4:86:d7:
b9:e1:d1:6a:bf:fa:6f:51:6c:d7:62:b3:38:e7:51:
95:c5:e7:c9:4a:d9:12:54:74:7f:75:a8:b6:be:35:
1b:a6:49:a4:06:a6:f9:a1:75:05:3c:d4:03:f0:0d:
da:52:c8:cb:e5:44:00:bd:80:79:41:b1:6d:c4:d1:
d1:a2:81:ea:9d:b6:69:69:ca:44:a7:d2:58:4a:b8:
fe:fb:70:99:ad:ee:d0:c3:34:ea:14:b5:d6:4f:cc:
d6:10:4c:24:7e:af:ce:74:17:42:f6:ed:38:74:30:
4d:85:64:4d:cc:2e:ba:9e:3f:1e:fe:2f:fb:e7:2f:
d3:a5:2b:4f:4b:72:b6:c0:46:94:0d:6a:85:92:96:
c9:94:35:46:67:c9:2c:80:49:2a:eb:99:3f:32:84:
30:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:72:64:C2:2F:C8:AE:80:CA:DC:11:1D:03:92:95:B8:9F:6D:24:F3
X509v3 Authority Key Identifier:
keyid:29:3B:C3:A5:74:97:33:10:4F:7B:9C:C0:51:2D:AD:E1:36:D7:0A:D0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KTvDpXSXMxBPe5zAUS2t4TbXCtA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/bb7f9e-15c0-4d55-822b-609a1e8627fd/1/KTvDpXSXMxBPe5zAUS2t4TbXCtA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:a5:ba:1f:f4:c0:cc:9b:d6:1b:44:3e:34:ca:42:c1:c5:b8:
58:6a:27:55:47:47:d5:d8:a5:0c:dc:f2:a8:9f:2b:51:cb:cd:
c5:50:a3:e4:5b:9d:6f:ef:36:b7:9c:d6:94:4d:da:b1:eb:b5:
69:b4:4e:68:4b:2b:31:65:05:32:11:75:95:62:c8:72:71:2c:
0c:d6:2b:9e:2a:4d:b0:7e:e7:22:e2:41:d5:2e:2d:73:05:93:
d8:99:65:64:82:f7:ee:ef:fa:e9:c4:55:e7:e4:1d:54:e4:d7:
83:dc:1f:2c:e6:d2:e7:54:61:2c:fb:af:d1:fa:55:22:d6:44:
84:73:b4:85:ab:7a:7f:b9:c0:f8:bc:bd:3b:e2:59:ba:f3:80:
68:63:be:99:a3:f7:9b:c3:ff:7b:d6:cd:6d:10:f7:d1:7f:5c:
e8:7c:5d:8d:f2:90:9f:87:a5:37:b1:a5:4c:e9:26:e3:8b:7e:
0f:e4:85:c2:5e:a4:25:b8:a2:47:f1:5b:3b:b9:fb:f0:67:32:
1a:f5:da:2e:33:10:09:b3:28:9e:5d:91:3f:af:86:1b:69:3f:
d3:9f:be:c5:a0:33:8b:19:ae:ee:d2:83:7f:f7:cc:9a:7f:64:
e1:59:99:64:85:c3:03:f9:20:08:49:78:e5:a3:4c:41:1e:cf:
ca:05:a3:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:56:01 2026 by rpki-client