Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
File: KqPjBJdiCGjhestHhoLOegvRNTQ.mft (raw, json)
Hash identifier: jtCV8dPiZF5XWGPUI3YklfpbN1UST5QHLKYT3TnFacI=
Subject key identifier: 77:BE:72:E3:16:4A:0E:93:CA:0E:B2:5A:07:42:35:BE:CA:B4:5D:A4
Authority key identifier: 2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
Certificate issuer: /CN=2aa3e30497620868e17acb478682ce7a0bd13534
Certificate serial: 019D390A559ADEC823A370D5A61D55433029
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 10:01:11 +0000
Manifest this update: Sun 29 Mar 2026 10:01:11 +0000
Manifest next update: Mon 30 Mar 2026 10:01:11 +0000
Files and hashes: 1: KqPjBJdiCGjhestHhoLOegvRNTQ.crl (hash: gUKg9Uv+pviQKeQp9QksKI8MBGGju4gPbHppzCdAJHg=)
2: MhVJs-dWDJmrXlKqcMfoLN_84JY.roa (hash: 2g0t0h8Fxp46vhAobXXA0I4CYe8p0TLn16sQB8keFq4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:55:9a:de:c8:23:a3:70:d5:a6:1d:55:43:30:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa3e30497620868e17acb478682ce7a0bd13534
Validity
Not Before: Mar 29 10:01:11 2026 GMT
Not After : Mar 30 10:01:11 2026 GMT
Subject: CN=77be72e3164a0e93ca0eb25a074235becab45da4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:9b:67:2b:88:75:38:ea:83:01:69:75:03:c1:
35:b2:b7:32:a4:25:19:b4:ff:74:9f:5f:16:ad:35:
43:74:f3:8c:6d:81:6e:54:3f:5e:09:6d:7c:43:d8:
1b:fa:73:8d:fe:9c:27:6c:e7:5f:4b:09:0e:72:ac:
46:09:a5:5f:da:42:d3:10:55:36:7a:6b:3e:5c:46:
58:13:62:08:05:98:14:1c:66:4d:e9:ac:2b:1b:c5:
70:e1:1f:ff:70:69:c5:16:f8:05:23:4c:3e:dc:f6:
b2:77:3e:94:40:4f:cb:3f:1f:11:cd:2d:e0:05:34:
5a:a7:07:c9:51:2f:fc:43:0a:a8:0f:ff:7c:e9:7e:
85:a1:82:42:ee:d6:65:4b:8e:2e:2a:76:7e:f8:7f:
8c:98:5c:01:55:95:e0:5c:d5:b2:a1:f8:3a:90:73:
20:b7:5f:03:54:b8:d5:8b:63:46:f1:18:24:6d:8d:
64:bc:e6:3c:45:7f:0e:99:78:b0:4b:6b:d5:6b:c7:
a5:e2:a3:a9:10:80:f7:e1:8c:c0:f5:90:4a:b0:37:
1a:01:c0:5b:51:f1:d8:85:c4:ab:1f:ca:8f:23:71:
71:78:24:fb:2d:69:a2:7d:25:00:60:f5:e4:19:ae:
ba:47:07:c5:11:b8:0b:d7:24:4b:16:d9:af:d8:2a:
9c:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:BE:72:E3:16:4A:0E:93:CA:0E:B2:5A:07:42:35:BE:CA:B4:5D:A4
X509v3 Authority Key Identifier:
keyid:2A:A3:E3:04:97:62:08:68:E1:7A:CB:47:86:82:CE:7A:0B:D1:35:34
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqPjBJdiCGjhestHhoLOegvRNTQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/21/987b3c-f345-4112-9240-a4c0aba9bbeb/1/KqPjBJdiCGjhestHhoLOegvRNTQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:b0:08:af:2d:a0:f3:6c:b5:e5:5c:00:15:79:d3:80:20:8a:
ae:dc:1b:1a:92:a6:30:e0:ec:6b:84:0d:47:d1:f3:e7:79:10:
db:77:c6:cd:d0:16:6a:91:49:99:27:f0:bc:18:60:01:e7:9f:
c7:d9:f6:2c:38:2b:91:b7:e6:83:03:75:74:ee:1c:3b:e4:f9:
93:7e:3e:ab:00:43:ee:e5:f9:8e:83:48:b8:57:15:4b:cd:e4:
fc:67:ff:79:4d:06:16:21:c9:7a:8f:4b:ca:85:f7:41:de:bf:
d6:04:41:96:a8:b8:16:68:0e:ce:3e:a6:e9:fe:61:6f:76:56:
f6:96:f3:a7:a2:54:ab:f2:05:1e:cd:13:75:0b:7b:28:f3:eb:
5a:3b:8b:93:e4:ab:64:b9:a9:df:1f:15:75:ec:fd:9b:76:fb:
82:42:0e:b6:9e:d4:c2:56:0b:2e:7b:93:5c:21:95:2b:b9:68:
64:05:94:25:6e:33:7c:16:57:d5:62:23:54:50:1e:ae:89:fd:
1e:41:88:1e:92:b0:75:a2:3e:2a:8e:79:5f:bb:fc:a1:7e:b0:
5e:21:b6:df:97:07:5b:94:ad:5c:5f:d0:24:83:a3:d3:ce:8a:
f5:13:50:3b:ab:cb:34:0d:bb:f6:0c:9c:65:31:b8:68:2b:05:
40:a9:10:e5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:50:57 2026 by rpki-client