Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
File: KqFL_4NIDRDND767gLLLUJH8-C8.mft (raw, json)
Hash identifier: pygWdqe4RM/ppXOKS5gCV7rwHHgmE/A56K4TvtEO2wM=
Subject key identifier: 61:E5:3E:0C:7A:AA:E9:B9:27:4E:6E:4A:1F:77:AD:08:2C:DC:0F:47
Authority key identifier: 2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
Certificate issuer: /CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Certificate serial: 019D37F7076929AA04045D0BCC416BA42C5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
Manifest number: 188E
Signing time: Sun 29 Mar 2026 05:00:29 +0000
Manifest this update: Sun 29 Mar 2026 05:00:29 +0000
Manifest next update: Mon 30 Mar 2026 05:00:29 +0000
Files and hashes: 1: H4vZZgy8L-83loBlfJ2Z1eRuVjI.roa (hash: n3TtZKW8jTF8quOeFDtPkhw+ZhgsE56xwHQyTvZ/ifg=)
2: KqFL_4NIDRDND767gLLLUJH8-C8.crl (hash: gRa++RuOACLKAppGQ/mNeJEsLOxbgGv4IthK5JMDnu8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:07:69:29:aa:04:04:5d:0b:cc:41:6b:a4:2c:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2aa14bff83480d10cd0fbebb80b2cb5091fcf82f
Validity
Not Before: Mar 29 05:00:29 2026 GMT
Not After : Mar 30 05:00:29 2026 GMT
Subject: CN=61e53e0c7aaae9b9274e6e4a1f77ad082cdc0f47
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:6e:7c:ef:33:f8:cb:ba:5d:f1:b4:d5:fc:b4:
13:b9:a6:a2:90:c3:aa:4b:13:07:61:c0:f7:79:13:
93:f4:28:33:e4:47:5b:0f:18:b2:a3:fc:66:4c:32:
ce:70:89:9f:1e:1e:b4:18:f3:65:4d:1b:eb:29:55:
4a:34:21:a3:0d:a4:6b:63:cf:e4:bb:8d:5c:9e:86:
f5:22:1b:d1:7b:20:8c:16:a0:cf:81:aa:83:a8:ce:
1a:5b:29:ef:0a:39:49:e3:99:e7:46:9b:05:57:29:
e5:74:65:5a:ea:8b:3a:00:3d:a6:20:d1:e3:07:02:
4e:63:57:3b:5b:19:1e:67:41:85:3a:d1:fa:fe:1e:
33:86:ba:06:b0:a5:56:14:96:07:60:1c:37:96:b5:
25:0d:a9:26:2d:8b:31:78:8f:57:a0:40:75:a2:ee:
b4:69:54:c6:fb:c0:de:10:a3:36:e2:d1:95:d5:4c:
1b:a4:5d:46:89:5a:82:16:ca:da:20:3a:31:bd:5f:
5f:a0:df:86:c1:98:03:95:56:90:c0:bd:f8:74:5f:
9b:94:b6:12:05:f4:51:8d:9c:d8:fa:df:9c:d9:44:
0d:01:16:2a:dc:e0:c1:8d:17:57:1a:0a:ff:35:5e:
61:f5:e0:21:df:af:13:5c:b9:22:09:4a:45:c4:63:
56:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:E5:3E:0C:7A:AA:E9:B9:27:4E:6E:4A:1F:77:AD:08:2C:DC:0F:47
X509v3 Authority Key Identifier:
keyid:2A:A1:4B:FF:83:48:0D:10:CD:0F:BE:BB:80:B2:CB:50:91:FC:F8:2F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KqFL_4NIDRDND767gLLLUJH8-C8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/b19811-fa23-47b0-b577-17698f88c3bd/1/KqFL_4NIDRDND767gLLLUJH8-C8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6e:a7:d0:3a:e0:d3:c9:eb:0f:60:d3:cc:5d:fe:bd:a9:30:d1:
d5:48:12:f4:0f:ad:a9:f3:7e:f1:c6:34:e5:fe:92:29:64:84:
8d:0b:21:9c:32:7e:59:93:bf:78:f2:6a:c7:b2:b8:85:e6:b4:
38:57:e9:83:b2:5f:bc:23:9f:60:3a:26:af:42:52:14:0b:33:
7a:4e:71:27:da:1e:fb:12:23:ce:a6:e3:0e:23:3a:80:9f:ec:
43:68:92:1d:10:b5:86:5e:cc:a5:66:b5:20:2a:88:b7:93:6c:
52:62:85:b0:1e:7e:78:ff:fc:ff:24:e4:ef:84:61:ad:c7:a9:
fa:85:3b:48:7f:63:1d:f4:23:c5:40:ae:00:cf:fe:50:2d:b7:
7d:24:e8:a5:40:a3:a9:bf:5a:50:cc:15:69:86:83:51:01:41:
59:ec:cf:b9:82:64:99:05:29:d3:7c:13:ba:a9:dd:6f:1e:a8:
a7:7f:bd:b7:61:1e:20:62:e3:ce:25:03:1d:55:97:28:c8:6b:
97:7d:1d:fd:91:21:95:48:27:cf:da:d0:97:6b:91:de:c2:a3:
4c:15:88:40:81:6c:e5:85:a6:4d:09:45:e9:25:a0:04:42:d4:
76:ae:c3:2c:3d:3b:de:79:73:17:57:b5:08:57:73:d6:ce:dd:
fa:2a:9f:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:57 2026 by rpki-client