Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
File: KH4cl_cfNVhn4_uHfyGqUTC2z10.mft (raw, json)
Hash identifier: aPHiBNwob5rYlPvSxklkXdYCn5wE4SEJ7s2hQm0bV4g=
Subject key identifier: CA:9F:C7:D9:A1:94:7E:9F:5C:AD:BF:D0:D3:C7:FD:B2:48:79:D6:DC
Authority key identifier: 28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
Certificate issuer: /CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Certificate serial: 019D37F6FC095E38756D821D798B03228404
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
Manifest number: 0CDB
Signing time: Sun 29 Mar 2026 05:00:26 +0000
Manifest this update: Sun 29 Mar 2026 05:00:26 +0000
Manifest next update: Mon 30 Mar 2026 05:00:26 +0000
Files and hashes: 1: 4VL55TR7n8zY5sjEwyy-tDqTfgs.roa (hash: 7BDvUnPmZt5rM/QuBJhcT4U2nlJB/FKzg2OukOPZ9uQ=)
2: KH4cl_cfNVhn4_uHfyGqUTC2z10.crl (hash: 02kx2K87ROELPylM13hmbVkfY6p2stsSlCSbm6S8Ofg=)
3: KnCfg8nTQsfpTcM_cEW8Uzz8x5M.roa (hash: 2VYLtBiQmGKXrUCSv3SxyNnrS3C6FcV2aiRtsHxSXSI=)
4: arOEcwZhUNm3Hj36Uwng_wKeV9E.roa (hash: B20xitz9JymuHol/jxxjXdJ6lXpi2xW/yyUd53yf3d8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:fc:09:5e:38:75:6d:82:1d:79:8b:03:22:84:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=287e1c97f71f355867e3fb877f21aa5130b6cf5d
Validity
Not Before: Mar 29 05:00:26 2026 GMT
Not After : Mar 30 05:00:26 2026 GMT
Subject: CN=ca9fc7d9a1947e9f5cadbfd0d3c7fdb24879d6dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:14:8f:7f:f8:4a:94:bd:d5:8e:10:37:d1:f7:
76:59:24:9d:2b:10:4d:e4:fe:fe:ac:77:58:e8:27:
52:3e:4b:18:ae:02:a5:1d:84:07:d5:c3:54:4a:c2:
6b:e3:26:28:4b:1f:d5:5f:5e:94:1c:11:2f:4e:af:
ae:dd:0a:f5:e7:bd:18:d5:d9:3b:63:64:51:b5:cc:
70:5b:54:33:4c:47:81:7b:1c:26:79:d7:4a:5e:b4:
73:f6:92:f2:75:25:64:67:71:dd:a7:f4:d9:a1:31:
a6:eb:e5:bb:91:35:92:3f:c6:7f:82:85:5d:4a:49:
9f:95:a9:dc:e5:93:af:42:fe:2a:3b:55:be:ed:92:
8c:d8:72:96:a0:9a:50:b5:d5:a4:df:9f:67:1f:dd:
c4:b0:45:0d:71:c1:c4:05:65:91:51:77:ff:c4:ed:
77:33:23:22:9c:97:b5:f2:6f:60:b6:94:35:56:75:
e0:27:94:77:d8:f4:24:8b:c9:db:03:a8:28:98:7d:
ee:72:57:ec:04:b5:2d:56:a1:38:3e:85:56:f7:79:
f6:54:8c:dc:2f:9d:bc:59:2d:86:ae:67:56:bf:d6:
77:73:a4:4b:69:3f:93:b5:65:12:9a:d3:1d:d7:d2:
55:78:ce:a6:5e:8a:1f:29:77:fb:c4:e8:e0:6c:98:
7e:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:9F:C7:D9:A1:94:7E:9F:5C:AD:BF:D0:D3:C7:FD:B2:48:79:D6:DC
X509v3 Authority Key Identifier:
keyid:28:7E:1C:97:F7:1F:35:58:67:E3:FB:87:7F:21:AA:51:30:B6:CF:5D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KH4cl_cfNVhn4_uHfyGqUTC2z10.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/af161b-ef51-44bd-8e0a-9eb3c682b009/1/KH4cl_cfNVhn4_uHfyGqUTC2z10.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
38:f2:d3:31:2a:6c:7e:8e:62:1b:de:c4:ef:a6:5a:5a:d9:01:
0f:94:89:f5:94:65:1d:66:2f:47:5a:04:a5:77:2b:4a:3a:5a:
bd:86:32:f7:15:42:25:2f:9c:11:40:fc:45:e8:57:91:77:c8:
e3:2d:a1:75:5a:b8:cc:26:20:14:0c:42:02:53:8d:53:a7:a0:
ee:f1:d8:79:14:a9:b2:5d:e0:49:ba:99:76:78:bc:dd:05:7c:
c3:a8:85:b5:3f:fe:54:7e:e7:2a:03:c0:e2:ea:bd:d0:18:67:
45:82:1a:7a:49:5d:75:91:58:0e:e3:d5:4e:c0:19:9d:53:72:
8b:0d:17:6b:bd:f4:42:62:ba:aa:b4:8c:79:1c:24:c8:60:c2:
68:70:31:3b:1b:be:cd:a2:cd:dc:f9:4b:4c:03:d4:13:fe:09:
07:70:a1:f0:68:06:4d:1b:de:44:25:49:da:ff:4a:48:e9:90:
41:95:e1:e4:8a:ff:86:5d:77:79:4d:4d:bb:23:e0:3d:76:b2:
fe:6c:4c:bf:63:76:5f:fc:73:4e:1a:a6:61:cc:fb:41:a9:12:
1d:76:b2:2e:f0:c7:b3:f6:de:4c:d0:94:ba:46:7e:5a:f8:bd:
df:fb:ab:87:b3:f9:fa:46:bb:74:11:7f:9c:53:88:27:b2:92:
11:b6:15:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:27:27 2026 by rpki-client