Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
File: KdlQvBhFV79QTPK3yUp9zsCHbWY.mft (raw, json)
Hash identifier: PJGEklhPeAGoINlhmlY5poOi+u+06rOC8+f4N/VMqs0=
Subject key identifier: D6:29:D8:0A:68:BD:DE:41:47:19:13:E5:C1:F6:A3:84:1E:34:C8:05
Authority key identifier: 29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
Certificate issuer: /CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Certificate serial: 019D39AEB2128D142E9F2AD6D6A205CCF1E0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 13:00:43 +0000
Manifest this update: Sun 29 Mar 2026 13:00:43 +0000
Manifest next update: Mon 30 Mar 2026 13:00:43 +0000
Files and hashes: 1: KdlQvBhFV79QTPK3yUp9zsCHbWY.crl (hash: Jp+JgYPYYFLDLAZRcQYGWjaXB3Ustvq8Vq0HUzLkVbM=)
2: bXOv_CUuxonwS19Bf5bYfNwVcEw.roa (hash: pgxwkEVra6Le7zeKVNiooLUsbulw8SiiT7aDE/ZBWEo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 13:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:ae:b2:12:8d:14:2e:9f:2a:d6:d6:a2:05:cc:f1:e0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29d950bc184557bf504cf2b7c94a7dcec0876d66
Validity
Not Before: Mar 29 13:00:43 2026 GMT
Not After : Mar 30 13:00:43 2026 GMT
Subject: CN=d629d80a68bdde41471913e5c1f6a3841e34c805
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:0e:89:96:90:4d:c1:6d:1b:7c:ca:6c:f2:d6:
08:04:e1:41:8a:56:32:6e:44:9f:e6:b1:63:33:cd:
c4:05:b0:59:4a:bf:0c:dc:42:93:f5:fc:c0:27:02:
74:b3:61:00:34:d4:1b:17:37:4d:f9:c3:7c:15:09:
33:af:73:d7:a6:d6:65:29:91:a4:be:dc:24:84:15:
03:4a:1f:18:54:83:10:db:6e:bf:ac:bc:c3:1b:0c:
90:88:83:94:c8:fc:a6:33:67:26:cc:a4:64:e7:7b:
30:dd:00:49:f2:bf:12:c3:dc:d2:60:39:e8:af:01:
d9:16:9c:5d:31:c1:67:72:9a:1e:91:f9:a4:5c:90:
a3:79:f7:fe:5e:24:dc:36:52:89:89:4e:db:81:d1:
67:06:27:4c:a1:96:5b:27:5b:6e:3d:da:15:a6:75:
0c:5a:e1:a8:a9:d1:6f:b7:7e:33:20:97:59:1c:68:
82:7d:f1:87:8c:79:7b:dd:c5:1e:35:eb:78:0c:e5:
c4:83:69:f2:a0:19:1d:a1:8d:77:0e:b2:a6:7e:07:
1e:ea:76:6c:fb:3e:36:28:b9:00:eb:e4:42:03:a1:
59:1c:16:4e:22:1b:83:09:b5:8b:c9:aa:6b:6e:b2:
a5:f1:b2:ba:2e:bf:b7:33:eb:9f:b9:a3:04:cb:f5:
6c:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:29:D8:0A:68:BD:DE:41:47:19:13:E5:C1:F6:A3:84:1E:34:C8:05
X509v3 Authority Key Identifier:
keyid:29:D9:50:BC:18:45:57:BF:50:4C:F2:B7:C9:4A:7D:CE:C0:87:6D:66
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KdlQvBhFV79QTPK3yUp9zsCHbWY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/772fea-4715-4010-8c1e-dee66a35506c/1/KdlQvBhFV79QTPK3yUp9zsCHbWY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
46:6b:bd:fa:f8:c5:43:0d:0d:ef:e2:0d:54:48:03:41:c3:80:
f3:a4:ea:e2:fe:3f:f9:49:b4:ec:bd:a2:fb:51:ba:7c:cc:47:
07:17:e1:00:22:2a:c4:3a:34:fb:f0:7e:d8:4c:b1:1d:20:1b:
db:e1:67:76:84:23:3b:52:be:cb:03:c7:f4:94:b1:b2:3e:a2:
5a:b0:48:d5:2f:d1:b9:7f:4c:5e:f2:f5:d1:93:08:1d:43:ee:
aa:00:de:a5:e9:29:16:bf:4b:06:c0:14:4c:aa:14:e6:dd:89:
f7:36:b2:fa:c9:9f:66:18:59:7b:00:6b:85:87:1d:e6:98:d3:
85:68:20:f4:2e:ff:b6:4d:65:0c:16:a8:af:70:29:90:1e:3c:
be:3b:d4:d6:13:79:8d:b8:5e:5d:b6:5d:aa:c5:7b:3e:4d:37:
48:da:39:09:7c:41:83:c2:3a:52:db:cc:de:aa:2e:c4:ae:25:
e5:ce:0c:bf:49:2e:ca:e1:e0:46:a2:0a:96:74:36:a2:2b:f9:
05:ae:0a:7b:cd:65:74:8f:e6:12:85:e4:b2:26:dd:33:6c:7f:
6a:55:fc:e2:ea:be:5b:d0:6e:e8:8b:97:b9:c6:ed:79:cd:d3:
e7:ed:24:c8:e7:77:7f:8e:3b:68:06:8c:66:a7:d7:10:7f:da:
be:d0:98:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 21:32:21 2026 by rpki-client