Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
File: kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft (raw, json)
Hash identifier: shV99/mInOWxuiyN5dsa7If4hwhzSBihrf6VZMHYMEs=
Subject key identifier: 77:7B:01:F2:16:64:18:40:3F:84:AB:22:48:77:F2:A7:2E:3C:6C:C4
Authority key identifier: 91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
Certificate issuer: /CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Certificate serial: 019D3909AFF7FB2A064BC711A957CA41DCBB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
Manifest number: 189C
Signing time: Sun 29 Mar 2026 10:00:29 +0000
Manifest this update: Sun 29 Mar 2026 10:00:29 +0000
Manifest next update: Mon 30 Mar 2026 10:00:29 +0000
Files and hashes: 1: kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl (hash: z2NX/fn4YrwCTiN4i8NMDoya1422kGVtun/5w3Ec7Og=)
2: oPGWWYaAX9Sd9i7DrFXYN9EHrLY.roa (hash: gWn6/oluANX78L0hnctxoTZX7zawfsnjM4XEj/gL06s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:af:f7:fb:2a:06:4b:c7:11:a9:57:ca:41:dc:bb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91c1c85bf5c53471a997ef9fa999d0c16be85444
Validity
Not Before: Mar 29 10:00:29 2026 GMT
Not After : Mar 30 10:00:29 2026 GMT
Subject: CN=777b01f2166418403f84ab224877f2a72e3c6cc4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:95:d3:9c:59:1c:aa:b1:cf:6e:63:2a:0e:71:31:
0f:12:68:e4:09:17:78:c0:c3:98:da:c9:53:d4:86:
d5:6d:44:cc:ca:4e:a1:c1:33:fe:04:cb:ba:29:e2:
d0:36:10:97:3e:35:2c:99:f0:58:aa:6b:25:4f:35:
a8:6f:8a:d4:5a:a3:05:6b:69:82:3a:46:58:bd:4a:
0d:b2:ed:73:c2:25:f8:5d:44:d2:ef:7b:0e:2f:a2:
66:26:90:1b:a7:f4:8b:26:92:a2:ff:0c:c6:2b:ef:
cb:be:59:c5:40:3c:09:bd:1f:5b:17:03:af:36:49:
a1:21:f1:d7:7d:e1:f0:00:a0:74:31:45:93:41:89:
84:67:90:ed:88:1f:3c:68:95:64:10:b5:e3:90:47:
3e:40:c9:ca:a8:d3:3f:63:1d:03:db:3b:78:a2:39:
1c:57:d4:fd:82:33:e3:77:54:99:6d:8a:42:54:fe:
4c:9f:0a:42:f6:c4:c9:3a:c6:23:4f:9a:34:3c:7f:
83:b8:9e:2c:2f:24:72:4a:b1:4e:cf:b2:a3:92:be:
2e:8e:b6:32:3d:5d:55:92:d7:4c:72:9a:ca:9c:5b:
3a:1b:33:0b:cb:c2:0e:41:17:08:52:93:56:55:9b:
9b:2e:66:75:2c:2b:fc:3c:3b:30:8c:76:99:a4:7e:
08:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
77:7B:01:F2:16:64:18:40:3F:84:AB:22:48:77:F2:A7:2E:3C:6C:C4
X509v3 Authority Key Identifier:
keyid:91:C1:C8:5B:F5:C5:34:71:A9:97:EF:9F:A9:99:D0:C1:6B:E8:54:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kcHIW_XFNHGpl--fqZnQwWvoVEQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/0347d3-e54c-44c0-8f7a-4514374e6ffa/1/kcHIW_XFNHGpl--fqZnQwWvoVEQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:09:0d:eb:67:f6:04:8e:88:c9:c4:5e:f4:0e:fc:9f:01:3b:
d5:bf:35:2b:b4:f9:0e:9a:8d:fb:b8:d0:a1:1c:2b:3c:50:00:
54:57:f7:42:d3:08:a1:a7:17:85:dc:12:c1:8b:e3:87:39:a2:
c6:73:14:6a:33:32:a3:b0:93:d8:12:09:b7:2f:11:9e:32:2e:
68:cd:f3:ef:a0:21:21:30:a5:4b:c4:44:8e:91:ff:d5:3e:f3:
7b:e0:19:d8:bc:85:c9:48:89:58:e7:bf:81:d7:69:ea:0f:c4:
2c:b3:90:05:6a:31:ad:fe:a9:fb:95:40:99:45:e9:70:12:44:
2d:a5:09:58:25:8c:0f:38:36:3a:5d:dc:c8:41:04:a5:73:6c:
6a:e2:00:b1:84:15:25:66:f8:0e:83:b8:45:d0:90:8f:2e:d1:
8a:60:c6:11:69:c2:67:b2:2b:46:30:0d:1b:06:ce:27:1f:27:
a3:f1:0c:49:84:4e:e2:9b:bc:10:b7:bb:fa:aa:11:05:98:85:
6d:d9:29:f6:5a:5d:c0:fa:28:e3:3b:18:dd:f4:14:b2:14:d2:
80:e5:1b:f6:9a:d4:9b:8d:e0:90:8d:ca:d0:24:86:ba:88:4b:
50:c3:a6:89:45:56:0c:b3:db:9c:a6:71:5b:1c:97:52:55:f0:
8d:74:03:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:27:39 2026 by rpki-client