Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
File: KQhfxTTBPgiC4mColfPPDFVD7wg.mft (raw, json)
Hash identifier: LpEAxq6jw/dKsiaeYzNi7Bibw8hJEhdCdMVa7UfhDVA=
Subject key identifier: 67:4F:82:E9:89:35:88:01:B5:D2:29:8F:5F:FC:29:46:EE:53:8D:52
Authority key identifier: 29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
Certificate issuer: /CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Certificate serial: 019D389C429EA0465CB56BECE12318B9F7EA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
Manifest number: 0805
Signing time: Sun 29 Mar 2026 08:00:57 +0000
Manifest this update: Sun 29 Mar 2026 08:00:57 +0000
Manifest next update: Mon 30 Mar 2026 08:00:57 +0000
Files and hashes: 1: KQhfxTTBPgiC4mColfPPDFVD7wg.crl (hash: j5NSZfXHct1qXZ0sbDHOd7/XaaQfM59Dz6DmUCQjXHU=)
2: Xz9ZzxndKI0PcrapUKoUCMQ3X_Y.roa (hash: iobEnFpnj2gMfTgfXBWjm230a5l/fYY/rsdkSlzHTBY=)
3: fLAF4G67hv9tPfc_3UKCBvCfSlg.roa (hash: 3BmIz1KJKD3N0MlZqF9hPkHknhq/hRGM3d77oRfIrWk=)
4: zkEDbiGN36tLEUPTADK7tT6KZy4.roa (hash: heFMDQ/ngRlQqjUHbU5e/JEcSh3lbS47ak2zBoYzTAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:42:9e:a0:46:5c:b5:6b:ec:e1:23:18:b9:f7:ea
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29085fc534c13e0882e260a895f3cf0c5543ef08
Validity
Not Before: Mar 29 08:00:57 2026 GMT
Not After : Mar 30 08:00:57 2026 GMT
Subject: CN=674f82e989358801b5d2298f5ffc2946ee538d52
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:2b:4e:c2:b7:cf:08:0e:60:1f:e3:ad:10:e0:
49:38:a1:80:ae:54:b1:98:7e:f1:68:01:01:8c:9f:
64:40:7c:3b:7f:c8:21:eb:79:c2:ff:13:12:e2:67:
d9:ee:80:5a:ff:45:d4:ce:fb:03:0a:d4:a1:32:39:
db:ad:35:5e:89:11:d0:49:96:4c:21:48:82:80:3b:
66:23:79:8c:7d:b4:45:d3:15:a7:45:51:83:cf:6a:
d9:26:a5:47:94:84:99:82:59:15:a8:d2:eb:a8:6a:
8c:99:dc:b4:cf:db:37:21:8e:c7:20:7e:42:6c:24:
01:30:90:43:9d:28:cf:cb:94:25:3e:50:ca:8d:9d:
40:3c:94:5d:0b:fd:30:b2:14:0b:5d:80:14:7f:92:
bc:49:da:f0:4f:3f:cd:64:16:36:48:4b:c1:29:eb:
c7:c9:0a:d4:04:7f:a3:15:4c:e5:2d:e1:71:56:2a:
24:b1:e7:e9:d8:1f:b4:e8:e6:8c:d2:e6:3a:ea:df:
e8:96:5c:59:ce:78:e2:dc:78:d4:0b:38:d8:58:8e:
43:3a:36:1e:53:3b:b8:9c:4d:94:4e:91:69:82:4d:
2e:e7:85:7e:f9:47:83:94:85:43:4a:c6:ae:33:35:
34:c0:b7:61:bc:18:88:1c:3c:a0:ff:7f:bb:0c:66:
a6:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
67:4F:82:E9:89:35:88:01:B5:D2:29:8F:5F:FC:29:46:EE:53:8D:52
X509v3 Authority Key Identifier:
keyid:29:08:5F:C5:34:C1:3E:08:82:E2:60:A8:95:F3:CF:0C:55:43:EF:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQhfxTTBPgiC4mColfPPDFVD7wg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/41/56d490-0196-45ac-83eb-c3297129e4d3/1/KQhfxTTBPgiC4mColfPPDFVD7wg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
13:a3:b8:2f:d5:75:23:75:99:a6:f0:e9:21:84:4b:90:2d:4f:
c8:42:ac:96:23:fe:46:71:b4:8f:3a:c0:e7:84:c2:a3:fd:42:
aa:d2:38:69:9b:45:ed:08:d4:4b:c8:ed:6b:c7:65:6a:bf:86:
5c:b9:1b:85:74:c0:45:9f:14:6a:95:ab:d6:33:67:e2:cf:70:
bd:cf:d1:4c:96:19:d5:d3:de:d6:72:cf:93:b7:1a:df:82:59:
4e:18:e7:57:10:6a:62:19:51:34:4e:cf:6f:21:7f:08:b4:ca:
ff:fa:98:9b:ee:ef:68:76:8e:e8:a2:51:ee:c7:a6:11:ca:3f:
9a:75:c4:ce:d1:e9:9d:78:a5:a9:cd:4b:33:5b:20:51:10:f0:
ec:18:3a:f2:f7:59:23:3a:c4:ba:ec:51:e5:60:8a:10:0e:aa:
ec:36:4e:be:7c:03:9e:2f:a1:b6:60:ac:cc:fb:ee:4e:76:29:
f6:6c:63:25:f0:07:ab:2d:4f:52:a0:99:ac:0f:ae:64:87:16:
79:b0:53:d5:84:c1:05:f8:25:0d:d3:f0:8e:0d:9b:c2:9a:4f:
ca:f2:e8:7b:89:3a:64:df:0b:77:27:b8:06:f8:ea:8b:05:b1:
ec:b5:9c:e7:84:3d:9d:aa:b0:83:3b:91:43:19:56:1a:76:6a:
89:96:95:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:46 2026 by rpki-client