Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
File: KfUkAji4KPFuYCKeJjNQPwSEZZk.mft (raw, json)
Hash identifier: 24wneQnYQrRFFZ9zfuldSAaKO38q9/KxNKFE56jtDRE=
Subject key identifier: F3:88:CA:E7:98:19:1A:95:2E:F2:88:20:E7:AF:AA:40:BB:92:F6:F1
Authority key identifier: 29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
Certificate issuer: /CN=29f5240238b828f16e60229e2633503f04846599
Certificate serial: 019D37898535B1C766B9E2FB25B97603D3B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
Manifest number: 0580
Signing time: Sun 29 Mar 2026 03:00:52 +0000
Manifest this update: Sun 29 Mar 2026 03:00:52 +0000
Manifest next update: Mon 30 Mar 2026 03:00:52 +0000
Files and hashes: 1: 5HzcZ6a4XAtwOavRhWgPVbFXunY.roa (hash: WuFbSIBYf/9ZwaN+lOrty44DR9s11eIeBklLm/eyCus=)
2: KfUkAji4KPFuYCKeJjNQPwSEZZk.crl (hash: HvMjoW0Zri7UpNkev7X5OlQnPGx7+Leugd+kMkIXv10=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:85:35:b1:c7:66:b9:e2:fb:25:b9:76:03:d3:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29f5240238b828f16e60229e2633503f04846599
Validity
Not Before: Mar 29 03:00:52 2026 GMT
Not After : Mar 30 03:00:52 2026 GMT
Subject: CN=f388cae798191a952ef28820e7afaa40bb92f6f1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:74:1e:8d:59:7a:94:fb:08:72:c4:28:4f:a0:
2b:8c:23:e7:a9:92:52:be:1b:71:17:d3:4c:37:44:
91:be:0a:f1:42:92:aa:82:1c:be:ff:41:b2:b6:a5:
07:02:ef:76:8c:45:30:32:af:0c:04:44:9b:26:92:
05:01:f6:62:e6:fe:44:3a:c9:a7:37:3d:0c:af:19:
7c:64:46:01:7a:d7:c8:28:0f:88:36:4b:11:7f:90:
54:ab:80:21:a8:95:7c:b8:55:63:ce:1a:b5:b5:be:
ba:59:5b:0f:b3:a1:7d:7c:f0:88:bc:c2:a3:4c:c2:
10:3b:ff:c5:c2:57:49:8d:c6:3c:25:1d:16:50:b0:
48:e1:9a:d6:55:9c:10:04:5a:82:e6:a4:33:c7:4c:
79:e5:f9:92:08:05:6f:5f:0e:1b:ec:e0:1c:c2:d2:
89:bc:d5:6f:b8:07:fc:a5:ba:ac:4b:3c:04:81:8c:
f3:ec:58:0d:41:fd:7b:2d:5d:49:c1:b1:04:6d:39:
85:5a:95:a3:36:dd:7c:ff:a4:5c:ae:26:a3:cd:d4:
cd:f6:a2:ea:28:c7:72:9a:87:3f:5b:20:b2:e6:b1:
6f:0a:b7:11:7f:9a:9a:1e:4b:4e:c3:30:f1:e3:66:
97:06:0f:29:4b:fd:bc:18:36:d5:72:b4:2a:a4:69:
da:3b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F3:88:CA:E7:98:19:1A:95:2E:F2:88:20:E7:AF:AA:40:BB:92:F6:F1
X509v3 Authority Key Identifier:
keyid:29:F5:24:02:38:B8:28:F1:6E:60:22:9E:26:33:50:3F:04:84:65:99
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KfUkAji4KPFuYCKeJjNQPwSEZZk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0614a6-d01c-4ff2-a993-7246457fd2b3/1/KfUkAji4KPFuYCKeJjNQPwSEZZk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:93:b8:09:7a:a1:75:93:5a:17:14:69:1d:c1:e1:8a:7c:22:
b3:95:aa:26:87:98:af:52:94:9c:04:f5:d3:cf:33:5c:2c:38:
8b:bf:5c:9c:7a:8b:9b:34:99:c9:34:a2:31:f5:a0:1a:2c:28:
62:e1:6c:9a:49:41:37:49:de:bc:8a:d6:62:7e:65:77:48:f5:
d9:96:7b:dc:33:c4:64:db:8e:c7:28:5b:8d:81:74:26:c1:cc:
b6:21:3f:02:c9:8a:c4:34:ca:0f:33:67:0f:b6:a8:9d:4b:3f:
75:b2:3b:17:27:dc:ea:0f:8c:1f:ec:fb:f9:cb:42:4c:34:6d:
63:13:93:77:49:6d:ac:d3:48:b9:20:c7:b0:36:74:89:4d:78:
28:fc:3c:bf:09:e9:c9:50:14:b8:d8:01:25:05:05:f3:7a:12:
81:09:b6:0b:1e:5f:71:3a:17:0b:58:c1:83:a4:82:25:47:f9:
85:d4:6a:3b:d0:8d:92:b3:3b:f5:cb:25:58:0e:02:80:34:5b:
9e:ad:4a:4e:7a:93:92:22:03:dd:1f:45:0c:f6:75:a2:79:f5:
24:2e:93:c5:25:fe:c6:b6:0b:11:d4:4f:44:b4:ee:ef:4f:cd:
a6:7a:31:e4:66:9b:c0:e7:8b:66:56:0c:c9:b7:5f:c4:2e:18:
9a:c9:0f:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:26:27 2026 by rpki-client