Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
File: KYXMQ9gGohtjMwIZ62OLsbpJroA.mft (raw, json)
Hash identifier: vI8Pwbjhp2t/nnht79U6iD3cW5lj3628nS8iAjthc9Q=
Subject key identifier: 6A:D0:27:31:4B:B5:CD:F8:D8:8F:55:A7:EE:E7:6D:AB:5C:C8:B4:59
Authority key identifier: 29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
Certificate issuer: /CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Certificate serial: 019CE2FE17A65E7FBC06FDE0C8BD4FE5A029
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
Manifest number: 064D
Signing time: Thu 12 Mar 2026 17:00:28 +0000
Manifest this update: Thu 12 Mar 2026 17:00:28 +0000
Manifest next update: Fri 13 Mar 2026 17:00:28 +0000
Files and hashes: 1: KYXMQ9gGohtjMwIZ62OLsbpJroA.crl (hash: XSKZpBSDI7GShiaK9gnSqYhcCmtQ1pZi089o5Vi4zcI=)
2: ZS3grquCf_l1OKXIoqEGRKP0J6M.roa (hash: 2PBPag/zPM22x9IohJ6q0TulDZRbeQTFCvgCnuCjnz0=)
3: vUdfXnwcRDPW7e3X7ofFMJYqkDk.roa (hash: 4hcskGjMuomfYGEOrtlmJrd0tV2p1HAsJ5FOV+HnCFs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 17:00:28 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e2:fe:17:a6:5e:7f:bc:06:fd:e0:c8:bd:4f:e5:a0:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2985cc43d806a21b63330219eb638bb1ba49ae80
Validity
Not Before: Mar 12 17:00:28 2026 GMT
Not After : Mar 13 17:00:28 2026 GMT
Subject: CN=6ad027314bb5cdf8d88f55a7eee76dab5cc8b459
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:11:01:42:6f:c6:aa:7d:6d:c0:d4:e8:83:53:
b8:da:53:04:16:8e:be:7a:de:ee:51:17:de:ed:9b:
30:ea:fa:5d:69:93:a6:69:7f:cf:bf:5c:58:a4:c3:
44:8a:0c:54:9c:1d:8b:b2:b9:19:53:6d:14:a8:e2:
6c:e4:0a:bc:ad:c2:0a:fa:b6:30:bd:00:f4:fd:28:
25:1b:fe:78:4a:9a:ac:fe:d6:fd:61:68:15:9b:2b:
56:7a:29:e4:47:6e:ad:f4:43:ec:fc:e6:29:be:2d:
00:f7:1c:84:ba:34:9d:38:15:7f:9a:fe:ee:86:ef:
fd:e3:f4:1f:17:c0:74:43:88:70:cc:e6:35:8b:56:
40:e1:a7:f2:49:3a:bb:fc:aa:77:d3:73:cf:0e:4c:
23:11:2e:c5:46:31:c7:11:73:e5:f6:e0:9b:be:af:
ff:b2:98:6a:fb:98:4f:21:14:3a:aa:d1:ca:6c:ef:
1e:dd:2f:b5:2d:51:8c:84:b7:b2:27:e5:8f:f8:ae:
83:4b:72:3b:db:8b:76:b8:ff:60:8f:92:89:ce:43:
c7:e5:ac:dc:7a:ff:1d:a2:ea:5d:24:fe:15:3d:84:
5a:37:97:d5:6e:d8:ea:cd:62:91:11:37:49:92:dd:
de:d9:9f:1f:91:c8:08:26:e1:19:a9:fd:a7:46:e8:
5e:73
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6A:D0:27:31:4B:B5:CD:F8:D8:8F:55:A7:EE:E7:6D:AB:5C:C8:B4:59
X509v3 Authority Key Identifier:
keyid:29:85:CC:43:D8:06:A2:1B:63:33:02:19:EB:63:8B:B1:BA:49:AE:80
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KYXMQ9gGohtjMwIZ62OLsbpJroA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/f3fef4-45da-4b43-98c2-4df8840efb17/1/KYXMQ9gGohtjMwIZ62OLsbpJroA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:07:d2:5a:18:8a:5b:95:35:21:04:8c:46:44:c6:c5:8f:2b:
e5:4f:4a:23:60:c7:69:e4:75:16:04:44:cc:07:ca:04:90:d3:
43:ca:59:9c:62:11:e8:9a:e0:39:47:de:0a:c0:0b:ca:41:b0:
98:fb:4d:08:f6:68:96:32:3b:15:0f:09:1b:d4:2d:19:43:fc:
0b:3a:65:39:f6:0d:11:1b:43:4a:a6:9f:24:1d:31:87:2e:24:
9d:34:60:f6:f3:a6:c3:bc:74:8f:ca:e6:c8:a0:d7:01:d5:5a:
59:7b:d8:8a:07:89:f8:15:82:ff:58:17:30:9c:53:3e:1e:6e:
60:8b:0d:70:6d:07:40:09:a4:13:51:ec:2a:e0:18:cb:ad:ca:
65:53:7f:44:a3:bd:c2:2e:7e:0b:c5:25:67:c7:88:2f:26:ee:
09:77:b5:4c:15:95:02:ce:04:0b:1f:c2:5e:76:16:df:97:42:
18:dd:84:3b:b7:61:93:f3:39:51:04:55:da:26:a8:b8:86:77:
78:36:cd:65:69:73:4f:55:75:eb:04:27:1c:8b:6b:61:10:9c:
91:cf:08:79:41:9b:bd:af:a1:41:ab:c0:f7:ca:b9:a7:dd:26:
49:c6:08:88:b9:90:7d:eb:8c:1a:5d:3e:f2:d6:5a:7d:f8:15:
f3:39:75:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 03:29:36 2026 by rpki-client