Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
File: KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft (raw, json)
Hash identifier: /4J/2JZbXrjuzYDv+DM9ZzSzN9u7hkhxfTjHft6s21g=
Subject key identifier: 9B:CC:46:E6:92:4D:14:F7:F7:D8:57:DF:8B:D9:AC:2D:2F:74:8B:51
Authority key identifier: 29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
Certificate issuer: /CN=2901d76431c6e873d3c44730571e1e50d602057c
Certificate serial: 019D39413BD59E6484086BE4358FE2BDF5FB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
Manifest number: 149F
Signing time: Sun 29 Mar 2026 11:01:09 +0000
Manifest this update: Sun 29 Mar 2026 11:01:09 +0000
Manifest next update: Mon 30 Mar 2026 11:01:09 +0000
Files and hashes: 1: KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl (hash: 1sm5v6wILsskrggxVLOa34WUCCBXlaHKuEyYyb7XX68=)
2: TOF3ZgA2E3UTCvybT5QOxSPJdVo.roa (hash: iSQvu/X4RZ2TX/v9Xw2MSqYTLV+RJbk0Qnv9Fb30Cgo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:41:3b:d5:9e:64:84:08:6b:e4:35:8f:e2:bd:f5:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2901d76431c6e873d3c44730571e1e50d602057c
Validity
Not Before: Mar 29 11:01:09 2026 GMT
Not After : Mar 30 11:01:09 2026 GMT
Subject: CN=9bcc46e6924d14f7f7d857df8bd9ac2d2f748b51
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:95:e2:fb:d8:cf:f7:47:59:59:e0:c1:7c:b7:
86:95:a7:d9:89:0a:db:d3:e3:75:2f:bd:4e:37:7c:
42:da:ae:57:e3:81:69:3b:ab:8c:fa:56:9b:01:65:
3b:18:76:bf:ae:be:19:54:b2:d3:c2:f3:41:da:e2:
8c:0a:dd:e0:5f:ea:a8:33:69:20:07:a6:65:5c:4a:
e4:d9:93:95:96:1a:fc:bf:e4:9f:07:1f:6e:30:b2:
60:b1:17:f5:cc:b4:71:81:5a:a4:37:ec:ad:cf:20:
10:94:85:74:54:4f:6b:e2:b0:7c:89:2c:44:84:b9:
46:a0:d2:3e:06:bd:ed:bd:98:3c:c4:3c:91:45:0b:
1c:65:0c:5c:b4:c0:71:de:1e:c8:e8:40:f9:f9:85:
af:3f:38:5e:b2:d2:7a:c0:3b:1a:01:d0:ea:ad:8e:
93:c5:d8:8c:45:48:c0:85:7c:fd:b1:22:19:ef:27:
d7:b9:09:ab:bf:95:e7:4d:cf:fd:0a:fb:f3:11:22:
38:64:1d:ca:81:7f:2e:aa:3d:9c:84:ce:85:4f:33:
e6:35:2f:b3:d1:26:1c:60:d2:69:80:d3:0f:43:11:
a0:66:b5:d6:5d:f2:c1:ee:b8:1b:e9:58:3b:46:c1:
fc:09:ea:e7:05:90:fb:62:05:d5:a0:89:51:a4:24:
9e:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:CC:46:E6:92:4D:14:F7:F7:D8:57:DF:8B:D9:AC:2D:2F:74:8B:51
X509v3 Authority Key Identifier:
keyid:29:01:D7:64:31:C6:E8:73:D3:C4:47:30:57:1E:1E:50:D6:02:05:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KQHXZDHG6HPTxEcwVx4eUNYCBXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/69/05c3a1-c8fe-40ff-9c52-3e6f0324410a/1/KQHXZDHG6HPTxEcwVx4eUNYCBXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:b2:66:f2:b1:4e:a9:2d:c0:52:ba:f3:68:fa:92:69:0a:68:
40:a0:6e:02:f5:47:2b:33:c8:8c:9a:49:60:e4:37:1f:be:89:
c5:0c:2e:d6:a4:70:f4:0d:eb:62:70:b7:95:c3:3a:f5:5a:37:
06:a5:d4:d2:a9:cf:4d:5e:56:22:04:fc:59:64:2d:8e:89:44:
8a:ce:d5:72:5e:64:46:bd:72:13:54:d7:32:ec:05:9a:9b:91:
2f:70:46:d0:ef:26:11:5c:94:77:fb:6b:37:ab:da:c0:b8:58:
69:27:78:ec:0d:39:9d:f1:73:bc:2f:df:e3:58:76:21:5d:4f:
dd:3e:a0:1d:6e:d1:8e:ef:6c:53:bd:91:48:9a:0c:ff:cd:ba:
25:0e:a3:51:ac:9a:04:49:cf:37:47:9d:eb:64:a1:34:a7:2e:
da:0c:18:63:8f:23:c3:b7:cc:35:5d:b1:db:b4:ff:f4:14:4c:
32:c3:2c:ba:50:c3:c8:49:a0:b0:4f:b6:5a:72:43:f6:d7:4a:
a4:ef:75:42:66:0f:15:be:27:80:28:22:7f:b2:a7:bc:c8:5c:
24:5b:c4:e1:c6:f3:ff:a3:0e:10:be:7a:88:b0:7f:6e:69:50:
76:ea:b2:dc:c9:b0:91:ed:d4:94:8f:9b:7a:a5:bb:c5:fb:f7:
53:9e:bc:e9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:44:33 2026 by rpki-client