Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
File: KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft (raw, json)
Hash identifier: TYGVThtFXYDZ3F+2VnP44o/Qq9xn7uclBHyGh1yVy3c=
Subject key identifier: CA:28:16:EB:44:96:6A:EF:31:E4:18:B5:A9:9C:85:3D:BF:77:EA:88
Authority key identifier: 28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
Certificate issuer: /CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Certificate serial: 019D389BFE44FF5568F3AE39B9539154EE41
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
Manifest number: 180C
Signing time: Sun 29 Mar 2026 08:00:40 +0000
Manifest this update: Sun 29 Mar 2026 08:00:40 +0000
Manifest next update: Mon 30 Mar 2026 08:00:40 +0000
Files and hashes: 1: KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl (hash: Zx+fA9mIrMAk4aQCSsGQR98mJRcdPZEx3Lklf7ILTjI=)
2: ubLK8V8AN7yzYWZ8GjbAC2BzmVk.roa (hash: soBVeg6Yikd3nUzcvoeLHOcCe6rQjh4SHsU1xYr91hM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:fe:44:ff:55:68:f3:ae:39:b9:53:91:54:ee:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2802b5b025cf4ea13395fc57b5a4d6898e7332cf
Validity
Not Before: Mar 29 08:00:40 2026 GMT
Not After : Mar 30 08:00:40 2026 GMT
Subject: CN=ca2816eb44966aef31e418b5a99c853dbf77ea88
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:21:0e:cc:a3:71:48:4c:0a:e1:b6:ff:d9:b7:
06:38:a0:4b:21:50:73:2e:4c:53:e0:db:10:be:09:
ff:4b:ee:9e:1a:7e:14:95:3f:c5:e1:c2:02:89:fe:
78:fe:33:fc:ff:f8:ef:98:8b:dc:a2:a3:b9:da:1b:
ba:74:2b:2c:1b:d8:96:a9:ea:35:92:e6:fa:1c:e3:
ef:8b:a6:6b:4d:b1:ca:05:99:15:d4:fe:16:a0:c9:
06:94:d4:bb:f8:aa:b2:70:35:f8:16:7f:c8:05:10:
27:d1:ba:4c:20:80:77:3e:c5:88:a5:90:83:c8:45:
e0:05:1c:87:b1:e0:25:7e:6a:aa:a7:a9:a1:da:a0:
27:26:fc:a7:f9:37:53:a9:ef:c5:28:34:77:a7:b5:
30:87:5f:f0:d0:00:1f:84:c0:ee:45:58:fb:fa:08:
3e:0c:25:a2:ec:ac:f8:75:ff:38:2b:58:7c:4d:69:
fb:d9:47:12:b6:d1:38:a5:3f:88:96:4a:7c:7d:de:
b7:a4:68:a0:fe:ea:3e:a1:44:99:f6:bf:78:2d:d1:
20:af:1a:5e:db:5c:89:5c:c6:29:4a:32:c1:85:ad:
36:04:3d:71:fa:f5:81:4b:92:f5:c5:d2:bd:65:21:
9a:21:4f:f7:5a:45:d8:68:65:9d:a8:f0:8e:20:5a:
6e:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:28:16:EB:44:96:6A:EF:31:E4:18:B5:A9:9C:85:3D:BF:77:EA:88
X509v3 Authority Key Identifier:
keyid:28:02:B5:B0:25:CF:4E:A1:33:95:FC:57:B5:A4:D6:89:8E:73:32:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KAK1sCXPTqEzlfxXtaTWiY5zMs8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/73/375522-b695-431b-8d49-66b434fdf9ae/1/KAK1sCXPTqEzlfxXtaTWiY5zMs8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:48:b1:99:2f:c0:d4:cb:39:e5:35:ee:3c:4f:5e:1d:ef:e7:
60:f0:f9:f4:77:69:e2:f6:8b:25:98:88:d8:f6:d7:c4:32:64:
c9:d1:98:4a:27:ae:6b:50:9e:15:e1:4d:7a:5b:3f:33:41:e0:
3d:c8:4e:c5:a6:f2:f5:a2:c0:34:30:4b:da:f3:50:2c:8b:ac:
14:f4:3e:64:a9:b4:36:27:80:9c:95:e9:6a:ac:d2:9e:8e:d6:
2d:9e:35:3e:af:89:b4:f6:08:3a:07:6c:de:1b:e8:c7:04:d3:
43:3c:6b:12:e5:05:f9:33:96:06:dc:be:9a:fa:1e:7f:e0:f6:
02:4c:10:e1:1f:5b:4b:16:43:e2:4a:70:6a:f8:11:bf:53:43:
dd:54:a2:a5:60:b8:87:2b:04:42:c2:64:48:d6:41:bb:7c:54:
03:35:81:fc:42:2c:0d:33:13:36:60:7e:41:d2:8b:62:b0:06:
78:ce:67:e4:db:32:91:2f:18:95:ff:5b:8f:6b:5c:2d:17:6b:
68:39:e2:ff:09:fd:fc:c7:2c:47:a5:13:da:38:c0:19:f9:35:
15:d4:a8:d2:b8:a2:a9:4c:2f:c2:a1:ff:8b:89:a5:d2:d9:15:
1c:bc:64:9b:0a:45:7f:27:79:88:9c:3c:f1:ca:08:dc:b9:3b:
e7:5d:94:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 15:27:02 2026 by rpki-client