Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
File: kHb3fahBt7lCFbb6wtQaccIVFgE.mft (raw, json)
Hash identifier: WcA0iUxFyeAg6k1j2lVv1/Zc13ZFwR75gXGjBb4sAUQ=
Subject key identifier: 10:CF:D3:26:6D:3D:F6:7A:24:14:6C:5B:EF:1E:FA:3D:73:46:F1:C5
Authority key identifier: 90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
Certificate issuer: /CN=9076f77da841b7b94215b6fac2d41a71c2151601
Certificate serial: 019CE7124A749A67035B37EB2D11C3DB6DA6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
Manifest number: 11F5
Signing time: Fri 13 Mar 2026 12:01:01 +0000
Manifest this update: Fri 13 Mar 2026 12:01:01 +0000
Manifest next update: Sat 14 Mar 2026 12:01:01 +0000
Files and hashes: 1: G6JTgK9c0CWNOmQ8QvDityy_X10.roa (hash: 9vVxC4L/PjyVKOIEKo3Aptt5+zq+QCcL31nKvvorwHs=)
2: kHb3fahBt7lCFbb6wtQaccIVFgE.crl (hash: 7/ZagrAEgDHaalXwdYT8ML27xWIufadUUvwWUM6qoJ8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e7:12:4a:74:9a:67:03:5b:37:eb:2d:11:c3:db:6d:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9076f77da841b7b94215b6fac2d41a71c2151601
Validity
Not Before: Mar 13 12:01:01 2026 GMT
Not After : Mar 14 12:01:01 2026 GMT
Subject: CN=10cfd3266d3df67a24146c5bef1efa3d7346f1c5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:22:49:1c:7d:0a:52:a9:1c:b0:c1:90:b6:41:
8e:60:d2:af:34:35:ab:67:7e:78:8e:87:37:87:e2:
dc:0d:06:dd:9a:a2:7a:9d:2e:ed:d9:87:7e:72:77:
40:69:de:ce:26:e5:f4:f1:4e:d5:71:dd:92:2f:c1:
d7:25:b6:e7:d5:7c:93:f9:1d:08:a1:55:95:05:ed:
2a:e4:bd:84:1d:90:4d:cd:83:e1:b2:29:ad:92:62:
3b:6a:7e:22:0b:0b:ae:39:df:0c:40:4d:72:fc:4d:
4f:80:1e:00:92:39:37:3a:49:ca:c8:fd:0c:5a:04:
99:5e:62:bb:a3:d9:cf:05:bd:1a:0e:8b:1a:ca:9e:
47:90:40:f3:ca:f4:4c:81:e6:99:2d:47:e4:53:df:
af:f6:e7:4c:50:28:1b:93:ce:39:b9:59:d3:00:a0:
04:2c:9e:6a:9f:f5:44:51:21:a5:32:e8:e2:f6:26:
e6:e9:94:be:f8:f6:4f:33:ef:3e:63:9a:4c:70:70:
26:fa:70:f2:e3:09:da:c2:96:ff:77:e2:72:39:e9:
55:38:0b:00:b0:64:17:31:d8:32:10:a0:a5:97:d9:
24:b7:06:c7:59:ab:b4:a1:d7:c8:7e:b8:ab:06:fe:
df:85:85:1e:d9:0b:b6:66:80:9e:12:0e:8e:09:3d:
87:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:CF:D3:26:6D:3D:F6:7A:24:14:6C:5B:EF:1E:FA:3D:73:46:F1:C5
X509v3 Authority Key Identifier:
keyid:90:76:F7:7D:A8:41:B7:B9:42:15:B6:FA:C2:D4:1A:71:C2:15:16:01
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kHb3fahBt7lCFbb6wtQaccIVFgE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e1d6b7-555c-4d9b-afe1-e63ce55370eb/1/kHb3fahBt7lCFbb6wtQaccIVFgE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
03:b3:37:cb:3a:fe:87:48:98:1d:c1:ae:4a:7c:46:90:d8:5f:
dd:93:3e:69:dc:74:a6:57:97:ec:78:39:cf:c7:f5:26:85:df:
e9:39:1d:aa:a4:3d:0c:56:d0:57:97:8a:cb:c2:cd:47:8b:17:
28:e2:1c:8e:14:e3:65:45:9c:f2:78:2e:65:56:90:d6:18:21:
f0:d6:61:e9:1a:53:92:16:d6:72:b0:2b:92:b7:e4:5b:c2:2e:
49:0e:91:1e:68:54:ec:d2:07:ff:bc:5e:ec:83:95:23:b0:80:
38:d4:0d:a8:ca:d3:a0:b2:e4:ca:af:e7:08:36:cd:b3:ed:43:
31:b6:04:07:2c:64:7c:35:55:86:e9:b0:27:c1:1d:78:ea:79:
63:ca:c5:4f:48:85:b1:31:c3:bf:ac:91:25:02:6e:5c:5c:bd:
29:fc:66:19:49:a4:4d:fa:73:34:66:9b:df:08:19:22:68:ea:
1b:77:f3:29:bc:48:a9:b5:9d:a3:f3:ea:e2:0d:f3:28:4d:15:
8b:98:0a:a7:89:c4:50:ba:72:6b:35:19:ff:91:cf:f9:fe:d8:
9a:4a:db:5f:ee:61:ab:50:98:02:6a:b9:8b:4e:1f:62:7d:68:
b0:e8:d8:09:20:86:0d:8e:77:0a:85:68:07:b3:74:c1:2c:13:
25:86:a1:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:08:01 2026 by rpki-client