Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
File: K8hpV3Lw5k87mhYhczzAJQb3RwI.mft (raw, json)
Hash identifier: 5ghgF1NOp0ieG5rlJ8nP17uoAjannLaUs3vmbi3vj2I=
Subject key identifier: 7B:92:D3:6C:BC:88:4C:38:A3:75:8F:A8:99:A6:DC:19:A0:21:92:48
Authority key identifier: 2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
Certificate issuer: /CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Certificate serial: 019DD19AB42392DFF6F6D88588A7F51AB479
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
Manifest number: 18F3
Signing time: Tue 28 Apr 2026 01:01:09 +0000
Manifest this update: Tue 28 Apr 2026 01:01:09 +0000
Manifest next update: Wed 29 Apr 2026 01:01:09 +0000
Files and hashes: 1: 5CrZJSgU3umnhBpv3SBW8GVEgqE.roa (hash: 2gixcHV7KBq6bvuQpRe8OX0ebav7J2q4kd7P6HGr740=)
2: 66eo3bJdi9RGbEdDXS4tD5cqq_o.roa (hash: 5t8peN4WCQBgYdxTrPyY0DXm3aBeHyQsSo4GmYIKBxg=)
3: K8hpV3Lw5k87mhYhczzAJQb3RwI.crl (hash: JA4O/Bhzx/mS9Lqlqp4j5qcnwPGi8Yttx4M25WBalOk=)
4: K_ZSiUHd1rB1pcqdi19och0DGOM.roa (hash: 8mJ7F1VxOqtPJAA3HEixFXJNyvdHfHViy/fRZXdsxig=)
5: QPcZtk0DXKyMJbNEz2ZuJuMfm00.roa (hash: umOLljeZUfmplY2DajwQdgANFJvFzfTBHi6UK1dXAg0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 17:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:d1:9a:b4:23:92:df:f6:f6:d8:85:88:a7:f5:1a:b4:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2bc8695772f0e64f3b9a1621733cc02506f74702
Validity
Not Before: Apr 28 01:01:09 2026 GMT
Not After : Apr 29 01:01:09 2026 GMT
Subject: CN=7b92d36cbc884c38a3758fa899a6dc19a0219248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:95:96:0b:de:7e:73:fe:72:3d:90:2e:61:0b:
68:45:e3:bb:ca:c9:2a:7e:f9:0a:5f:7f:e5:f7:38:
9c:5d:08:21:cb:af:fe:2c:d1:9d:c4:e6:de:ad:d4:
65:ec:69:ae:a1:36:11:f3:fc:f9:d4:62:da:38:03:
09:e1:87:f7:da:a6:bd:1c:1a:2b:63:56:83:ff:76:
28:c8:d3:97:64:09:e9:93:a5:a4:0c:e9:4c:c7:ee:
85:32:fb:4d:48:26:e2:72:43:3d:ec:fc:10:37:fd:
55:3b:33:4a:77:23:4a:74:4d:a0:3e:c9:44:33:ef:
0a:cf:a9:15:2e:32:4b:85:a4:a2:8b:81:62:31:92:
03:82:fd:76:46:ec:29:61:2e:bf:22:95:23:ad:8d:
eb:22:47:86:01:21:18:5c:b4:8a:b4:e0:02:49:31:
ad:9c:a2:0a:1c:cd:51:89:fd:62:94:ad:6b:a9:8e:
56:bf:55:3e:fa:f3:ae:cc:71:ac:76:1a:8d:13:db:
1c:91:d9:38:b8:a3:ef:5f:80:35:6b:18:9f:4c:69:
cb:dc:93:10:06:b7:1a:02:e0:d4:6c:17:11:95:5f:
67:d0:a7:22:21:41:d8:d8:7d:c2:fa:0f:11:33:59:
c6:f6:b1:8c:a5:b7:37:67:a8:f1:5a:aa:62:3a:52:
cf:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:92:D3:6C:BC:88:4C:38:A3:75:8F:A8:99:A6:DC:19:A0:21:92:48
X509v3 Authority Key Identifier:
keyid:2B:C8:69:57:72:F0:E6:4F:3B:9A:16:21:73:3C:C0:25:06:F7:47:02
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K8hpV3Lw5k87mhYhczzAJQb3RwI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/cbfa9b-0291-48e3-805c-43d66a0331ec/1/K8hpV3Lw5k87mhYhczzAJQb3RwI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9b:0a:ae:ed:4f:7c:93:2a:53:9d:8b:bf:ac:4d:86:a0:fa:29:
e0:17:69:84:c3:32:ef:d3:4c:89:ef:cd:16:c5:6b:42:55:3e:
a6:c2:f8:c7:4e:d4:0d:0e:ce:eb:22:3c:b8:5d:ad:bd:05:81:
d2:dd:d2:3d:63:0b:a0:c7:24:b6:4d:5a:06:26:3e:49:1f:bf:
d3:2d:48:15:31:17:71:f5:a9:e7:5d:21:62:78:2f:f5:6f:bd:
c7:6b:25:2c:e7:d1:02:c2:d5:7f:0f:f2:8f:c1:6d:c4:ff:c5:
a7:db:0e:62:69:2c:85:5e:24:fc:f2:2f:e7:3e:6f:f9:40:34:
aa:5d:c3:79:d8:64:82:9a:dd:dd:21:dd:7e:5f:13:e4:22:5c:
97:b9:3f:f0:76:16:c9:f5:bb:a5:9c:dc:63:94:fb:e5:b1:24:
4c:ac:16:79:e9:0d:43:fa:df:c8:f3:43:ab:17:c3:36:04:8b:
db:48:1d:02:13:db:37:b3:38:7d:9c:0b:ed:30:f4:f5:a2:1b:
c3:57:d9:1e:c4:0f:be:9a:5f:26:14:6a:be:d5:fc:29:ce:81:
ca:05:78:5e:89:74:d4:a7:15:7b:73:e1:1f:e3:84:75:6f:25:
a9:7f:6e:33:80:21:ea:a1:eb:83:3b:44:7e:48:57:58:b8:ba:
68:d1:40:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 28 03:24:35 2026 by rpki-client