Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
File: KIBHSpYWHd4pQs-58YVsL_yICQQ.mft (raw, json)
Hash identifier: Fpzg+kGEapIhO8xj2XhU7wnM5YXgq54fA9jB1RDmXww=
Subject key identifier: BF:48:3F:5D:19:72:08:6D:2A:CE:25:3B:8F:C6:2E:21:47:A9:C8:68
Authority key identifier: 28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
Certificate issuer: /CN=2880474a96161dde2942cfb9f1856c2ffc880904
Certificate serial: 019D382E152CEF1231C3743F96C69AADFCCB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
Manifest number: 044D
Signing time: Sun 29 Mar 2026 06:00:37 +0000
Manifest this update: Sun 29 Mar 2026 06:00:37 +0000
Manifest next update: Mon 30 Mar 2026 06:00:37 +0000
Files and hashes: 1: KIBHSpYWHd4pQs-58YVsL_yICQQ.crl (hash: z2Vm6rvP6eqlVCBDSnT31ufSghbD13/z5gye4YUBJBg=)
2: p5OtBuJ_H7AvfUmYp0Nby5w6BSc.roa (hash: oRePnKuJGEJuRAGyqz3spXqznhrS2YOXLr+XXfpc3VY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 06:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:2e:15:2c:ef:12:31:c3:74:3f:96:c6:9a:ad:fc:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2880474a96161dde2942cfb9f1856c2ffc880904
Validity
Not Before: Mar 29 06:00:37 2026 GMT
Not After : Mar 30 06:00:37 2026 GMT
Subject: CN=bf483f5d1972086d2ace253b8fc62e2147a9c868
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:d3:91:e1:92:ca:4c:20:df:c0:c4:5e:df:8e:
1d:ee:19:7a:aa:92:24:2b:b3:9f:b8:f3:ff:27:5e:
af:37:5c:51:eb:55:b4:bd:3f:ae:6f:05:6e:f7:20:
99:e2:d7:63:03:69:83:8e:1f:bc:62:fb:38:90:89:
1f:86:10:6f:04:fe:6d:b0:da:7c:f1:b7:bc:89:3b:
87:ca:c3:14:68:b6:86:76:a0:ec:e9:bf:ae:5e:2e:
bf:6e:31:3f:56:dd:ed:ae:44:a5:dd:d3:24:bc:7d:
c1:d2:ef:ca:7d:5b:a2:44:d1:68:81:c0:dd:bd:d3:
c7:13:0d:40:1f:c3:62:c9:0b:f0:1e:89:de:bd:bc:
35:8e:94:26:cf:9b:b6:37:05:5d:9b:17:31:01:87:
0a:76:ec:9c:41:1f:37:59:e9:dd:af:1f:23:9f:e2:
ff:ab:bb:81:13:41:81:d2:da:7b:cd:a8:04:59:ba:
fe:98:7f:94:76:40:46:b3:79:74:b9:d8:a8:75:56:
a7:cc:17:bb:f4:22:09:e2:79:74:5b:3d:90:cd:04:
71:49:be:66:d4:03:56:74:ec:93:49:28:56:96:f4:
53:6e:57:f4:96:f7:2d:0d:01:7a:a8:81:2b:32:d5:
85:3f:a3:28:d5:33:4a:fd:19:44:d1:ba:b8:cd:ec:
69:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:48:3F:5D:19:72:08:6D:2A:CE:25:3B:8F:C6:2E:21:47:A9:C8:68
X509v3 Authority Key Identifier:
keyid:28:80:47:4A:96:16:1D:DE:29:42:CF:B9:F1:85:6C:2F:FC:88:09:04
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KIBHSpYWHd4pQs-58YVsL_yICQQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/693cc3-ab75-44c6-a740-7461a56ce95e/1/KIBHSpYWHd4pQs-58YVsL_yICQQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:5f:28:67:ac:b1:d3:d5:e6:1c:6e:8f:30:77:48:4b:cc:d5:
bf:7e:d4:f2:f9:1c:90:20:5b:52:ef:18:ab:33:51:b3:6c:a5:
be:96:95:71:5f:9e:6a:8e:4b:b0:5d:fa:f9:21:90:d7:7e:56:
69:80:40:93:bd:22:70:c3:d1:a0:ad:e0:73:c1:5f:a2:f4:4e:
d1:fa:d5:e5:06:b0:13:7d:dc:3f:d2:19:e7:a3:11:3d:1e:47:
1a:40:dc:73:be:31:66:14:ae:56:14:70:c2:61:b9:c4:2e:77:
09:ff:a9:44:6c:72:5e:5b:a4:de:73:13:cb:40:a9:6e:9f:e1:
31:2e:48:9d:8f:fb:68:d8:99:b5:8d:22:aa:02:ee:15:b0:fd:
23:17:89:c4:1d:d1:96:f2:ce:e6:4a:98:2a:98:f1:9a:ab:7f:
e5:6c:49:17:29:b2:58:81:38:5c:44:c3:65:02:33:10:02:74:
af:e4:09:9a:29:f9:77:c7:ac:46:b4:6f:4a:7d:89:7a:3c:9a:
85:cb:e6:a6:54:4a:c4:da:a2:ac:c6:6b:54:80:bd:8e:d0:b5:
df:72:8d:e4:2c:48:d3:2f:83:86:37:3b:db:a1:d7:e2:27:33:
4e:88:1e:16:be:c7:05:e7:64:d4:6a:dd:8d:e9:4f:68:4e:91:
00:f5:73:64
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:31 2026 by rpki-client