Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
File: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft (raw, json)
Hash identifier: gFtsLinPy3waU0O4eIsIDw70CBBH67szbL++82FRz3s=
Subject key identifier: 0F:E4:CB:49:C3:8F:75:94:27:81:F4:15:CA:E9:65:1E:BD:71:35:29
Authority key identifier: 91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
Certificate issuer: /CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Certificate serial: 019D3A1C5E4826F7577D089D866714800B12
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
Manifest number: 03B8
Signing time: Sun 29 Mar 2026 15:00:30 +0000
Manifest this update: Sun 29 Mar 2026 15:00:30 +0000
Manifest next update: Mon 30 Mar 2026 15:00:30 +0000
Files and hashes: 1: kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl (hash: lZDJU9hxFYc2dsw9EGypQ6vSGkdcaQ1azE3rxKrosiw=)
2: ocMdVynF_p0Tq2OwiTH-YQD2ORA.roa (hash: T9hZOtlKL+lVEzPwoFtr/gTJ5gMSoiMOJ0rZtmiDZzY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:5e:48:26:f7:57:7d:08:9d:86:67:14:80:0b:12
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91bd5883c82aed25fef1b18d70d0215b07f727d8
Validity
Not Before: Mar 29 15:00:30 2026 GMT
Not After : Mar 30 15:00:30 2026 GMT
Subject: CN=0fe4cb49c38f75942781f415cae9651ebd713529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:ee:9e:59:4c:b1:f6:42:87:23:1c:10:4a:f4:
71:73:90:ab:e4:e0:ad:6f:17:f9:84:16:70:43:11:
4b:c4:91:89:b1:37:96:8e:96:1a:ee:dc:9d:49:d2:
25:4d:a5:73:b9:9c:ca:77:01:8d:44:85:4d:b3:4f:
e1:df:9a:3c:f9:cc:8e:c3:96:db:f8:2d:e8:a0:48:
03:08:70:3a:3b:be:f7:de:aa:e7:15:c1:7b:85:85:
46:ab:09:91:9f:d8:61:fc:20:92:3d:ab:98:f1:c5:
93:49:47:cb:16:83:c3:dd:85:8b:bd:87:09:3c:18:
4a:7a:28:7b:33:da:4b:ee:05:c3:6b:ac:d9:e0:aa:
5d:9c:70:e2:39:0a:df:fb:ea:ff:f6:05:0f:ec:69:
2d:92:85:9d:fb:d9:9b:6f:76:30:fb:db:fd:ed:27:
c7:e8:85:74:77:1b:1b:81:11:8e:4c:71:ab:c7:cb:
b8:81:03:c5:47:ed:19:28:76:5f:30:70:51:ce:ef:
3e:74:c3:ef:86:d0:13:26:4a:9c:c4:1f:fb:98:20:
1f:9b:24:02:5b:89:2c:c2:8e:fe:2a:7d:c2:c2:74:
4f:a4:17:d8:8a:0e:a6:30:22:d3:53:9d:46:b5:06:
47:27:5c:a6:33:f2:e2:5c:6f:41:d8:82:31:c6:b1:
86:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0F:E4:CB:49:C3:8F:75:94:27:81:F4:15:CA:E9:65:1E:BD:71:35:29
X509v3 Authority Key Identifier:
keyid:91:BD:58:83:C8:2A:ED:25:FE:F1:B1:8D:70:D0:21:5B:07:F7:27:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/9d56a3-4417-4940-baa2-9e962cd9dd82/1/kb1Yg8gq7SX-8bGNcNAhWwf3J9g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:f0:19:9c:07:e3:c9:98:9c:8a:f6:cd:da:0a:f6:11:7b:d6:
32:04:95:f1:31:ae:c5:7c:b5:5e:d6:6c:91:c8:07:89:1b:bc:
35:d7:ed:fb:15:6c:a8:f6:b6:9f:dc:d6:84:4e:8d:58:16:34:
ba:c6:6d:7b:a2:76:6d:37:f8:8a:93:ba:64:65:f3:1d:16:50:
81:a6:99:60:eb:d0:dd:4e:ed:f7:1c:e4:bc:98:f8:fc:34:9d:
32:c9:77:50:1f:c8:78:0f:c6:43:74:e5:e9:b9:e2:dd:e9:5f:
7f:f4:5f:23:c9:1e:44:bb:94:db:78:4b:73:91:3e:a3:f1:b4:
d0:81:2b:b4:1f:23:ea:50:a3:9a:ad:e8:9b:c1:58:37:ed:e5:
14:6e:82:4d:64:35:7e:c9:5a:9a:aa:f4:3b:bc:b9:df:d4:32:
de:a9:8c:63:73:6c:a1:4f:74:e5:aa:05:8d:b7:ce:4e:99:6e:
96:dd:2e:be:35:88:b3:af:65:41:f8:63:98:70:cd:95:be:31:
fe:ba:af:ef:74:99:ac:68:ea:86:ee:bc:38:f1:df:0a:97:30:
d8:ce:56:9f:e7:82:f7:c1:88:ed:3b:32:b7:eb:37:66:82:21:
0d:31:b4:96:23:8d:c6:c3:30:9f:6e:55:c7:49:b4:ea:37:0c:
9f:82:f2:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:49 2026 by rpki-client