Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
File: klbr9muA8IE1hY0UTO1veFg09fQ.mft (raw, json)
Hash identifier: uClZqMNLp4GImvxWe5wqu2lZPDLG6+7k4ua9t9eCISQ=
Subject key identifier: 4F:13:92:33:75:57:2D:F7:A6:B3:17:61:A4:4B:1C:A0:DD:76:E5:D6
Authority key identifier: 92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
Certificate issuer: /CN=9256ebf66b80f08135858d144ced6f785834f5f4
Certificate serial: 019D371B3126FC0DCAFF9935C1CB51CBB365
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
Manifest number: 188F
Signing time: Sun 29 Mar 2026 01:00:22 +0000
Manifest this update: Sun 29 Mar 2026 01:00:22 +0000
Manifest next update: Mon 30 Mar 2026 01:00:22 +0000
Files and hashes: 1: 40z5BTIzE-Otta9d5IxXlYjWk7Y.roa (hash: /K+vL2kVy1Ot78ZCbPvu7R3pgRcpdRMgsyhuVzNibSE=)
2: FnnFa3pMmqf3MiWUuKMyoAVWg-s.roa (hash: 6fPOtoWUy4XsTgZEttrlKq8GChMydmNHVVGJEIcxPdY=)
3: J4mHGlSY7agF8AXFPW8l8IBLAAI.roa (hash: /s0Afv+pL0DwKivaJvq3/xoIpyRomxE5EF1DLE1ue6g=)
4: ePQMQe046NknExZADvr19blY0SA.roa (hash: wKoVniNasUoMb11Rk/qza9dNeWvntUlfFXzDDxceLEM=)
5: hcjtq7J7FKS0bIahe8TWZOilbrc.roa (hash: uOY6FMIgCoFqDzQfMMnNRctUj2RDP4gSOMAnS9KpjHI=)
6: klbr9muA8IE1hY0UTO1veFg09fQ.crl (hash: ygzzU+e4YkhTX4UnVU4DkqoW47ZG18wTv1cOnAPVU3A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 01:00:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:1b:31:26:fc:0d:ca:ff:99:35:c1:cb:51:cb:b3:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9256ebf66b80f08135858d144ced6f785834f5f4
Validity
Not Before: Mar 29 01:00:22 2026 GMT
Not After : Mar 30 01:00:22 2026 GMT
Subject: CN=4f13923375572df7a6b31761a44b1ca0dd76e5d6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:54:a0:ea:6d:d6:eb:ee:5a:b8:f9:82:bd:94:
0f:67:f8:0f:7c:33:1a:c5:a5:db:91:3d:5f:95:4a:
cf:7a:a4:b4:af:71:a1:5b:89:80:5d:ec:a2:25:73:
ef:c5:01:08:b2:ac:97:24:47:48:e7:98:2a:01:97:
88:9f:e8:b6:8b:7f:be:ca:88:53:c2:0a:80:16:b6:
ae:3c:0f:0e:00:f2:75:c4:85:02:bc:56:b7:a5:a2:
e5:d1:5f:96:03:8b:bb:ae:6b:eb:ef:bf:b9:6b:4e:
5e:63:e0:8d:b3:24:bd:27:b0:f5:5d:d5:d6:bc:7a:
9b:b8:76:93:6b:69:33:9e:d5:a7:7b:b0:d9:98:25:
4e:64:32:8e:cd:0b:b0:ad:be:ba:f2:bf:c8:fa:74:
e5:ce:62:ce:c8:2a:03:9b:10:9d:35:9c:3d:8b:de:
78:02:d3:9e:25:6c:95:92:a3:8e:70:d7:a6:75:c2:
93:5c:e7:91:55:3c:e0:ba:da:22:d9:44:6a:2e:a4:
78:a5:94:70:35:c2:05:d7:99:7a:39:ed:5e:46:6f:
17:6d:1c:1c:a8:67:aa:34:f7:9f:4a:37:c6:be:05:
3d:2e:f3:20:36:25:e5:d6:cc:10:9b:b9:d1:b4:a4:
a6:50:de:aa:52:1b:76:47:ec:d4:52:4d:f8:5d:0d:
1c:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4F:13:92:33:75:57:2D:F7:A6:B3:17:61:A4:4B:1C:A0:DD:76:E5:D6
X509v3 Authority Key Identifier:
keyid:92:56:EB:F6:6B:80:F0:81:35:85:8D:14:4C:ED:6F:78:58:34:F5:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/klbr9muA8IE1hY0UTO1veFg09fQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/b717c5-a64b-4475-be3e-5da8d677d847/1/klbr9muA8IE1hY0UTO1veFg09fQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:3a:75:25:d5:7a:65:db:69:eb:60:34:ff:9c:db:2a:23:0e:
1b:75:51:16:fb:ff:f9:80:ad:1a:63:29:81:68:03:5e:26:ac:
25:3f:ec:08:d0:03:b5:5a:de:ef:b0:a9:de:a1:67:c5:33:56:
93:8b:2b:f9:a8:86:cd:7f:9e:5a:8c:8a:bf:fc:39:d7:76:4f:
62:db:45:bf:56:42:7b:51:12:46:90:f2:4b:7f:71:19:e5:a1:
f4:20:c6:67:e0:93:2b:91:6a:59:a9:74:39:22:d5:7b:35:a7:
c3:f0:82:28:43:04:60:2c:58:81:9f:38:7a:99:ca:81:0a:ff:
a0:67:43:e0:55:27:7a:fd:d3:a5:f6:1c:8e:26:e0:03:db:c3:
b3:5f:1f:be:c1:00:0f:6d:ae:bd:18:2b:0b:44:fd:eb:ef:fc:
91:39:70:e6:bb:36:20:3b:43:ec:f1:85:46:52:e9:fe:46:19:
7a:55:b4:1b:7f:ea:6b:fc:bd:a6:0c:f6:b6:df:74:4a:67:e4:
92:41:f2:33:2b:00:90:91:51:51:02:28:9e:81:d9:68:b4:39:
cf:0c:03:f1:11:94:30:66:b1:a3:73:b3:d1:94:11:02:f8:f1:
5a:59:35:bf:63:74:a7:6f:2f:14:0a:28:cc:b6:0c:b7:6f:74:
39:2c:d7:96
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:57 2026 by rpki-client