Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
File: kmhshS82--n8i-d8QJtSJqbuVNU.mft (raw, json)
Hash identifier: Rf0jswnfEVsaq54rGeXhgM7tzTLV98+hXIlS4NOk0NI=
Subject key identifier: 27:FB:12:CE:26:59:FE:72:B1:14:0E:C7:BE:5C:68:C3:93:6B:32:83
Authority key identifier: 92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
Certificate issuer: /CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Certificate serial: 019D38D3989E6C086D3DEA1BA997179A0CA7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 09:01:24 +0000
Manifest this update: Sun 29 Mar 2026 09:01:24 +0000
Manifest next update: Mon 30 Mar 2026 09:01:24 +0000
Files and hashes: 1: kmhshS82--n8i-d8QJtSJqbuVNU.crl (hash: 6zrOndWWcYvyv4FuWyx5M5zgc/8sxII1NMVP/yvBgWA=)
2: m64MgsXTuVAo-KXrz-HC9VS3YL4.roa (hash: aAemQZEctQRghlYaCM8BeUg6WijqhJ1QuHQjJjaDAco=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:98:9e:6c:08:6d:3d:ea:1b:a9:97:17:9a:0c:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92686c852f36fbe9fc8be77c409b5226a6ee54d5
Validity
Not Before: Mar 29 09:01:24 2026 GMT
Not After : Mar 30 09:01:24 2026 GMT
Subject: CN=27fb12ce2659fe72b1140ec7be5c68c3936b3283
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:4d:a3:8e:cc:fb:eb:08:12:14:06:23:59:29:
f7:7f:be:41:d9:b7:0a:01:d0:54:86:95:ee:b2:67:
7a:77:17:17:ec:ea:fb:f3:0f:91:00:08:18:a2:26:
e0:fc:d3:ca:6b:dd:6e:8a:8a:8b:15:27:e5:60:c2:
43:6c:5b:c8:b9:78:2e:67:50:9d:c5:82:9e:50:6f:
d4:cf:c9:19:03:80:1c:e1:ab:10:12:47:c0:92:1a:
77:e4:4f:84:cf:40:6d:ed:de:18:59:da:2f:8f:bd:
24:db:78:a3:d8:9e:92:db:2d:ee:49:30:dc:71:a9:
16:91:47:eb:f3:c0:42:4d:1e:e8:a3:5c:c0:a2:93:
99:f7:12:6f:41:82:c2:c1:8b:da:ca:a8:8c:f4:8e:
b2:94:af:e6:ee:42:fb:2a:eb:e9:e5:96:e9:3e:48:
bc:24:87:4f:2d:7e:b3:91:2e:d9:b2:0d:96:8f:c1:
07:92:14:9b:8f:81:61:1b:04:0b:90:05:1d:26:39:
73:49:2c:d3:cc:07:db:0a:6b:ab:69:f6:72:51:27:
60:7c:be:d6:a0:f1:19:64:0a:62:60:8b:38:0f:df:
dd:91:01:0b:1d:3b:86:2e:4f:fa:24:e5:5c:11:49:
94:04:d6:b7:97:df:50:b0:d2:98:ae:8f:1c:c3:10:
bf:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:FB:12:CE:26:59:FE:72:B1:14:0E:C7:BE:5C:68:C3:93:6B:32:83
X509v3 Authority Key Identifier:
keyid:92:68:6C:85:2F:36:FB:E9:FC:8B:E7:7C:40:9B:52:26:A6:EE:54:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmhshS82--n8i-d8QJtSJqbuVNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d559b2-4b33-4f8d-9d21-ba71fbdb0374/1/kmhshS82--n8i-d8QJtSJqbuVNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9f:aa:02:cb:88:c1:4f:52:84:b8:38:8d:c6:13:41:09:c2:df:
5e:86:00:b1:32:62:d0:77:39:72:51:c5:a6:02:9a:70:18:b6:
54:d1:e4:57:f6:c8:f9:a2:77:53:16:c7:2e:67:61:e5:a1:8c:
25:65:cc:3e:cd:10:09:42:55:b2:33:f7:52:99:75:13:18:45:
43:da:71:b1:4a:96:a5:e8:44:c2:c3:0b:05:22:af:c6:9b:f4:
22:a1:c5:d4:22:cd:e9:ce:6d:3e:5c:12:3d:42:f3:1b:8b:8d:
36:5d:bb:c0:58:9a:7e:d0:39:38:fe:20:9b:bf:93:fd:b0:c5:
57:01:a9:ca:75:84:c0:f5:f4:60:f7:17:25:b9:3c:0e:f0:f7:
09:28:c8:e9:4a:f1:42:cc:3a:7f:d8:b4:51:04:6f:4a:eb:94:
ba:07:45:a8:6d:00:4a:a8:01:90:dd:0c:52:d1:ea:2d:b1:6f:
f4:04:73:f7:38:7d:77:56:ae:9c:66:4a:83:53:d6:7d:e2:92:
71:67:b6:31:f9:3c:58:0a:c4:9f:2b:66:ed:67:d7:16:b5:74:
c4:c0:2e:ff:7f:7d:a7:be:34:7f:10:b3:7b:de:c6:a4:af:0a:
e7:ff:67:1f:8b:fb:87:b3:84:5b:76:93:7d:5e:89:7d:62:87:
46:2a:64:c2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:25:31 2026 by rpki-client