Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
File: kd3H2eAtRMa_jGNcHQcV9uicEBI.mft (raw, json)
Hash identifier: djRzxWYM81I9UwA2X8WPJUP7VJLPNYd+dwQ+GdiOp3w=
Subject key identifier: 0C:52:A9:B7:39:48:22:B0:79:50:92:16:92:B1:E1:86:A1:48:5C:63
Authority key identifier: 91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
Certificate issuer: /CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Certificate serial: 019D390987FFCBA6E103BED8E8396A9E63F5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
Manifest number: 024B
Signing time: Sun 29 Mar 2026 10:00:19 +0000
Manifest this update: Sun 29 Mar 2026 10:00:19 +0000
Manifest next update: Mon 30 Mar 2026 10:00:19 +0000
Files and hashes: 1: MvpTS49h0GRvY0Tj2YEwLbaS2cM.roa (hash: gDgNzdOYz3KjBH95RxNa3YAdnlDk82nruMEoI3Ezi38=)
2: kd3H2eAtRMa_jGNcHQcV9uicEBI.crl (hash: k3VdxTEeUKlS2kBOzghLduXiFQYslV40Wl1U1asyfaE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:09:87:ff:cb:a6:e1:03:be:d8:e8:39:6a:9e:63:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Validity
Not Before: Mar 29 10:00:19 2026 GMT
Not After : Mar 30 10:00:19 2026 GMT
Subject: CN=0c52a9b7394822b07950921692b1e186a1485c63
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:ce:0d:7e:4a:f5:63:f0:b1:68:df:07:12:7f:
39:59:df:8a:2c:2e:e1:5c:7b:82:1f:01:cd:ed:76:
bd:aa:31:9e:b0:0c:49:7c:48:72:f7:d4:63:b4:c0:
bc:5c:d6:60:bd:cb:88:62:2c:7b:97:1c:16:c3:26:
ad:ca:d2:71:b2:eb:e6:80:d1:b2:15:ef:87:c8:0c:
57:60:4d:73:a8:a3:a1:88:c1:4d:ab:84:61:c6:23:
d2:6c:42:0a:9f:c6:c5:df:49:20:00:ea:ad:c8:3a:
e2:7d:70:65:ee:da:b6:38:bb:ff:7a:fb:c7:c5:8f:
4c:ea:97:0e:8a:6e:db:63:64:94:09:6e:80:cc:d6:
06:2d:61:df:7b:1d:1a:a1:bf:5c:3d:a2:ec:41:d8:
b5:84:64:0a:54:bd:c3:43:92:42:87:0b:e4:1c:15:
33:a6:de:23:bb:55:f4:a6:6e:ce:1c:dc:84:ea:af:
11:eb:46:bd:22:96:4c:80:a9:cf:59:3f:87:1d:a6:
ed:28:77:c5:09:e4:49:d1:95:b5:88:21:b4:bf:02:
42:97:9c:49:5e:49:66:0b:48:c1:96:04:6a:ca:f4:
69:30:86:5d:b1:eb:30:9f:26:1e:5a:2f:42:07:bb:
74:d9:91:7c:81:31:55:c0:29:80:eb:51:bf:d8:c4:
a2:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0C:52:A9:B7:39:48:22:B0:79:50:92:16:92:B1:E1:86:A1:48:5C:63
X509v3 Authority Key Identifier:
keyid:91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:a3:56:b0:71:1c:b2:66:d8:68:a0:17:9f:c5:45:e8:84:f1:
11:e8:2c:4f:e0:52:a3:ac:91:6d:df:0a:1b:b4:fa:9d:46:60:
11:af:9c:fb:35:30:a0:73:83:de:86:a1:5e:f7:8d:94:c5:c1:
2f:9c:59:42:b6:44:25:c5:5e:6d:c6:27:ea:49:bb:fb:da:0f:
e8:9f:75:e3:d6:26:14:41:14:32:63:9c:0e:b1:07:d9:0b:da:
ac:3e:4c:53:65:ac:29:1c:dd:76:88:ef:b6:e7:df:50:7b:fc:
22:f4:9d:2f:09:22:b5:be:0f:6e:d2:4b:14:c1:0e:8e:e4:f8:
c8:7d:70:c9:3e:a1:85:48:ee:12:be:bd:e5:de:72:e4:c7:c5:
34:ce:02:22:97:04:d9:7c:1f:05:84:5e:81:a3:08:37:58:cd:
77:55:b3:c2:3f:e7:96:67:28:12:fc:c3:90:aa:5c:03:d6:3d:
b7:7d:94:41:6a:e3:fe:1e:cf:a5:db:24:f9:24:9b:c5:b8:df:
e2:8d:d3:9a:30:8e:9b:b4:25:25:1c:ef:e3:7e:f3:a9:27:2e:
cc:d8:24:1c:3c:84:75:9b:e3:5b:b0:d7:b2:63:8c:5c:7b:6f:
83:4f:82:54:91:ae:f0:ac:14:71:98:78:84:2d:9d:9e:5b:ff:
2a:91:b7:d0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:07 2026 by rpki-client