Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
File: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft (raw, json)
Hash identifier: Ahc1LeTJVpTElPLbELfYoX7soC9U0ra9BIQaMa9L+So=
Subject key identifier: 6E:66:6C:9D:5C:4D:AA:9A:07:3A:B0:C9:5A:94:55:74:8F:51:2F:45
Authority key identifier: 91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
Certificate issuer: /CN=913836859c6ce1869340edf1f273709b8094d9d4
Certificate serial: 019D389C1EA88BD3BD54933C6C639D1C0987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
Manifest number: 17F7
Signing time: Sun 29 Mar 2026 08:00:48 +0000
Manifest this update: Sun 29 Mar 2026 08:00:48 +0000
Manifest next update: Mon 30 Mar 2026 08:00:48 +0000
Files and hashes: 1: QkiwDdoqGneFxhueC1tYh17gEHY.roa (hash: S+EvCH9iwtFs/o9t8OSVI9PK9t1NWkiQ5QvCjj3oEWA=)
2: kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl (hash: edR0wjL6O5X4HBi7TDV4Ox7wbZLFLS5esMz8QwUkb1U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:1e:a8:8b:d3:bd:54:93:3c:6c:63:9d:1c:09:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913836859c6ce1869340edf1f273709b8094d9d4
Validity
Not Before: Mar 29 08:00:48 2026 GMT
Not After : Mar 30 08:00:48 2026 GMT
Subject: CN=6e666c9d5c4daa9a073ab0c95a9455748f512f45
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a2:4e:a5:04:b7:32:b8:93:2c:02:ae:33:32:62:
89:cf:25:2f:b9:1b:3c:ec:ff:a2:66:c2:78:c7:a4:
d3:3b:a5:c1:85:d1:e3:14:7a:a2:69:a7:0a:b0:a7:
21:10:cd:c4:02:1f:57:13:0d:fc:90:f6:6e:6b:cc:
8c:b8:bd:37:8a:c0:4b:72:e9:3f:9f:44:71:ce:0a:
bc:9c:d3:96:66:b7:fc:e5:cb:09:9a:74:c7:35:fd:
92:30:e9:b9:98:64:0c:4a:1b:e3:5b:b0:ab:aa:e0:
aa:c9:cb:e8:f1:92:5b:3d:0f:59:8b:a9:c6:8d:ea:
5c:4f:4a:c5:e2:42:61:fc:55:8d:e7:01:aa:b5:05:
e3:db:75:57:0f:f1:e7:15:a6:c2:67:dc:33:1c:c5:
23:e0:7c:26:de:88:4e:ef:e9:7d:67:c1:71:ef:53:
85:e6:93:cd:72:51:c5:7d:97:45:ae:37:62:02:da:
80:52:94:7f:ba:02:04:a4:29:54:e3:dd:33:39:57:
0b:3b:1f:e2:a2:fb:c9:cb:35:66:a2:5e:3c:de:54:
6e:f5:98:48:dc:8f:44:6c:d0:97:0d:61:af:77:c1:
3e:8b:ae:17:67:51:f3:3d:98:ee:97:10:da:5f:02:
a9:ef:9c:49:a2:b0:b0:46:e5:00:66:ad:44:4c:54:
05:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:66:6C:9D:5C:4D:AA:9A:07:3A:B0:C9:5A:94:55:74:8F:51:2F:45
X509v3 Authority Key Identifier:
keyid:91:38:36:85:9C:6C:E1:86:93:40:ED:F1:F2:73:70:9B:80:94:D9:D4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/e8f344-edb2-4400-b3ca-527ac54c2357/1/kTg2hZxs4YaTQO3x8nNwm4CU2dQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:e3:f0:d4:ed:de:28:cf:3e:ff:da:04:c6:55:e1:f8:fd:c9:
f7:eb:f7:d1:2c:7f:2e:c9:0d:44:0e:58:ce:8a:74:93:89:85:
15:ab:0a:88:08:96:d5:44:af:41:a4:37:2b:a3:c4:fa:c4:62:
6c:2e:df:bb:53:39:bf:60:05:e5:c7:8c:86:34:b2:85:d3:8a:
8a:88:e3:a6:26:be:66:6e:ac:77:59:38:1b:5a:79:7e:6d:09:
f3:f3:fd:a6:ce:e6:3a:84:f7:90:24:c4:e5:68:57:9b:45:de:
bf:b9:b5:6d:d0:50:c4:b7:c0:1c:47:e4:9d:d4:28:f0:6c:40:
a9:ed:99:14:c4:08:0a:e5:a5:3f:1a:cb:c8:ca:7c:b4:c2:4b:
0b:a5:f0:c2:c2:f1:ec:5e:05:a7:9d:6d:73:81:69:92:ec:f6:
73:35:bc:a0:2e:7c:f8:17:fa:29:17:b0:51:8e:1a:b4:74:58:
db:8f:d5:d8:57:85:29:16:93:87:fe:df:fe:a1:dd:02:c1:cb:
3c:98:61:7f:53:ee:4f:70:bf:51:dd:9b:ed:ae:03:61:be:50:
09:be:4a:b8:9e:a3:80:db:56:a6:3c:a3:f1:fa:00:b0:2b:52:
aa:c1:db:5f:98:00:28:02:65:e2:26:ba:71:b8:b9:22:10:37:
23:b5:96:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:11:45 2026 by rpki-client