Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: d3Fdxkb+kCWbWHNNh0q4+7csaug/BoZ9z8IIHzolE0U=
Subject key identifier: 3E:07:C5:ED:A7:5E:4C:53:8E:2D:8F:8B:8A:F9:A7:94:F2:22:08:8C
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019D3488EEABB838BB43FEF63ABF8595C37F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 063C
Signing time: Sat 28 Mar 2026 13:01:22 +0000
Manifest this update: Sat 28 Mar 2026 13:01:22 +0000
Manifest next update: Sun 29 Mar 2026 13:01:22 +0000
Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=)
2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=)
3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: qEpEBa0U//l6ievqWyhQahuccMjwkBujqcr2gcSHGhA=)
5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=)
6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Mar 2026 09:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:34:88:ee:ab:b8:38:bb:43:fe:f6:3a:bf:85:95:c3:7f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Mar 28 13:01:22 2026 GMT
Not After : Mar 29 13:01:22 2026 GMT
Subject: CN=3e07c5eda75e4c538e2d8f8b8af9a794f222088c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:23:66:57:2e:25:cc:5e:aa:48:bf:78:77:77:
e8:55:53:cf:91:ae:fa:88:20:9e:05:24:11:65:49:
a7:4c:e2:4e:f0:ad:06:06:6d:ec:ae:41:8e:2a:6a:
33:f0:2d:4c:6b:23:bd:b5:a6:8c:34:e8:b3:81:37:
3a:93:b8:a5:d5:88:f1:fb:9a:af:1f:73:62:1a:c6:
54:81:31:56:00:5f:d6:70:e0:05:61:e2:f7:53:89:
29:2b:10:8f:4f:65:66:0b:2c:e8:6c:41:f7:bb:f0:
31:b1:26:bd:40:33:8f:29:ee:a9:b7:34:11:8a:95:
a7:25:04:3e:08:dc:21:29:27:fe:fb:13:7a:fc:fa:
72:1e:0b:df:c5:6c:0a:9f:04:f8:18:01:af:89:1f:
b6:cf:e0:4d:b9:c7:09:08:68:dd:86:04:5d:c5:0f:
20:32:a3:b6:4a:d6:05:02:cb:cf:d9:39:2d:a7:9f:
a8:88:a9:4e:8a:11:29:87:5d:0a:08:75:d0:2c:a9:
06:47:97:7b:17:d8:64:06:5b:e9:9c:05:31:06:56:
07:48:5e:a0:c8:5b:da:26:3d:91:b7:8d:a8:d1:30:
c8:a4:04:20:d3:e4:80:58:24:18:b1:a2:32:6c:1f:
18:36:c7:64:a5:5a:0e:85:8c:84:21:40:3e:a6:bf:
ed:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:07:C5:ED:A7:5E:4C:53:8E:2D:8F:8B:8A:F9:A7:94:F2:22:08:8C
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:2b:cf:b1:ff:97:23:32:83:57:3e:cb:70:9d:91:c2:23:56:
c8:90:20:3a:ff:1c:9c:29:05:f6:2a:06:e9:ae:ee:66:99:c1:
27:b8:35:38:2b:f3:01:2a:5c:05:03:de:c4:18:81:70:cc:6a:
0c:58:58:0b:b3:4a:43:a6:a4:1b:90:9d:fa:7d:97:a9:7a:b1:
d2:17:76:16:1c:d6:a0:ce:49:6f:c3:54:aa:33:1b:b7:09:04:
79:b1:8a:e4:70:16:8f:56:76:4f:21:76:14:2c:f0:a9:3b:12:
68:23:ce:77:bb:dd:62:d7:6b:2f:a5:c4:f6:b9:d5:b4:b8:7a:
d7:cc:9f:54:b4:fa:92:a4:77:9a:1a:58:b9:d6:81:04:ff:7e:
c5:32:b8:cc:5c:a0:6b:4e:c4:f4:80:28:27:2c:8b:35:0a:2c:
7f:73:98:a6:56:9d:ec:5b:60:8a:bf:44:9d:46:8a:6d:bb:ba:
a9:5f:1d:c1:d2:6d:79:33:13:54:92:1e:e0:4f:e0:70:94:f1:
d5:e0:1e:95:14:27:33:d8:f2:db:ed:0d:d1:aa:b7:96:95:f8:
08:b7:e9:c2:ad:9a:2c:76:b0:05:be:8b:50:15:8c:d2:f3:67:
dc:67:fc:2d:0d:c8:dd:02:b3:b3:67:14:2a:aa:e3:21:15:9a:
a3:f4:15:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ00iO6ruDi7Q/72Or+FlcN/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTkzMDA3YzdjOTJkZjYxNzhlN2NiNDMxODNmZDdmNTJh
NTI2ZDgwHhcNMjYwMzI4MTMwMTIyWhcNMjYwMzI5MTMwMTIyWjAzMTEwLwYDVQQD
EygzZTA3YzVlZGE3NWU0YzUzOGUyZDhmOGI4YWY5YTc5NGYyMjIwODhjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsCNmVy4lzF6qSL94d3foVVPPka76
iCCeBSQRZUmnTOJO8K0GBm3srkGOKmoz8C1MayO9taaMNOizgTc6k7il1Yjx+5qv
H3NiGsZUgTFWAF/WcOAFYeL3U4kpKxCPT2VmCyzobEH3u/AxsSa9QDOPKe6ptzQR
ipWnJQQ+CNwhKSf++xN6/PpyHgvfxWwKnwT4GAGviR+2z+BNuccJCGjdhgRdxQ8g
MqO2StYFAsvP2Tktp5+oiKlOihEph10KCHXQLKkGR5d7F9hkBlvpnAUxBlYHSF6g
yFvaJj2Rt42o0TDIpAQg0+SAWCQYsaIybB8YNsdkpVoOhYyEIUA+pr/taQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFD4Hxe2nXkxTji2Pi4r5p5TyIgiMMB8GA1UdIwQY
MBaAFCmZMAfHyS32F458tDGD/X9SpSbYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODkt
MWU4MjlmZmExYzNhLzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOS9kYzliNmYtM2E2ZC00NDlmLThiODktMWU4MjlmZmExYzNh
LzEvS1prd0I4ZkpMZllYam55ME1ZUDlmMUtsSnRnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMSvPsf+X
IzKDVz7LcJ2RwiNWyJAgOv8cnCkF9ioG6a7uZpnBJ7g1OCvzASpcBQPexBiBcMxq
DFhYC7NKQ6akG5Cd+n2XqXqx0hd2FhzWoM5Jb8NUqjMbtwkEebGK5HAWj1Z2TyF2
FCzwqTsSaCPOd7vdYtdrL6XE9rnVtLh618yfVLT6kqR3mhpYudaBBP9+xTK4zFyg
a07E9IAoJyyLNQosf3OYplad7Ftgir9EnUaKbbu6qV8dwdJteTMTVJIe4E/gcJTx
1eAelRQnM9jy2+0N0aq3lpX4CLfpwq2aLHawBb6LUBWM0vNn3Gf8LQ3I3QKzs2cU
KqrjIRWao/QV/Q==
-----END CERTIFICATE-----
Generated at Sat Mar 28 16:47:58 2026 by rpki-client