Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
File: 1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft (raw, json)
Hash identifier: 5Jnd+QGB7x2xu1PQEMTdqzM03BrzKieg/hvn5FsLWHE=
Subject key identifier: ED:62:D5:8D:C1:44:0E:E2:8E:C8:CD:A0:0C:26:1F:2D:90:EA:9F:C2
Authority key identifier: FA:69:2F:DA:01:96:87:D5:8D:71:BF:32:C0:90:8D:12:E4:6B:4C:A5
Certificate issuer: /CN=fa692fda019687d58d71bf32c0908d12e46b4ca5
Certificate serial: 019D38666EE0259B16C3B56F1E574AFEF403
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
Manifest number: 1497
Signing time: Sun 29 Mar 2026 07:02:10 +0000
Manifest this update: Sun 29 Mar 2026 07:02:10 +0000
Manifest next update: Mon 30 Mar 2026 07:02:10 +0000
Files and hashes: 1: 1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl (hash: vMeSTavIja2Mn071LOvRUQJMoPysB8ykFgFBDZgFgCk=)
2: oFHCaQPKmNFnK-xjaGQZIHmGs-A.roa (hash: J7JRkb0A+kfNdSsR+CoYK/2IStJi66/isOQA2F1ezCo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:6e:e0:25:9b:16:c3:b5:6f:1e:57:4a:fe:f4:03
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa692fda019687d58d71bf32c0908d12e46b4ca5
Validity
Not Before: Mar 29 07:02:10 2026 GMT
Not After : Mar 30 07:02:10 2026 GMT
Subject: CN=ed62d58dc1440ee28ec8cda00c261f2d90ea9fc2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:60:42:e1:5c:65:37:a9:4c:fa:aa:1d:c9:d3:
1c:9c:ab:60:b3:8e:e7:78:14:33:18:2a:de:60:dd:
d9:31:33:d2:02:bf:15:d3:23:4f:d1:aa:45:52:84:
cd:c0:6c:49:af:ad:0d:24:3e:75:e8:5d:06:b0:26:
9c:f9:a9:f1:19:1c:3c:52:46:bc:aa:1f:1e:75:3a:
58:f1:bf:58:96:f2:62:a0:e7:4a:05:85:78:ef:9f:
72:fc:06:9a:eb:43:ab:46:ef:d4:7e:af:1f:d2:5c:
15:6d:b1:54:6e:3e:0f:f2:ac:18:3e:e3:58:9e:36:
38:16:d9:01:52:f8:f9:56:aa:16:2f:a9:cf:27:79:
1c:75:3e:49:77:4f:55:a9:91:9d:28:e7:6f:35:ec:
70:7c:b1:15:ab:5f:49:e8:6f:68:06:bf:f4:64:b6:
94:8c:ed:b9:3c:70:71:fe:bf:d6:ac:f2:1f:ed:1b:
a3:a1:b6:99:2c:87:91:4e:e7:06:e3:ea:2e:ba:cd:
98:a2:0c:f9:01:50:fe:67:d6:d2:d9:59:ba:4b:35:
17:63:37:b5:62:7e:a5:61:a6:87:c5:fc:22:a9:ce:
3f:33:5f:69:e8:28:2c:7b:56:74:40:ff:57:dc:20:
62:f7:b1:a0:3e:18:4f:cd:83:ef:cc:c2:d8:9d:78:
c8:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
ED:62:D5:8D:C1:44:0E:E2:8E:C8:CD:A0:0C:26:1F:2D:90:EA:9F:C2
X509v3 Authority Key Identifier:
keyid:FA:69:2F:DA:01:96:87:D5:8D:71:BF:32:C0:90:8D:12:E4:6B:4C:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/8bfec4-bd6f-4650-a4d8-ad1c30c11e5a/1/1-mkv2gGWh9WNcb8ywJCNEuRrTKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:08:19:c0:a4:68:13:4c:a8:ad:5d:2a:68:a5:77:a2:d7:2b:
9d:29:90:43:54:07:66:4d:95:6d:29:b9:30:2b:78:71:5e:6c:
d2:a5:40:a2:38:fa:27:8d:94:46:dc:ea:e7:cf:b3:c6:ce:90:
85:d7:ae:a5:c9:f8:c5:81:4b:d6:61:ab:01:bf:71:63:8b:31:
8c:24:53:8f:25:69:0b:54:c5:77:0e:31:7c:8d:79:cb:36:e2:
ed:64:38:8c:99:5e:5d:89:82:3b:ec:af:05:58:91:b4:69:39:
64:fb:fa:aa:28:f6:4a:a6:72:98:28:52:7c:13:0f:3c:05:ac:
a5:77:16:f7:d1:26:32:12:c6:74:7c:44:bd:c5:24:50:6f:82:
80:07:47:0a:86:cd:50:c8:19:ed:39:0c:b3:14:ab:e7:4d:ae:
60:e2:3b:30:89:dd:0d:a1:10:c5:5f:85:c2:6e:83:c0:46:9b:
c7:28:4d:45:e8:40:64:f9:b6:4c:ea:d1:cb:8b:44:94:f8:ab:
a1:e8:67:dc:db:1b:98:9d:54:42:30:f6:86:b2:6c:6e:97:12:
a2:14:7f:da:98:d4:f4:2b:cd:72:f5:78:fd:31:9c:2c:b2:05:
45:52:b2:4a:6b:e4:10:76:14:76:dc:a3:bb:cf:86:15:cd:07:
a5:bf:53:55
-----BEGIN CERTIFICATE-----
MIIFGTCCBAGgAwIBAgISAZ04Zm7gJZsWw7VvHldK/vQDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGZhNjkyZmRhMDE5Njg3ZDU4ZDcxYmYzMmMwOTA4ZDEyZTQ2
YjRjYTUwHhcNMjYwMzI5MDcwMjEwWhcNMjYwMzMwMDcwMjEwWjAzMTEwLwYDVQQD
EyhlZDYyZDU4ZGMxNDQwZWUyOGVjOGNkYTAwYzI2MWYyZDkwZWE5ZmMyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq2BC4VxlN6lM+qodydMcnKtgs47n
eBQzGCreYN3ZMTPSAr8V0yNP0apFUoTNwGxJr60NJD516F0GsCac+anxGRw8Uka8
qh8edTpY8b9YlvJioOdKBYV4759y/Aaa60OrRu/Ufq8f0lwVbbFUbj4P8qwYPuNY
njY4FtkBUvj5VqoWL6nPJ3kcdT5Jd09VqZGdKOdvNexwfLEVq19J6G9oBr/0ZLaU
jO25PHBx/r/WrPIf7RujobaZLIeRTucG4+ouus2Yogz5AVD+Z9bS2Vm6SzUXYze1
Yn6lYaaHxfwiqc4/M19p6Cgse1Z0QP9X3CBi97GgPhhPzYPvzMLYnXjITQIDAQAB
o4ICJTCCAiEwHQYDVR0OBBYEFO1i1Y3BRA7ijsjNoAwmHy2Q6p/CMB8GA1UdIwQY
MBaAFPppL9oBlofVjXG/MsCQjRLka0ylMA4GA1UdDwEB/wQEAwIHgDBlBggrBgEF
BQcBAQRZMFcwVQYIKwYBBQUHMAKGSXJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMS1ta3YyZ0dXaDlXTmNiOHl3SkNORXVSclRLVS5jZXIw
gY4GCCsGAQUFBwELBIGBMH8wfQYIKwYBBQUHMAuGcXJzeW5jOi8vcnBraS5yaXBl
Lm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEvOGJmZWM0LWJkNmYtNDY1MC1hNGQ4
LWFkMWMzMGMxMWU1YS8xLzEtbWt2MmdHV2g5V05jYjh5d0pDTkV1UnJUS1UubWZ0
MIGCBgNVHR8EezB5MHegdaBzhnFyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3Np
dG9yeS9ERUZBVUxULzExLzhiZmVjNC1iZDZmLTQ2NTAtYTRkOC1hZDFjMzBjMTFl
NWEvMS8xLW1rdjJnR1doOVdOY2I4eXdKQ05FdVJyVEtVLmNybDAYBgNVHSABAf8E
DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC
BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMAgZ
wKRoE0yorV0qaKV3otcrnSmQQ1QHZk2VbSm5MCt4cV5s0qVAojj6J42URtzq58+z
xs6Qhdeupcn4xYFL1mGrAb9xY4sxjCRTjyVpC1TFdw4xfI15yzbi7WQ4jJleXYmC
O+yvBViRtGk5ZPv6qij2SqZymChSfBMPPAWspXcW99EmMhLGdHxEvcUkUG+CgAdH
CobNUMgZ7TkMsxSr502uYOI7MIndDaEQxV+Fwm6DwEabxyhNRehAZPm2TOrRy4tE
lPiroehn3NsbmJ1UQjD2hrJsbpcSohR/2pjU9CvNcvV4/TGcLLIFRVKySmvkEHYU
dtyju8+GFc0Hpb9TVQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 15:26:14 2026 by rpki-client