Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: ugEHOhj3RgRuoAvTB4/dWCSrBsVybPUHulHfFq5TwTo=
Subject key identifier: D1:F0:D2:99:AC:C2:2A:9A:A6:E8:0B:4F:BA:F2:72:DF:D2:40:1D:EB
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019D38D32BEC86CDE39C066D619C34254987
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 1649
Signing time: Sun 29 Mar 2026 09:00:56 +0000
Manifest this update: Sun 29 Mar 2026 09:00:56 +0000
Manifest next update: Mon 30 Mar 2026 09:00:56 +0000
Files and hashes: 1: EA-NEOtP3uDP9jqB_OwjrtlomoQ.roa (hash: f9ettJwQvG7z/vLtWszxNDWQ12P3Qi4WIIeHx0l0KMI=)
2: RUWdvZOnBJK0iIW0niXlms-_ZTE.roa (hash: 2+wMNcHhj5TvnlxNSP9HNjiQphs6X1jHdgsBG2jH8oQ=)
3: dJ99YeIlqHaqk3MFFpF1s00gLYY.roa (hash: 2get34VvGB/+dlsQY7O9iVM7eMGsBo6doetqxUk2mpw=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: 1X6fHnZMzY8XjXz2gddmvgjDlsocQ4hA2UiDHL/Lzzk=)
5: oZzPr194SGFDBoXBt9T9kB-yFLc.roa (hash: Dw3uJz0rcR+PJswxCLk9+YfSwY4+DIuftXl5NNe/QJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:2b:ec:86:cd:e3:9c:06:6d:61:9c:34:25:49:87
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Mar 29 09:00:56 2026 GMT
Not After : Mar 30 09:00:56 2026 GMT
Subject: CN=d1f0d299acc22a9aa6e80b4fbaf272dfd2401deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:1d:a8:b9:af:b5:f3:88:a2:ca:21:13:8a:56:
d6:2a:3f:2e:56:54:09:13:58:e7:0b:2c:50:9f:84:
b8:e5:ab:56:09:54:13:5d:d5:3d:f9:5c:90:5b:a5:
78:f1:94:b6:79:23:11:af:4e:af:60:50:6d:c0:70:
89:04:79:5f:40:ab:10:9a:88:11:5f:b6:60:06:b9:
a2:a8:1c:29:86:3d:6e:b6:2d:8b:ef:9f:6d:fe:46:
79:1d:68:4b:6b:a8:15:11:9d:70:c8:b8:7d:46:d0:
3a:d4:c6:66:6a:4c:4b:bc:13:ba:94:55:3b:71:69:
4a:42:77:3b:44:89:85:6f:c9:57:2a:f4:a9:87:b8:
a7:48:1e:04:2e:83:60:77:12:f4:af:7c:ac:8c:3f:
cd:4e:5b:dd:22:b8:b0:00:6f:61:14:e9:f7:28:29:
02:64:78:13:a2:3e:a7:cb:95:24:17:f3:f0:83:22:
d9:a1:be:b9:05:d6:95:e5:9f:3e:ed:c6:48:a8:c3:
13:4b:c9:2b:21:e2:e0:fa:62:3d:28:6a:73:c9:f8:
ac:b5:00:91:5f:c1:b9:23:e3:ed:26:7f:fa:87:55:
eb:6f:38:d1:7e:5e:89:15:9b:29:87:47:bc:69:64:
b9:f8:3c:f5:d0:1f:7e:44:df:3e:bd:aa:6e:8b:78:
64:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:F0:D2:99:AC:C2:2A:9A:A6:E8:0B:4F:BA:F2:72:DF:D2:40:1D:EB
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a3:3f:df:3f:77:73:0e:b5:5c:44:21:3c:64:77:ff:31:02:e7:
d5:b6:d1:a4:af:2c:4f:09:a5:67:46:26:27:81:93:81:3b:f3:
89:96:32:94:e6:ab:d4:9c:89:07:3f:c2:9b:86:1b:32:f6:3d:
c0:60:38:e6:39:31:e8:b8:55:99:f8:a2:f9:ce:5b:52:a0:7c:
0e:64:b4:b3:a0:7a:73:0f:de:a2:2b:79:1b:05:2c:36:64:02:
c1:20:5f:2f:42:d2:13:f9:08:c7:61:16:ef:2a:45:8d:45:b4:
dc:f7:c8:85:96:7d:09:9d:ef:c4:31:f8:8d:ed:90:1e:fa:ac:
62:1a:95:17:90:cf:5d:42:c2:f8:99:b5:41:5a:15:5f:67:89:
b2:f1:f7:ae:ca:38:4d:72:e7:6a:fb:29:04:9a:5e:b4:59:49:
7e:ca:27:e3:c9:93:c4:65:a0:2b:23:ef:b2:af:3d:84:a1:5a:
53:5f:2d:6a:ae:d9:53:30:57:2f:c0:9f:b8:89:31:ca:9b:77:
6e:3a:2a:98:7b:e8:8e:3c:9d:7c:fd:3f:69:db:ce:c0:ea:ea:
dd:f3:e6:00:04:55:21:e2:3c:77:ed:96:16:84:93:43:6a:be:
c8:95:14:67:0c:3d:68:30:2c:76:80:7e:12:4e:dc:84:44:e7:
93:f1:51:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:10:31 2026 by rpki-client