Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: PSyJ5++RF/whFNnHt95JqeDnfghLW8g9lHkmNAzJqDk=
Subject key identifier: 69:20:22:97:38:53:58:9B:D6:57:76:0E:DC:75:9F:FC:2B:67:13:6D
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 019D37F700A13D8BA2249DEFB628EDEAB7EE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: 05E6
Signing time: Sun 29 Mar 2026 05:00:27 +0000
Manifest this update: Sun 29 Mar 2026 05:00:27 +0000
Manifest next update: Mon 30 Mar 2026 05:00:27 +0000
Files and hashes: 1: L314PIS9EZuLIllvbYG4hWHPUco.roa (hash: oCRJ7CpfVca9XR76mJtqFGhJ4HnpliA09q5+Ns2Ex/4=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: gP4T3xjiZBajG7jblHpqcwKDrHFs6dtuMkToElU73PE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f7:00:a1:3d:8b:a2:24:9d:ef:b6:28:ed:ea:b7:ee
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: Mar 29 05:00:27 2026 GMT
Not After : Mar 30 05:00:27 2026 GMT
Subject: CN=692022973853589bd657760edc759ffc2b67136d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:49:dd:97:c5:75:68:b3:27:eb:4c:a1:4f:67:
17:4f:46:d6:d1:9a:ae:60:2f:64:13:98:6c:8a:17:
d9:c3:a1:88:72:3b:55:ab:40:0f:d6:e8:06:74:78:
5e:63:5e:67:7e:12:57:bf:9a:cf:01:bb:54:b7:2b:
14:46:c9:bb:fd:19:01:04:00:4e:10:5c:52:e4:a7:
5d:a5:68:a2:5f:d0:eb:81:45:95:39:c1:a6:67:99:
b8:ec:47:14:73:85:7a:1e:6b:58:3a:52:ab:26:69:
47:a0:5c:63:02:b7:3d:02:b6:14:72:af:e5:7d:4a:
0d:88:91:d6:6a:b3:5e:8c:cb:b5:36:cf:91:4c:9f:
e7:e7:ee:91:ac:80:20:83:e2:52:79:97:12:ef:dd:
e8:b0:82:31:e8:f9:c6:58:fe:40:64:4b:cd:bc:92:
53:e9:6e:7a:57:8a:f2:ce:99:bd:81:a4:2d:e1:56:
10:e7:ed:79:89:fd:be:f8:38:bd:41:5c:73:4e:70:
7b:f2:d3:01:b9:6b:c2:fd:d5:87:db:3e:c2:97:6c:
84:72:14:4a:dd:c1:88:c3:ed:70:12:77:e5:03:4c:
ae:0a:81:7b:7a:01:64:63:1e:bc:44:b3:5e:85:1e:
d4:13:1d:c0:67:3d:ea:12:58:c2:04:97:80:e0:b0:
4c:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:20:22:97:38:53:58:9B:D6:57:76:0E:DC:75:9F:FC:2B:67:13:6D
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:36:66:2c:77:ce:2a:ee:ae:f8:cf:63:4b:f7:88:cf:4f:45:
ed:90:d1:09:c4:53:b6:72:9c:c6:02:84:62:7b:ca:24:22:95:
4e:26:07:b6:a8:65:f7:2f:fd:3e:9b:7a:b0:82:cf:74:58:4f:
dd:a2:04:75:16:bb:f2:84:e9:b2:e7:f6:df:e0:e9:50:df:7d:
4e:72:c1:e0:49:34:93:dd:0d:8f:45:b7:ef:fd:90:21:7e:c8:
4b:56:11:8a:51:53:42:2a:10:64:55:d8:82:ef:e2:0b:8f:02:
08:2a:78:a4:29:5e:dc:ea:9a:ae:dc:ca:e1:98:79:a8:cb:2d:
8a:88:9e:fe:53:b7:02:c2:49:96:ba:10:38:1b:c8:41:c6:81:
b0:80:ab:c7:e1:94:61:16:47:9a:c8:9f:b0:1c:ad:3d:13:81:
ab:d0:1c:64:aa:c7:8c:34:a3:07:b6:a0:9f:c8:6b:1d:f3:2a:
14:29:85:be:5e:b8:52:f7:ad:97:4d:4c:45:c0:b0:2c:28:80:
b6:21:f9:2d:54:b5:49:0f:80:85:3a:f9:b2:fa:3a:45:11:b8:
7e:ac:45:c8:11:62:d7:4c:52:ec:99:57:54:4e:b6:6c:08:1e:
a0:33:f6:3f:c6:27:e3:8a:0d:70:73:e7:d1:0f:4d:6f:34:89:
f2:e5:b7:e4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:17:52 2026 by rpki-client