Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: 212+p74pSzBxOzS7LqIeTxh6KEaoH3yHvoAjYv4Bppc=
Subject key identifier: 44:21:FB:5B:11:48:0B:3A:A5:CE:05:13:FB:B5:4B:70:61:21:A2:4D
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019D37C085D7763146675565780C570AD8FF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 0482
Signing time: Sun 29 Mar 2026 04:00:57 +0000
Manifest this update: Sun 29 Mar 2026 04:00:57 +0000
Manifest next update: Mon 30 Mar 2026 04:00:57 +0000
Files and hashes: 1: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: xGwfq46Njg9k+sjPEu3CcVHeBDDVq4XDaUTylOIDnAo=)
2: bHxNQUrJC8Eh62QodMXQrjbnmgg.roa (hash: 1d3ZqMZQAbRLtC6TZNo/vpwZQcPk90gTwtcmQgBCgII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:85:d7:76:31:46:67:55:65:78:0c:57:0a:d8:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Mar 29 04:00:57 2026 GMT
Not After : Mar 30 04:00:57 2026 GMT
Subject: CN=4421fb5b11480b3aa5ce0513fbb54b706121a24d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:ce:e2:bd:11:66:6a:8c:48:1a:d7:d8:0b:4b:
fb:3a:58:7b:4b:fd:ce:86:ab:8a:5c:7b:df:67:c7:
af:8d:b8:8f:c0:8c:3a:be:1e:01:45:51:20:68:ae:
67:f8:d3:40:7a:1a:37:60:35:35:79:da:65:06:5f:
fb:ac:18:64:fe:6e:f6:0b:cc:08:a4:88:19:4e:ff:
f7:07:65:08:74:f6:94:9c:4a:b2:98:c8:c6:1c:ba:
75:82:cf:d1:77:e1:c9:1d:02:2b:89:7f:7e:26:23:
50:1f:58:14:6c:9a:eb:d0:0a:bc:9a:81:01:9c:f5:
7f:2b:c1:ec:74:e3:49:9d:7b:29:7f:8d:ce:f9:43:
2c:a9:ab:ed:6c:4c:18:9c:a5:70:99:fb:55:57:a0:
47:0e:96:51:49:9e:f8:90:4c:25:ff:6b:fd:56:36:
81:5e:b1:e2:af:17:db:8f:af:e5:01:6b:04:6a:49:
dd:5b:4b:04:f4:ce:07:8c:dc:8d:7f:56:3d:99:dc:
70:c4:ac:cb:9f:b4:00:77:8a:c0:d3:38:99:f7:94:
ce:99:93:f6:10:b4:0c:1b:af:c4:4e:dc:80:e2:be:
12:aa:13:c3:07:a6:3d:55:f4:0c:83:cd:62:bc:07:
b0:4f:40:8c:f7:48:95:07:2f:ba:44:eb:38:5a:a2:
eb:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:21:FB:5B:11:48:0B:3A:A5:CE:05:13:FB:B5:4B:70:61:21:A2:4D
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4b:87:ef:ee:a9:ae:7a:9d:f4:b8:e8:ff:9a:27:66:8e:da:c9:
43:d6:39:c5:82:df:10:7a:7c:ed:d4:75:53:0d:81:6e:38:1d:
09:25:88:d7:7e:48:71:3d:b2:63:ae:32:02:d0:63:04:42:49:
c3:13:a2:90:08:b6:76:5d:0e:c9:1a:f3:7f:03:13:8f:25:9b:
60:23:19:05:f2:dd:36:ed:70:7a:ac:9c:68:f5:75:c1:56:81:
f9:a0:9b:78:61:d4:f0:cd:01:ca:00:d9:be:19:cc:9a:de:fe:
0f:f3:77:7e:1a:3c:dc:fd:4f:6e:79:95:23:8c:a3:9c:d3:39:
45:8d:aa:01:ef:02:0c:95:c7:d4:0a:9a:77:f3:c7:00:2b:b9:
a7:53:7e:7d:47:8e:19:0e:d0:5e:70:cf:d4:c6:ac:38:2b:ff:
4f:8e:db:9c:9e:5d:9a:e6:6a:dc:bd:a5:e9:29:cb:89:5b:70:
9d:67:92:3e:0f:70:fb:32:bd:cf:f4:ee:14:e4:0d:a7:71:19:
74:41:21:ef:32:33:5c:08:fc:df:c9:1b:02:e0:08:27:4f:23:
18:92:a3:11:c1:77:00:54:0a:1e:a8:03:09:98:64:c9:28:dc:
82:6b:ce:57:9a:46:6d:6b:64:80:90:b3:57:68:5c:15:ae:90:
16:ee:28:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:42:18 2026 by rpki-client