Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: tQrTfNI1B37XRNP3ADFDtaG1l8UUtb4OdqtC6YdiQIs=
Subject key identifier: 66:FE:EA:D7:3D:20:7A:53:FB:B9:36:13:E8:8D:31:E5:75:5E:02:45
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019D389C3EBB9B9B49D65F90983923CB62C2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 17E8
Signing time: Sun 29 Mar 2026 08:00:56 +0000
Manifest this update: Sun 29 Mar 2026 08:00:56 +0000
Manifest next update: Mon 30 Mar 2026 08:00:56 +0000
Files and hashes: 1: BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa (hash: XfIOGzU1Xr7xtlffkFSqkAOYlDdi/uy4BUfSJ4jYq/U=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: C5oLeXg/J+paIhaC4sjVcodVNukcojRHUut4Rj0wJWs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9c:3e:bb:9b:9b:49:d6:5f:90:98:39:23:cb:62:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Mar 29 08:00:56 2026 GMT
Not After : Mar 30 08:00:56 2026 GMT
Subject: CN=66feead73d207a53fbb93613e88d31e5755e0245
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:0d:46:2d:c2:90:af:80:97:a0:18:69:a4:b3:
23:a9:93:db:50:e6:e5:b9:0d:89:37:00:9e:cb:48:
d1:0c:5b:99:7c:b6:2a:57:3d:8c:5b:83:bc:98:ef:
c9:ac:98:66:47:d0:f7:06:71:20:c0:95:3b:f4:fa:
f6:f7:d3:73:a0:a4:4e:3b:5b:fe:d6:aa:02:02:66:
32:50:9b:ef:49:cb:09:39:12:cf:33:e1:9f:46:01:
e5:d4:50:8c:ca:35:94:d4:77:d1:88:7e:73:2f:6d:
10:ca:f8:44:de:13:e6:aa:a5:59:80:4d:10:30:9a:
27:56:15:7f:9a:df:a7:2a:28:81:d8:50:6b:40:e9:
d6:17:05:ef:c8:0c:42:fe:1e:7f:3c:c1:35:b3:0a:
b0:55:df:a7:fe:b6:85:00:a2:36:d7:9f:e6:25:2f:
b3:b3:ba:30:16:58:85:77:46:0b:48:0a:8a:8f:0c:
da:ef:4d:67:a4:3a:d3:7a:30:22:3e:3e:be:79:42:
89:4c:ea:b3:1e:0b:37:6d:6b:d1:a1:75:71:e1:3a:
17:b7:04:23:34:ab:0d:d9:46:6a:96:3c:aa:2e:5b:
72:f3:5b:04:e1:ff:92:a7:97:41:9d:54:59:a1:1d:
32:54:40:7f:43:ba:f1:91:f1:01:b5:be:98:40:1e:
0a:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
66:FE:EA:D7:3D:20:7A:53:FB:B9:36:13:E8:8D:31:E5:75:5E:02:45
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:ce:a1:42:6e:be:1d:c0:dc:37:1e:4f:d9:f8:ee:9f:2d:54:
b9:7d:2f:37:06:a6:6a:1a:7b:3e:67:4e:02:4c:02:19:61:8c:
c1:53:a7:e1:7a:1c:24:64:3f:67:7d:77:04:3d:8e:07:53:9e:
b7:f7:02:6b:cf:44:5f:77:84:d6:3b:c2:be:d9:13:80:56:e8:
4c:95:46:d8:ef:70:7f:72:75:7e:42:7e:03:cc:27:e8:40:f8:
30:c0:cb:2a:c3:63:82:75:dc:92:4e:04:ba:33:cb:d0:b9:d5:
0e:fe:a9:d3:7a:d2:b1:5f:35:3a:9b:6d:e2:e2:ee:2d:b7:22:
6b:14:02:ca:ae:b7:f8:ce:20:89:38:3f:bb:d9:51:d9:70:e8:
4e:dd:df:de:08:47:06:67:42:f4:78:e0:b9:05:e5:ef:44:89:
75:c1:b0:af:8f:19:fe:8a:1c:13:ec:70:63:79:24:6c:cc:4c:
b4:c3:56:22:5d:02:b6:18:0a:61:7a:17:79:be:97:7b:78:15:
2a:21:3c:e5:e6:29:e8:54:86:ba:2f:6d:44:bf:8c:27:99:1e:
c0:3b:95:c6:59:fb:76:ea:f8:22:f3:d7:3d:5f:4a:fc:29:78:
c2:1f:68:8f:7d:3e:09:83:73:12:3d:77:2b:5d:e4:b7:ad:c1:
23:33:1a:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 13:47:35 2026 by rpki-client