Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
File: kYMWq06hPrtUVgwaZwQtR-lm2CM.mft (raw, json)
Hash identifier: mqptwEW1tCb7JzxVJFd90W6UnXpPv7Rv79WkgZu9OhM=
Subject key identifier: 75:74:20:37:0A:1F:08:2C:DA:E9:B4:6D:5A:20:2A:EF:31:EC:38:0B
Authority key identifier: 91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
Certificate issuer: /CN=918316ab4ea13ebb54560c1a67042d47e966d823
Certificate serial: 019D3AC19B9E8116A9CA530882F90BDCFE9A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
Manifest number: 1894
Signing time: Sun 29 Mar 2026 18:00:59 +0000
Manifest this update: Sun 29 Mar 2026 18:00:59 +0000
Manifest next update: Mon 30 Mar 2026 18:00:59 +0000
Files and hashes: 1: SggDrxFFsWWs12xC5aQkzP-tlSU.roa (hash: 9cLRIhlE0/G5tYsZFx8+yzpMIrF34vwAUkKOhMbaUZc=)
2: kYMWq06hPrtUVgwaZwQtR-lm2CM.crl (hash: /8+PXNseJ1Zqbn18s0E1fO9zsREnRGeT3JV90cYuSTs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c1:9b:9e:81:16:a9:ca:53:08:82:f9:0b:dc:fe:9a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=918316ab4ea13ebb54560c1a67042d47e966d823
Validity
Not Before: Mar 29 18:00:59 2026 GMT
Not After : Mar 30 18:00:59 2026 GMT
Subject: CN=757420370a1f082cdae9b46d5a202aef31ec380b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:c2:a5:3c:e2:72:a0:99:b1:74:09:71:04:ad:
51:ad:8e:9b:d6:42:3a:25:56:cd:3c:35:44:df:b7:
66:a9:56:38:7e:66:c0:c9:c7:b3:ff:c4:41:8a:6f:
24:bf:e5:a3:5b:e1:c7:09:05:30:4c:73:fa:e9:b8:
da:dd:53:a2:81:89:9b:d9:ca:f2:11:47:b9:d6:22:
73:64:80:6e:41:86:b0:54:b5:04:9f:71:b8:b6:78:
e8:b9:8c:25:7f:5e:44:e4:f9:ab:21:c7:1c:2b:9d:
69:97:a0:db:f6:2a:b8:54:38:41:a9:7a:e1:36:a6:
8b:3b:2c:5b:b3:fd:28:43:02:15:0c:6e:19:60:7b:
1e:89:0d:dc:2e:ca:b5:e8:71:0e:12:63:04:f5:14:
79:93:56:d0:4f:e3:31:85:f5:d1:69:31:44:6d:74:
f3:cf:fa:cc:30:50:ab:26:63:8d:28:d4:32:95:ff:
c6:26:b1:6c:78:d2:cf:91:01:a6:b1:d5:39:7c:58:
31:c5:27:9c:66:8c:da:50:7f:f1:7b:19:29:2a:e5:
c5:dc:fb:a3:bf:2a:b9:94:28:02:c6:7f:b3:bc:6a:
81:8f:1c:35:c1:c0:1c:03:2c:39:91:ac:02:92:fb:
ea:ad:a4:5e:a0:40:ec:51:d0:30:92:27:8e:ca:85:
08:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:74:20:37:0A:1F:08:2C:DA:E9:B4:6D:5A:20:2A:EF:31:EC:38:0B
X509v3 Authority Key Identifier:
keyid:91:83:16:AB:4E:A1:3E:BB:54:56:0C:1A:67:04:2D:47:E9:66:D8:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kYMWq06hPrtUVgwaZwQtR-lm2CM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/89fb99-9049-482f-95dc-9e3cd0d9d77a/1/kYMWq06hPrtUVgwaZwQtR-lm2CM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a7:09:e7:f9:5e:c1:0b:a7:0e:f4:00:7f:b6:ac:d1:b9:42:9f:
cc:52:96:cd:96:46:9c:20:5f:b5:89:8d:57:64:42:83:1c:49:
7a:68:c2:c1:22:4d:ba:a4:ad:86:04:de:dd:0c:b9:38:3a:a6:
08:b7:4f:49:ec:71:5e:82:c7:4c:00:09:e7:e7:44:1b:e3:33:
7d:aa:67:06:09:33:c8:23:eb:c2:dc:03:ab:f7:61:c9:2a:59:
4e:4c:36:ba:9d:65:90:85:0d:e8:38:76:6e:d2:b2:a6:4a:86:
0b:79:79:8b:2b:ab:4b:22:54:37:97:8f:d2:46:1e:e1:e0:95:
fa:44:98:e8:37:f3:1b:b7:b4:15:60:b4:fa:0f:8e:ed:1a:79:
87:54:b9:67:06:9f:6f:dd:d0:e4:91:4a:82:75:50:7f:52:18:
14:37:39:d7:03:b1:89:75:d1:4f:e4:0a:98:ef:77:40:d3:62:
f1:1c:af:4d:5a:d5:b7:67:89:e6:14:b5:83:54:e0:d5:c8:51:
1a:d3:d5:97:75:4a:2e:11:06:8d:13:21:bf:dd:7e:9e:3e:0a:
38:82:4a:ad:e4:7e:29:f6:af:de:4c:d8:59:b1:83:c2:47:66:
c1:d9:a9:64:eb:b7:9d:e4:ac:25:53:d3:20:8f:c1:2b:a8:89:
b7:d3:44:28
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06wZuegRapylMIgvkL3P6aMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxODMxNmFiNGVhMTNlYmI1NDU2MGMxYTY3MDQyZDQ3ZTk2
NmQ4MjMwHhcNMjYwMzI5MTgwMDU5WhcNMjYwMzMwMTgwMDU5WjAzMTEwLwYDVQQD
Eyg3NTc0MjAzNzBhMWYwODJjZGFlOWI0NmQ1YTIwMmFlZjMxZWMzODBiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy8KlPOJyoJmxdAlxBK1RrY6b1kI6
JVbNPDVE37dmqVY4fmbAycez/8RBim8kv+WjW+HHCQUwTHP66bja3VOigYmb2cry
EUe51iJzZIBuQYawVLUEn3G4tnjouYwlf15E5PmrIcccK51pl6Db9iq4VDhBqXrh
NqaLOyxbs/0oQwIVDG4ZYHseiQ3cLsq16HEOEmME9RR5k1bQT+MxhfXRaTFEbXTz
z/rMMFCrJmONKNQylf/GJrFseNLPkQGmsdU5fFgxxSecZozaUH/xexkpKuXF3Puj
vyq5lCgCxn+zvGqBjxw1wcAcAyw5kawCkvvqraReoEDsUdAwkieOyoUIXwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFHV0IDcKHwgs2um0bVogKu8x7DgLMB8GA1UdIwQY
MBaAFJGDFqtOoT67VFYMGmcELUfpZtgjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMt
OWUzY2QwZDlkNzdhLzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNi84OWZiOTktOTA0OS00ODJmLTk1ZGMtOWUzY2QwZDlkNzdh
LzEva1lNV3EwNmhQcnRVVmd3YVp3UXRSLWxtMkNNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApwnn+V7B
C6cO9AB/tqzRuUKfzFKWzZZGnCBftYmNV2RCgxxJemjCwSJNuqSthgTe3Qy5ODqm
CLdPSexxXoLHTAAJ5+dEG+MzfapnBgkzyCPrwtwDq/dhySpZTkw2up1lkIUN6Dh2
btKypkqGC3l5iyurSyJUN5eP0kYe4eCV+kSY6DfzG7e0FWC0+g+O7Rp5h1S5Zwaf
b93Q5JFKgnVQf1IYFDc51wOxiXXRT+QKmO93QNNi8RyvTVrVt2eJ5hS1g1Tg1chR
GtPVl3VKLhEGjRMhv91+nj4KOIJKreR+Kfav3kzYWbGDwkdmwdmpZOu3neSsJVPT
II/BK6iJt9NEKA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 20:04:45 2026 by rpki-client