Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
File: RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft (raw, json)
Hash identifier: AdtVFuBoGbHgNY0fTdlP0NMKgQZSN6i1nBUPjbhT05A=
Subject key identifier: 2C:6F:EC:9F:B2:66:BD:82:F3:73:74:E2:9F:77:CE:51:29:31:3C:60
Authority key identifier: 46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
Certificate issuer: /CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Certificate serial: 019D38665645068C337449A3AAC739D61276
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 07:02:03 +0000
Manifest this update: Sun 29 Mar 2026 07:02:03 +0000
Manifest next update: Mon 30 Mar 2026 07:02:03 +0000
Files and hashes: 1: 4LkdmcjKUPYnNsC8p4HbsE6JtNw.roa (hash: jmfhhWKdSP4GG97BLqMH7I/oq4F3yyozqjmgiw+P0ts=)
2: RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl (hash: QhxH1jfJeUcwAQKX6575FQ0JGA36jnY+SiMIVqy5h0Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:56:45:06:8c:33:74:49:a3:aa:c7:39:d6:12:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=464528d9080c665db0551d8ad8b0f71f7bb76996
Validity
Not Before: Mar 29 07:02:03 2026 GMT
Not After : Mar 30 07:02:03 2026 GMT
Subject: CN=2c6fec9fb266bd82f37374e29f77ce5129313c60
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:2a:13:a0:f6:1f:d7:bc:36:c7:85:61:2b:b1:
be:e9:03:7f:69:5a:aa:15:a8:67:51:78:8b:d8:a3:
5e:54:f7:4f:48:ac:2e:de:26:df:13:2b:8a:1a:9c:
23:09:ba:d3:ff:b9:c3:9f:08:88:e1:10:a4:f5:2c:
97:4b:fc:3e:6d:09:17:36:b8:79:8b:05:50:c3:9f:
75:6f:1e:8f:1d:b7:b7:29:a6:28:fb:2e:0b:7e:67:
37:3d:e3:df:6d:f8:c9:fa:9e:69:61:8f:52:59:0a:
b7:24:6c:5d:50:df:1b:a4:78:9c:89:b9:da:9c:64:
04:14:59:0e:05:ba:a0:6d:7e:13:8f:b4:e8:f6:6e:
20:64:73:37:4e:91:62:33:0a:81:0b:44:63:df:27:
bc:28:2d:27:42:0b:1a:db:7d:98:43:3c:b1:f2:ee:
cd:d6:d3:be:8b:b7:63:dc:43:65:40:c0:7b:80:30:
65:fd:5e:78:4b:92:8b:e6:68:94:7d:9b:fc:8f:4a:
b2:b7:2d:46:71:58:27:f5:97:55:44:dd:63:c4:60:
42:1e:82:5b:13:0f:a2:71:2f:29:0a:fb:d0:db:89:
ea:b7:5d:e4:63:5e:27:e9:06:af:8e:99:13:be:1a:
11:3e:40:34:ab:fd:ba:e2:cc:c6:ed:39:80:83:66:
8f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2C:6F:EC:9F:B2:66:BD:82:F3:73:74:E2:9F:77:CE:51:29:31:3C:60
X509v3 Authority Key Identifier:
keyid:46:45:28:D9:08:0C:66:5D:B0:55:1D:8A:D8:B0:F7:1F:7B:B7:69:96
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RkUo2QgMZl2wVR2K2LD3H3u3aZY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/45852f-8fae-441d-b10c-0a1bf5bf0ca2/1/RkUo2QgMZl2wVR2K2LD3H3u3aZY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
28:15:6b:b7:3d:ae:b3:74:4b:4d:fa:db:f8:3f:0c:74:95:15:
09:94:58:3c:6d:90:49:b8:44:88:5c:49:56:39:02:9f:c5:94:
dd:a5:97:e2:0c:75:79:ec:42:f0:ce:2f:e8:8a:61:3f:e7:86:
c3:be:29:d3:10:9b:7b:97:31:c0:93:f4:30:0b:7e:d4:b8:52:
33:9b:48:fc:c8:df:6e:ec:51:bb:fc:df:bc:08:80:44:e0:34:
ca:cb:f7:e7:b1:50:80:e4:17:1e:3c:87:9a:de:dd:dc:f9:e9:
f8:34:3b:78:a0:0d:83:d7:2b:c2:f7:26:32:04:61:bc:c1:13:
aa:84:9a:d8:66:09:84:78:b3:02:b1:60:51:0b:26:7b:71:f5:
da:44:91:ef:db:c4:49:95:ef:61:2e:07:2e:2f:4f:2e:6c:ff:
2f:cb:f2:ed:60:0f:f8:b8:37:5c:b9:9c:d8:7f:24:19:e9:f5:
34:1a:df:99:f9:a7:6a:c8:ea:10:17:78:34:58:6b:0d:ed:c0:
31:47:32:f4:3e:f2:90:2b:69:73:e9:90:87:1b:8f:e8:ed:3e:
4d:c6:53:94:83:d4:26:2e:e4:9d:46:4e:7a:6f:1c:5b:4c:8d:
d7:64:57:91:e3:6e:7a:66:09:1f:ed:f9:2a:1a:90:1d:46:16:
76:39:d2:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 14:04:24 2026 by rpki-client