Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
File: kTgbyWneatw9HdwOuJve6s6YBc0.mft (raw, json)
Hash identifier: vJh7a6Aw27/OiaGHFq8GTmiq0ywOXmeEeUc6RKX0TaY=
Subject key identifier: AE:D1:F1:9D:2C:68:70:9B:10:56:51:DD:E4:B8:65:38:CC:BE:F0:55
Authority key identifier: 91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
Certificate issuer: /CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Certificate serial: 019D3B2F04B25A76B381866EE0BBF2CD6EC5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
Manifest number: 0C85
Signing time: Sun 29 Mar 2026 20:00:30 +0000
Manifest this update: Sun 29 Mar 2026 20:00:30 +0000
Manifest next update: Mon 30 Mar 2026 20:00:30 +0000
Files and hashes: 1: AeZuHYO0mULsrI-c-YIMMNHmKvk.roa (hash: E13pkVsdNOEH/6Nn+/0O/foSnJKfkBMXITwoCcEEiuI=)
2: H180kdffd3luCWDv6OkwCGcrOfc.roa (hash: bZpdssv1zrr3XYWLcVwhDgI3iMTPHR0H5UYXdEHp1SQ=)
3: ZAsWuhaFhvmR__Q0aQXj1GfCRnk.roa (hash: DhqcuYQ4zHPXq9RixDGQKhV/M4lScQzHRE9Yz/ZYfyc=)
4: kTgbyWneatw9HdwOuJve6s6YBc0.crl (hash: VQg5x5iP2Q8LaNoSg2GEOWGsTcKR2DZRMDpMyPFvAeE=)
5: o-BkPwL00PdU1t8ffwirkb7_R1g.roa (hash: suuI+jXuOojIG5lnf6toPBtgOXStJ8/ZoJx7xnWXW/s=)
6: tYmXAiohX3AcRjPUBEAHeBUsE58.roa (hash: FN7T5567tN5nhPmv6bO1Q8VmVLE2iMv0mhNHydh4B2Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3b:2f:04:b2:5a:76:b3:81:86:6e:e0:bb:f2:cd:6e:c5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91381bc969de6adc3d1ddc0eb89bdeeace9805cd
Validity
Not Before: Mar 29 20:00:30 2026 GMT
Not After : Mar 30 20:00:30 2026 GMT
Subject: CN=aed1f19d2c68709b105651dde4b86538ccbef055
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:33:d5:5f:f4:a4:3d:77:c7:2d:53:99:3e:98:
be:a8:f6:f9:c4:06:d7:4b:a5:37:60:91:97:af:b7:
be:f5:f8:1e:26:fa:cb:49:43:2c:6e:01:4f:87:62:
3b:b6:42:5c:a3:ce:52:9d:d4:65:af:66:0a:bb:73:
c8:7e:9e:0e:20:c4:81:f8:ed:73:93:8d:b3:d8:ec:
2c:fa:24:55:43:2c:22:57:40:dd:db:4b:94:92:4e:
be:bd:c1:5c:ef:e8:7d:eb:9f:68:d5:c9:f9:20:a5:
d3:0b:93:6b:9a:fc:f8:8f:46:a2:e0:1b:24:4d:61:
16:d2:9d:2c:d4:0f:7f:f3:ba:b2:d1:b4:36:30:c7:
a7:b0:f1:f9:2f:32:bc:c9:0a:9b:ab:fe:d1:2e:89:
9d:8e:16:03:1b:4c:78:87:6c:f7:af:4d:64:1e:28:
52:f3:11:31:ce:12:7f:8c:1c:3c:e8:43:42:b1:12:
7f:04:a8:ca:08:9e:d2:71:9d:61:19:a3:c1:85:24:
f9:59:41:d0:fa:d2:4e:ae:02:e8:0b:e9:4d:a7:b3:
97:60:3c:5a:3e:ba:f5:32:22:16:94:65:d6:42:3d:
a7:90:0a:d6:f1:36:73:46:a8:32:b7:66:21:5e:2a:
ea:41:c5:df:9c:ff:01:fa:3b:ae:7d:a8:70:12:1e:
80:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D1:F1:9D:2C:68:70:9B:10:56:51:DD:E4:B8:65:38:CC:BE:F0:55
X509v3 Authority Key Identifier:
keyid:91:38:1B:C9:69:DE:6A:DC:3D:1D:DC:0E:B8:9B:DE:EA:CE:98:05:CD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTgbyWneatw9HdwOuJve6s6YBc0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/f35406-d8c4-4f5c-92ac-256da95d1345/1/kTgbyWneatw9HdwOuJve6s6YBc0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:9e:7a:fa:7f:bf:83:46:7a:04:87:00:2f:1b:4e:52:6b:71:
c8:aa:d4:62:2e:a3:fc:4f:74:1e:6c:6d:d7:f8:be:69:2c:c5:
13:9f:b1:fc:ca:3e:54:e1:6a:f7:90:46:28:9f:b1:4a:80:64:
1c:24:a1:39:b0:fe:ab:86:df:cb:54:12:64:66:4f:a6:4b:18:
82:45:1e:43:dc:a3:4e:50:e4:25:72:b6:32:05:b7:09:53:78:
45:11:88:d9:7e:02:c2:c0:42:b0:75:39:f2:df:54:29:5d:6e:
aa:a2:86:80:fd:85:33:85:bc:6e:12:38:84:75:bd:fc:69:34:
21:3b:46:c7:9b:f3:35:11:3c:fc:de:a5:46:9e:f7:ff:ce:f6:
4e:96:15:8d:c8:ee:01:41:fc:20:db:a7:2c:00:46:e4:f2:cd:
76:21:76:2c:74:c1:bd:de:30:5b:4a:5d:9d:fe:ac:ff:a1:b5:
00:c4:6e:11:87:8d:0b:65:b8:c2:04:e1:f4:1e:6f:e9:48:5b:
40:26:80:15:eb:9a:eb:76:be:66:93:83:c3:f9:e3:87:b7:8d:
aa:e5:c3:e3:15:86:04:2d:ad:6d:a8:d1:c9:2f:4b:89:20:d0:
a8:9a:5a:48:6f:9e:fa:10:28:27:8b:5f:98:08:ea:5c:42:2c:
cd:51:5a:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 30 00:23:27 2026 by rpki-client