Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: n0QEsGnmNAx/jh51OrF6GW4BBz/M4Qt54JIVTET1La8=
Subject key identifier: 4A:A5:D9:CF:CA:74:8A:20:71:89:A2:21:A5:DE:3B:E5:47:28:28:76
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 019D37C034F6972ACEEE389DDC221802CC74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 1892
Signing time: Sun 29 Mar 2026 04:00:36 +0000
Manifest this update: Sun 29 Mar 2026 04:00:36 +0000
Manifest next update: Mon 30 Mar 2026 04:00:36 +0000
Files and hashes: 1: 07lXNimrQBF3__ddGT3TZzLhskg.roa (hash: eoEGjhgMY6OcoxgLUe7rr3k+ew/IBEiDnKUPvz0TNYw=)
2: T3vBUADVziYVCPfMjFB5sh1dYd0.roa (hash: K9dDJUVzUK8TiZfC61uyK9tw2jY/KL9Z0G2brWNRTIY=)
3: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: 48Qeef6758WPXJTxzZ4R6Jo1JkSN0tRPuionEMHwub4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 04:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:c0:34:f6:97:2a:ce:ee:38:9d:dc:22:18:02:cc:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: Mar 29 04:00:36 2026 GMT
Not After : Mar 30 04:00:36 2026 GMT
Subject: CN=4aa5d9cfca748a207189a221a5de3be547282876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:ac:f2:52:15:8c:32:7d:9d:dd:14:8c:0f:c3:
5a:98:08:2e:13:0e:12:55:95:ab:26:d4:eb:f0:53:
82:8a:6a:9f:f3:20:ec:8f:d4:66:52:5a:39:8f:f9:
77:92:ae:0b:b9:8e:00:98:61:f2:c5:28:3a:b7:c7:
1c:f9:71:15:f5:56:c3:f9:20:15:5c:8b:df:47:3a:
84:77:b1:3c:48:7c:ba:b2:d2:cd:aa:6b:15:a6:19:
15:84:08:c0:93:7e:93:00:1d:95:4f:c1:c9:bf:ae:
55:ec:5d:f1:34:f3:fd:d4:32:ba:2f:8f:7d:36:34:
2e:11:21:da:7e:dd:92:ca:cd:63:e6:e2:5b:fe:53:
81:90:0d:14:ee:a6:b0:b3:44:8b:74:88:6f:46:01:
e5:e5:9a:b6:d2:ac:30:84:c7:19:8d:17:bc:e7:fe:
35:39:31:42:3d:d5:df:58:9c:6a:4b:ca:1d:79:7c:
7d:01:9a:1d:dd:b7:20:5e:19:85:0b:2f:4f:d9:61:
ed:17:be:43:7a:13:82:cc:d3:5e:43:58:3e:99:6f:
16:98:6b:74:52:ea:96:ff:d3:ce:82:b2:d9:33:85:
80:2d:be:ee:c1:74:62:81:31:e7:6b:cc:98:5a:c0:
11:c7:cd:11:2b:34:e5:2c:10:71:42:e6:87:06:a9:
b3:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:A5:D9:CF:CA:74:8A:20:71:89:A2:21:A5:DE:3B:E5:47:28:28:76
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a1:e8:31:bd:39:30:ba:99:eb:95:d6:40:03:fd:d8:23:60:3c:
46:16:55:22:50:46:4d:16:45:58:82:68:c2:d0:a9:a3:5c:2b:
8a:cc:af:a6:f2:64:09:2f:ff:0b:a0:38:96:ec:99:9a:cc:c3:
a3:98:85:6b:6c:4d:5a:56:c9:e8:05:a5:6d:96:36:0e:32:31:
9c:4f:6b:64:a6:02:74:1d:95:8c:76:9e:2c:ac:e0:43:30:4f:
c5:b5:89:f1:03:f0:2b:8a:bc:a8:d4:b9:a2:0d:00:b1:4e:0a:
9a:84:93:dd:07:c0:95:a1:e9:01:3c:53:2a:8a:95:69:fe:b0:
e5:d8:54:4e:5a:cb:8b:dd:90:9e:58:52:cc:13:72:c7:f1:4d:
46:85:6b:69:ad:93:97:56:e5:39:8c:5c:7d:fc:08:57:45:0d:
e9:02:89:b2:ac:eb:44:eb:88:a3:98:3a:c2:16:43:93:c0:45:
e8:f5:9e:f0:71:3a:3f:63:9f:98:c5:3e:56:e7:ef:72:91:33:
46:ed:b4:e9:e8:e8:2c:6a:c0:37:53:34:6d:21:11:a1:7a:55:
bb:14:aa:91:a2:64:f2:46:68:1c:45:c1:a2:db:c8:2a:4b:8b:
2e:5c:81:64:fa:89:e1:5c:e9:9f:23:fb:c8:e0:7c:75:2a:61:
87:1e:40:a0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03wDT2lyrO7jid3CIYAsx0MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDk4YTUzMzMwODc0MGJiYmQyMTdiZjY5ZGNlOTBiM2Y1NDEy
MDg0NTcwHhcNMjYwMzI5MDQwMDM2WhcNMjYwMzMwMDQwMDM2WjAzMTEwLwYDVQQD
Eyg0YWE1ZDljZmNhNzQ4YTIwNzE4OWEyMjFhNWRlM2JlNTQ3MjgyODc2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtazyUhWMMn2d3RSMD8NamAguEw4S
VZWrJtTr8FOCimqf8yDsj9RmUlo5j/l3kq4LuY4AmGHyxSg6t8cc+XEV9VbD+SAV
XIvfRzqEd7E8SHy6stLNqmsVphkVhAjAk36TAB2VT8HJv65V7F3xNPP91DK6L499
NjQuESHaft2Sys1j5uJb/lOBkA0U7qaws0SLdIhvRgHl5Zq20qwwhMcZjRe85/41
OTFCPdXfWJxqS8odeXx9AZod3bcgXhmFCy9P2WHtF75DehOCzNNeQ1g+mW8WmGt0
UuqW/9POgrLZM4WALb7uwXRigTHna8yYWsARx80RKzTlLBBxQuaHBqmz5wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEql2c/KdIogcYmiIaXeO+VHKCh2MB8GA1UdIwQY
MBaAFJilMzCHQLu9IXv2nc6Qs/VBIIRXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvbUtVek1JZEF1NzBoZV9hZHpwQ3o5VUVnaEZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi82YTUzOTQtMGIwNS00NTM4LWIwY2Qt
OWY2ODkwZjkyZTYwLzEvbUtVek1JZEF1NzBoZV9hZHpwQ3o5VUVnaEZjLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi82YTUzOTQtMGIwNS00NTM4LWIwY2QtOWY2ODkwZjkyZTYw
LzEvbUtVek1JZEF1NzBoZV9hZHpwQ3o5VUVnaEZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoegxvTkw
upnrldZAA/3YI2A8RhZVIlBGTRZFWIJowtCpo1wrisyvpvJkCS//C6A4luyZmszD
o5iFa2xNWlbJ6AWlbZY2DjIxnE9rZKYCdB2VjHaeLKzgQzBPxbWJ8QPwK4q8qNS5
og0AsU4KmoST3QfAlaHpATxTKoqVaf6w5dhUTlrLi92QnlhSzBNyx/FNRoVraa2T
l1blOYxcffwIV0UN6QKJsqzrROuIo5g6whZDk8BF6PWe8HE6P2OfmMU+VufvcpEz
Ru206ejoLGrAN1M0bSERoXpVuxSqkaJk8kZoHEXBotvIKkuLLlyBZPqJ4VzpnyP7
yOB8dSphhx5AoA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:53:20 2026 by rpki-client