Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
File: RKMb41sydPLLhX5a81aLaFqJEn0.mft (raw, json)
Hash identifier: OdZoPl35kseZKsO+7kzpfaRdrrKBb6WnJYCqcFyXNxs=
Subject key identifier: 9D:43:1C:34:39:24:AC:D3:AB:2D:C9:FB:E8:D6:80:1F:0E:76:B4:F2
Authority key identifier: 44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D
Certificate issuer: /CN=44a31be35b3274f2cb857e5af3568b685a89127d
Certificate serial: 019D375334BE46839103EA8574295E421884
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
Manifest number: 0343
Signing time: Sun 29 Mar 2026 02:01:32 +0000
Manifest this update: Sun 29 Mar 2026 02:01:32 +0000
Manifest next update: Mon 30 Mar 2026 02:01:32 +0000
Files and hashes: 1: RKMb41sydPLLhX5a81aLaFqJEn0.crl (hash: /swMvTcUWUpd65r732qUCnqyfV/gLQIKlU6eLjSxSXg=)
2: oBnAGTOyECz3qOvMpZNgO6Ho4ao.roa (hash: I5TS3LqyPe4PYtzp6IqjKbzYqpbpCZWL4keNAsLcZ+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl
rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:53:34:be:46:83:91:03:ea:85:74:29:5e:42:18:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a31be35b3274f2cb857e5af3568b685a89127d
Validity
Not Before: Mar 29 02:01:32 2026 GMT
Not After : Mar 30 02:01:32 2026 GMT
Subject: CN=9d431c343924acd3ab2dc9fbe8d6801f0e76b4f2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:ed:33:fa:07:39:5a:b5:a2:29:72:6f:03:9e:
39:7f:79:74:be:6e:fd:6a:5b:52:fe:c6:2a:e8:98:
7e:80:6e:c0:ba:8b:53:34:3c:94:e2:4c:d5:4c:b4:
25:a3:a6:d1:75:89:72:b1:8d:41:9d:f5:20:91:4d:
5c:63:41:a7:f1:3c:fa:33:8f:95:15:7c:95:c5:12:
4f:f8:f9:e7:48:a5:c3:8b:b0:24:33:26:83:a9:b3:
5f:13:69:84:c5:00:83:20:0b:65:33:4d:3e:5d:37:
02:54:30:5e:03:2c:ba:17:20:d1:db:c5:5a:64:43:
5b:fa:ab:11:ac:28:c6:25:0e:5d:b1:44:11:ef:02:
bf:5b:0a:95:d2:28:8d:ab:80:a8:fe:93:61:91:75:
3e:0f:1b:40:52:37:de:a0:2c:ae:c8:bc:50:59:b0:
66:8c:39:bf:ce:13:9e:0c:9c:8c:7b:4d:a6:7f:d1:
34:d1:29:1b:47:4a:57:b6:20:96:1e:7b:7d:c3:b0:
1f:37:a5:eb:91:ef:0b:a7:71:57:f6:89:e6:e1:30:
67:cd:c5:5a:bc:16:31:e7:d9:e8:68:19:9e:f2:5e:
b8:74:d7:3e:54:07:b8:e4:2d:cb:7e:d5:17:0f:82:
0d:7a:b0:f4:85:6c:39:bc:f9:c9:0a:e1:2e:36:2c:
c5:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:43:1C:34:39:24:AC:D3:AB:2D:C9:FB:E8:D6:80:1F:0E:76:B4:F2
X509v3 Authority Key Identifier:
keyid:44:A3:1B:E3:5B:32:74:F2:CB:85:7E:5A:F3:56:8B:68:5A:89:12:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKMb41sydPLLhX5a81aLaFqJEn0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/43/a86dfb-1204-47e3-ad76-ae7727949445/1/RKMb41sydPLLhX5a81aLaFqJEn0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:da:5c:55:a8:82:bb:9e:8a:9c:e6:c8:a2:fb:ce:27:ca:d4:
85:98:28:ca:dc:0d:26:0f:71:44:cc:23:ef:4c:57:07:d1:de:
2c:57:35:44:9e:29:dc:cf:01:59:7c:ad:ec:57:43:48:a7:26:
7b:51:2f:d0:b2:35:99:9c:d8:c5:bc:09:7e:14:10:ee:eb:de:
d2:cd:1b:e1:39:9f:86:11:0f:22:22:7a:3f:33:22:d5:89:96:
83:fa:30:af:b0:19:f8:f6:21:75:06:a8:18:43:67:ad:1a:11:
c6:63:6d:60:be:5e:a6:50:fd:fc:fb:73:74:f9:a0:97:5d:cc:
1e:01:44:2e:f6:6d:30:00:e9:1d:1d:04:63:d0:de:5a:c1:06:
6b:e2:01:28:95:0a:43:da:45:00:6d:07:28:9a:cf:d6:4a:d8:
25:4f:cd:44:38:2d:91:c4:af:a7:59:42:71:35:bf:60:05:60:
ab:4c:33:9a:ed:b3:81:b4:63:f3:76:7b:ac:9c:4f:56:b6:ec:
b9:90:96:44:c8:e8:3c:d3:5d:5a:6e:85:4f:b2:af:4a:43:02:
88:0c:eb:e6:ec:8e:42:5b:4e:e1:71:10:84:f1:43:77:8a:ce:
42:21:e9:c0:a4:da:ec:f2:6f:c6:60:22:3d:4c:ce:8a:9c:dd:
de:6f:04:6f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:33:22 2026 by rpki-client