Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: VV7nh4t3bYfPlvzADWsW18iUYZPSzYqcxyY6AQcssSM=
Subject key identifier: 25:42:F2:40:4C:E0:21:B9:7D:0F:01:74:1C:1B:BB:07:8F:62:A0:A7
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 019D37895CF8FF7681510C26309FE5F72F5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 0885
Signing time: Sun 29 Mar 2026 03:00:42 +0000
Manifest this update: Sun 29 Mar 2026 03:00:42 +0000
Manifest next update: Mon 30 Mar 2026 03:00:42 +0000
Files and hashes: 1: KIWGoOwTd_0to3ZfSp61C8HKyu8.roa (hash: zO+QGlqWRre1WYpcK0kFybtzqC8LgSXdzrWLa3l1LOU=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: KZ9TGocpdSC8iYRd4slX/u/sgjETL7w474TLYo+mjL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 03:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:89:5c:f8:ff:76:81:51:0c:26:30:9f:e5:f7:2f:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Mar 29 03:00:42 2026 GMT
Not After : Mar 30 03:00:42 2026 GMT
Subject: CN=2542f2404ce021b97d0f01741c1bbb078f62a0a7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:0b:f7:e8:91:cc:b0:7c:78:2c:ad:b3:bf:9d:
c8:33:0e:fd:44:8e:77:83:7e:1f:60:5f:16:de:eb:
5b:09:28:d9:18:b6:bf:cf:82:42:a8:3c:ee:e8:ca:
93:3c:e0:d5:ec:58:ae:97:ee:c9:65:9c:00:53:18:
7f:5c:a0:28:5d:d5:b4:0e:c4:da:e5:dc:d1:ad:4e:
c5:a0:cd:7e:1b:28:5a:84:3a:4d:b7:57:a6:d0:27:
e5:3e:e2:05:b7:29:64:ec:75:a5:af:30:34:8c:a4:
be:12:a5:84:2d:df:87:58:cb:2d:bb:d6:1b:e3:10:
b9:c0:65:94:91:45:f5:57:ac:59:7a:18:7a:54:5e:
79:62:c9:69:9b:97:fc:ea:b3:b9:0f:f3:5d:27:c3:
25:92:47:75:89:f8:a1:68:79:26:df:f8:bb:ce:e6:
76:15:ac:24:3a:73:e6:ad:76:8b:9d:73:d9:e1:2e:
1d:2c:03:93:0c:43:cf:40:19:33:d1:71:3f:18:a5:
ee:04:5d:d7:c8:d0:4e:df:b5:1e:e0:16:64:cf:52:
3d:79:a4:9b:14:2a:93:57:4e:68:37:41:a4:3c:3b:
85:85:cc:50:38:c8:0f:95:f2:36:e3:8f:a0:e8:a1:
01:de:ca:72:ae:fb:f3:05:af:e9:04:d7:cc:b4:83:
0d:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
25:42:F2:40:4C:E0:21:B9:7D:0F:01:74:1C:1B:BB:07:8F:62:A0:A7
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:b2:de:9d:c1:9c:83:57:a6:0e:36:65:91:f5:1b:45:f2:08:
bf:33:f7:d0:49:ad:70:39:ba:7a:71:a8:d2:a0:cd:e9:d5:47:
a3:9d:93:82:66:6d:66:86:3a:03:08:ef:58:1d:19:9c:e2:f4:
54:fa:f1:19:87:f8:02:97:36:3c:3e:ef:ef:c0:60:9a:f9:8d:
9d:e9:73:b6:f4:b9:ba:1c:42:de:56:85:c4:37:74:c0:c2:dc:
ee:52:50:5d:8f:ff:b2:42:30:4c:f7:f9:fd:95:81:eb:cc:4d:
04:e7:54:ac:94:a4:70:9f:e9:23:bc:49:6c:d8:89:07:be:e9:
16:ae:eb:dd:44:b4:18:c7:bf:77:62:09:45:7a:f6:c0:ec:2d:
76:2c:1f:e3:c8:ac:91:cb:fc:9f:4d:e2:df:26:3f:59:f3:5b:
2f:4c:93:f5:95:53:10:17:49:37:d7:b8:20:e4:6e:5a:64:11:
c4:45:3d:6a:e9:69:69:2e:23:85:4e:39:f1:6e:d5:88:f4:74:
67:99:22:3c:8b:b4:ab:ef:bf:90:01:e7:d4:80:e9:9b:8d:e5:
4b:59:5c:91:25:6a:69:26:fe:1e:bc:f9:b5:7a:5b:5a:07:8c:
5e:bb:85:7a:bd:90:a4:cb:36:75:d6:b0:52:9c:c3:d5:b7:fb:
6e:1c:ac:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:51 2026 by rpki-client