Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: BcB5+xvwKdR9sdbvCi5LvX5mWtn/3CVNJhSC77Y+hEs=
Subject key identifier: C7:0C:B2:58:48:29:01:52:6E:2B:74:F2:6B:49:DC:91:3C:C9:79:DE
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 019D39AF7F0BE29F67F042EB60AE5FA46E0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 0A2A
Signing time: Sun 29 Mar 2026 13:01:35 +0000
Manifest this update: Sun 29 Mar 2026 13:01:35 +0000
Manifest next update: Mon 30 Mar 2026 13:01:35 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: l/1iI0RFWu41sciTA9JjL/c0v+anarTM+of+T48Qiz0=)
2: oEI10F1yOzZXTlBBBvzIeX5OXog.roa (hash: QNwI0l8coi9XbWot/ryVzcBU4wEtxZkGadr7asLldw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 08:48:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:af:7f:0b:e2:9f:67:f0:42:eb:60:ae:5f:a4:6e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Mar 29 13:01:35 2026 GMT
Not After : Mar 30 13:01:35 2026 GMT
Subject: CN=c70cb258482901526e2b74f26b49dc913cc979de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:c2:ea:35:70:8f:78:d8:af:0a:ad:bc:47:fe:
bc:eb:01:eb:c4:bc:a3:6f:6a:9b:b1:be:1d:a3:e2:
87:14:a1:61:da:8d:9b:27:60:c7:53:e0:ff:31:96:
a6:01:6c:7b:2b:1a:89:1c:c5:d8:de:c1:11:c3:a7:
da:97:9e:00:b8:fa:93:47:de:d4:38:40:a2:2a:19:
6b:d3:51:0f:c6:32:68:76:fe:6b:5c:8f:c9:35:a9:
4c:65:c9:fd:a6:fd:53:9a:bf:6a:3c:53:ff:12:eb:
35:d0:3f:84:fc:42:2d:97:86:b2:35:4d:ea:1f:70:
81:79:3e:aa:70:e2:4c:35:f2:5d:c9:01:c0:3c:19:
67:51:c0:49:40:b1:87:d9:44:d8:67:31:dc:fe:79:
c6:aa:a2:86:23:d2:b2:21:11:ff:3d:36:bc:98:26:
d1:0e:ef:2e:21:b3:e9:17:ef:0f:44:d9:a7:77:d7:
cf:c7:d0:63:c6:c3:f6:3d:2e:3b:8e:b1:97:1e:23:
78:8e:c0:34:9d:be:ce:ba:05:1f:17:c0:4a:e2:3e:
98:a7:a9:00:e9:47:d7:a9:85:2c:8e:4c:fb:44:16:
1e:81:a7:19:40:a5:56:8a:17:16:03:b7:6c:82:e4:
55:f4:26:d4:9c:39:0e:e0:cc:d9:34:15:ec:5d:1b:
5d:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C7:0C:B2:58:48:29:01:52:6E:2B:74:F2:6B:49:DC:91:3C:C9:79:DE
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
08:53:62:e2:07:67:69:3a:00:f8:17:28:94:3b:80:29:fe:66:
19:07:57:86:74:ec:93:b4:b3:b1:f3:15:f7:10:89:d9:49:82:
b3:6d:19:53:f8:03:9a:ec:ca:df:32:58:70:89:24:0b:57:85:
32:83:b2:9e:ef:7a:28:1d:84:5e:18:af:b7:c4:58:c2:99:36:
07:fb:0b:24:ea:e3:ed:a7:af:93:d2:0c:a2:20:f0:dc:d6:67:
80:40:26:2f:4d:c4:e1:97:b7:a8:ab:0c:51:8e:bc:4d:10:c4:
46:76:d3:26:d2:c7:67:47:e3:ff:f0:cc:44:f0:fc:a1:f3:5e:
ed:2f:58:bb:7c:b6:ee:eb:ee:48:c8:c1:02:e7:bc:f8:9a:6f:
ef:6c:88:5f:14:24:5a:67:71:3b:5f:49:bd:68:06:8a:8b:e8:
45:cc:18:c8:b7:8b:38:ee:87:0a:c3:c0:a3:8b:63:74:c3:b9:
ab:d8:ff:43:e0:a9:fc:21:32:c6:3e:63:92:f3:2c:88:bd:4a:
73:a3:ab:b6:2f:8c:f2:f8:eb:43:0d:c7:58:1a:78:fd:f1:b9:
11:b3:c1:e4:90:05:12:2f:75:64:31:62:17:61:b0:9d:e2:88:
6f:8b:0e:71:c0:38:bf:38:1e:9e:36:fe:58:f7:ea:40:84:98:
bc:1f:50:66
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 18:38:37 2026 by rpki-client