Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
File: kPZLEhCNmzZnea-6z0gvefjA4xo.mft (raw, json)
Hash identifier: MjbWAAtUDb06XnDV+oQQ/AQYYDAQpwcuopLp6TjaJAE=
Subject key identifier: 31:AC:85:90:20:C8:6F:0A:D9:7A:BE:6F:F4:D3:83:BA:82:BE:5B:EE
Authority key identifier: 90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
Certificate issuer: /CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Certificate serial: 019CE47ED949E31F36BADFA1F776A365DCFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
Manifest number: 0472
Signing time: Fri 13 Mar 2026 00:00:44 +0000
Manifest this update: Fri 13 Mar 2026 00:00:44 +0000
Manifest next update: Sat 14 Mar 2026 00:00:44 +0000
Files and hashes: 1: gujpeuXdKQltuUKd7nb7ecCwHu0.roa (hash: 2n9HbUvjLRQ1ByGXuU3L0Iu4zHU5gGJaPtEBGt//aPI=)
2: kPZLEhCNmzZnea-6z0gvefjA4xo.crl (hash: 4cUV+nXQwtFNYQbXhBF4ifENrZyzEKDiIrIqpH2yy7Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:7e:d9:49:e3:1f:36:ba:df:a1:f7:76:a3:65:dc:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90f64b12108d9b366779afbacf482f79f8c0e31a
Validity
Not Before: Mar 13 00:00:44 2026 GMT
Not After : Mar 14 00:00:44 2026 GMT
Subject: CN=31ac859020c86f0ad97abe6ff4d383ba82be5bee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:a3:59:03:51:38:41:a4:21:a8:29:f2:f2:56:
f1:8f:ff:77:0c:96:41:b5:17:58:fa:3e:8e:c5:24:
12:ed:20:8d:c7:6f:59:a5:44:bf:70:59:97:f6:a7:
8c:5d:54:f9:f9:d1:12:dd:d4:fc:a5:5e:c3:dd:70:
8a:41:25:99:4e:71:85:b6:c5:44:85:8c:a2:d2:8b:
64:9d:ba:9f:35:b7:db:46:f3:14:df:86:fd:90:37:
10:17:48:b1:41:17:76:9f:5e:e4:e6:6b:ec:4b:d6:
16:ef:3b:36:25:c5:ac:81:40:d5:a1:58:18:ca:8c:
3a:cd:6d:10:45:96:37:8e:75:d0:93:cb:aa:10:ef:
ed:e2:eb:37:56:dc:c8:6b:9d:d5:d4:95:62:f6:ef:
cc:cb:8c:78:0f:ac:49:94:2a:39:d5:58:4f:9e:3b:
f6:7e:77:15:10:d3:6d:90:76:00:2a:52:6f:a3:e0:
8f:25:22:77:c2:4e:f7:b0:d0:39:e1:a6:02:16:06:
d0:97:b5:a6:5d:dd:f9:c0:eb:2b:1b:2f:33:1a:b6:
3f:db:07:9a:5f:1a:13:8d:50:1c:51:04:9a:7b:1c:
a4:02:78:cb:ad:e2:08:eb:6e:9c:2d:d9:a0:2f:e5:
47:6c:19:63:a4:27:a0:6e:b8:ed:18:9f:85:c7:ef:
e2:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:AC:85:90:20:C8:6F:0A:D9:7A:BE:6F:F4:D3:83:BA:82:BE:5B:EE
X509v3 Authority Key Identifier:
keyid:90:F6:4B:12:10:8D:9B:36:67:79:AF:BA:CF:48:2F:79:F8:C0:E3:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPZLEhCNmzZnea-6z0gvefjA4xo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7c/f19f62-cade-42c9-a757-1dcb0bc7a96a/1/kPZLEhCNmzZnea-6z0gvefjA4xo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:6b:f0:26:a3:38:5e:95:cf:20:54:f6:a9:fb:98:9f:51:55:
38:84:8d:3c:c2:92:de:3c:01:72:cb:3f:37:55:62:fd:e0:ea:
44:ba:ec:0a:69:59:24:a4:1f:29:a0:65:96:3e:c6:a9:39:91:
6f:68:10:cb:0a:cf:92:73:ab:07:24:93:cc:6c:22:48:35:8d:
74:e3:9a:5e:04:31:22:1c:7b:7c:fc:d4:ac:f5:a8:14:85:88:
43:90:82:a9:49:46:d5:58:14:ea:fc:48:6c:84:52:69:d5:b4:
8d:1b:ec:19:c2:52:b7:a7:cc:a5:95:9b:76:d8:f9:f8:50:97:
45:af:81:05:87:cd:1e:91:c9:af:19:0f:dc:42:6f:f6:fe:b6:
f0:4b:fe:84:7b:65:69:d1:ac:d7:b3:b8:02:c4:ff:6f:5d:83:
3f:1c:13:87:ce:53:1e:49:95:b2:75:9e:19:7a:ad:fe:28:48:
65:cf:bc:fb:59:56:99:c4:1e:e9:59:86:ea:84:b7:cd:c8:16:
47:84:e0:fa:5b:55:fe:04:03:fe:aa:92:ad:bb:8a:23:ef:0a:
2f:59:ff:84:00:c6:bf:21:88:0a:6a:74:3e:c4:fe:a9:96:80:
2a:49:9e:03:d5:dc:dc:fd:7a:1c:50:b8:92:6f:ce:30:d1:e9:
5d:0c:9e:a3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzkftlJ4x82ut+h93ajZdz9MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZjY0YjEyMTA4ZDliMzY2Nzc5YWZiYWNmNDgyZjc5Zjhj
MGUzMWEwHhcNMjYwMzEzMDAwMDQ0WhcNMjYwMzE0MDAwMDQ0WjAzMTEwLwYDVQQD
EygzMWFjODU5MDIwYzg2ZjBhZDk3YWJlNmZmNGQzODNiYTgyYmU1YmVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoaNZA1E4QaQhqCny8lbxj/93DJZB
tRdY+j6OxSQS7SCNx29ZpUS/cFmX9qeMXVT5+dES3dT8pV7D3XCKQSWZTnGFtsVE
hYyi0otknbqfNbfbRvMU34b9kDcQF0ixQRd2n17k5mvsS9YW7zs2JcWsgUDVoVgY
yow6zW0QRZY3jnXQk8uqEO/t4us3VtzIa53V1JVi9u/My4x4D6xJlCo51VhPnjv2
fncVENNtkHYAKlJvo+CPJSJ3wk73sNA54aYCFgbQl7WmXd35wOsrGy8zGrY/2wea
XxoTjVAcUQSaexykAnjLreII626cLdmgL+VHbBljpCegbrjtGJ+Fx+/iPQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDGshZAgyG8K2Xq+b/TTg7qCvlvuMB8GA1UdIwQY
MBaAFJD2SxIQjZs2Z3mvus9IL3n4wOMaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1BaTEVoQ05telpuZWEtNnowZ3ZlZmpBNHhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yy9mMTlmNjItY2FkZS00MmM5LWE3NTct
MWRjYjBiYzdhOTZhLzEva1BaTEVoQ05telpuZWEtNnowZ3ZlZmpBNHhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83Yy9mMTlmNjItY2FkZS00MmM5LWE3NTctMWRjYjBiYzdhOTZh
LzEva1BaTEVoQ05telpuZWEtNnowZ3ZlZmpBNHhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVmvwJqM4
XpXPIFT2qfuYn1FVOISNPMKS3jwBcss/N1Vi/eDqRLrsCmlZJKQfKaBllj7GqTmR
b2gQywrPknOrBySTzGwiSDWNdOOaXgQxIhx7fPzUrPWoFIWIQ5CCqUlG1VgU6vxI
bIRSadW0jRvsGcJSt6fMpZWbdtj5+FCXRa+BBYfNHpHJrxkP3EJv9v628Ev+hHtl
adGs17O4AsT/b12DPxwTh85THkmVsnWeGXqt/ihIZc+8+1lWmcQe6VmG6oS3zcgW
R4Tg+ltV/gQD/qqSrbuKI+8KL1n/hADGvyGICmp0PsT+qZaAKkmeA9Xc3P16HFC4
km/OMNHpXQyeow==
-----END CERTIFICATE-----
Generated at Fri Mar 13 07:25:10 2026 by rpki-client