Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: SLxQVt/mIiFLn9tP6WcSdCkiZKVFfpzNWJHXgFHeGkM=
Subject key identifier: D6:A4:8C:55:0F:E6:ED:5C:4D:2C:04:EB:85:29:9D:D2:8D:74:A2:DC
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 019D3AC19A79D95945B376E5A73211A0969C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 1890
Signing time: Sun 29 Mar 2026 18:00:59 +0000
Manifest this update: Sun 29 Mar 2026 18:00:59 +0000
Manifest next update: Mon 30 Mar 2026 18:00:59 +0000
Files and hashes: 1: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: Ze2lJHD5K6LzH2n3HI/dXQGrU/Ht+GcCXoAmmjkOQo4=)
2: qKzL_ME8UuHWQc0CLPTCLEEBp0E.roa (hash: Nj/emuAe0XidzndkLYnMG2PIERjSJH89bACx94cpGMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 16:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:c1:9a:79:d9:59:45:b3:76:e5:a7:32:11:a0:96:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Mar 29 18:00:59 2026 GMT
Not After : Mar 30 18:00:59 2026 GMT
Subject: CN=d6a48c550fe6ed5c4d2c04eb85299dd28d74a2dc
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bf:bc:cf:6e:38:da:e8:8c:8e:2c:c0:59:08:
c0:f1:37:3b:30:08:e0:89:d3:74:39:26:ec:0b:aa:
05:76:b8:98:70:5b:ad:3f:79:8e:90:60:91:27:64:
df:21:38:a3:9f:b9:16:17:ef:fa:a1:31:a4:62:f5:
dc:db:8e:ab:bf:cd:a1:41:9a:f0:44:1c:fe:52:27:
20:f7:97:8b:2a:b9:7e:60:36:81:90:ec:82:8f:5a:
a7:83:1e:74:c6:37:b9:ed:63:51:d3:c1:ee:66:58:
19:32:f2:38:13:cb:d4:1d:e4:a7:07:22:1a:10:69:
7e:15:a6:42:a2:83:cd:40:82:2e:9d:e0:85:8d:bd:
ee:61:10:bb:1e:9c:3d:83:97:a7:ca:2f:c0:b0:93:
cf:91:39:9e:18:fc:9b:0f:e2:cc:f9:df:18:58:84:
b9:e2:c2:f8:c1:43:31:b9:94:74:d9:e8:4a:f4:9b:
21:45:c5:c9:08:46:1a:37:17:89:40:cf:8d:7b:07:
86:dd:a6:dc:2e:e2:0d:e5:24:3b:b7:5d:46:98:28:
7e:fe:a6:36:79:fc:f5:25:23:85:81:6c:8f:9f:85:
37:7a:b3:ea:51:a5:c7:1e:e2:b1:7a:a4:17:b9:74:
73:21:91:7e:ae:ef:37:7f:1f:f4:8c:d1:eb:a2:4f:
10:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D6:A4:8C:55:0F:E6:ED:5C:4D:2C:04:EB:85:29:9D:D2:8D:74:A2:DC
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:f5:6c:fe:1f:11:0a:86:34:f3:e9:25:d2:27:91:68:d0:cc:
cd:ba:5a:12:3c:d3:97:4c:36:7b:5f:f0:15:32:57:7b:f1:4c:
62:02:72:32:8d:0c:7f:24:b0:23:bf:4d:71:85:aa:20:14:b6:
d9:d1:9c:63:b5:40:6f:2d:87:51:17:41:33:2b:58:f4:53:75:
83:81:e0:9c:e3:7e:e2:3e:4c:d9:17:2f:77:59:f1:c1:54:15:
e2:84:f1:6c:59:03:b5:e8:8b:9d:bf:22:5a:33:7e:87:59:89:
3e:71:90:ce:dc:94:49:97:b1:66:ba:77:84:79:58:31:9c:5c:
bd:b2:a9:e2:ed:51:7b:64:4c:79:d8:62:7d:00:b0:51:77:e1:
39:8e:ec:af:bf:cb:d3:a3:33:dc:81:91:07:d1:94:a2:5a:59:
ef:35:b0:32:93:d6:b7:0e:f5:70:f2:fa:ad:cb:ab:95:3b:ef:
10:01:c1:2b:66:ba:84:78:92:0c:52:21:e7:48:6f:a9:ab:80:
f0:d3:25:ba:9e:a7:e0:e1:5a:1b:d0:02:c5:6f:59:9e:ec:e3:
1b:94:32:73:ae:0f:50:30:d4:c8:3f:bc:71:41:c3:c7:54:09:
6c:86:1a:c0:bd:20:ce:68:c6:f9:5b:6c:76:f0:7a:aa:a0:f3:
e6:06:f2:46
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ06wZp52VlFs3blpzIRoJacMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYjNhM2EwZDY2MmQxNGRhODQwNGJkMjFkYzQ4OWU2Mzk0
NTYyNGUwHhcNMjYwMzI5MTgwMDU5WhcNMjYwMzMwMTgwMDU5WjAzMTEwLwYDVQQD
EyhkNmE0OGM1NTBmZTZlZDVjNGQyYzA0ZWI4NTI5OWRkMjhkNzRhMmRjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5r+8z2442uiMjizAWQjA8Tc7MAjg
idN0OSbsC6oFdriYcFutP3mOkGCRJ2TfITijn7kWF+/6oTGkYvXc246rv82hQZrw
RBz+Uicg95eLKrl+YDaBkOyCj1qngx50xje57WNR08HuZlgZMvI4E8vUHeSnByIa
EGl+FaZCooPNQIIuneCFjb3uYRC7Hpw9g5enyi/AsJPPkTmeGPybD+LM+d8YWIS5
4sL4wUMxuZR02ehK9JshRcXJCEYaNxeJQM+NeweG3abcLuIN5SQ7t11GmCh+/qY2
efz1JSOFgWyPn4U3erPqUaXHHuKxeqQXuXRzIZF+ru83fx/0jNHrok8QDQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNakjFUP5u1cTSwE64UpndKNdKLcMB8GA1UdIwQY
MBaAFJCzo6DWYtFNqEBL0h3EieY5RWJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQt
Mjg4Y2ZkMWMyYTNkLzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQtMjg4Y2ZkMWMyYTNk
LzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf/Vs/h8R
CoY08+kl0ieRaNDMzbpaEjzTl0w2e1/wFTJXe/FMYgJyMo0MfySwI79NcYWqIBS2
2dGcY7VAby2HURdBMytY9FN1g4HgnON+4j5M2Rcvd1nxwVQV4oTxbFkDteiLnb8i
WjN+h1mJPnGQztyUSZexZrp3hHlYMZxcvbKp4u1Re2RMedhifQCwUXfhOY7sr7/L
06Mz3IGRB9GUolpZ7zWwMpPWtw71cPL6rcurlTvvEAHBK2a6hHiSDFIh50hvqauA
8NMlup6n4OFaG9ACxW9ZnuzjG5Qyc64PUDDUyD+8cUHDx1QJbIYawL0gzmjG+Vts
dvB6qqDz5gbyRg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:09:22 2026 by rpki-client