Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
File: k9t6NCzZOS76XNM4lHQcqKW09Cs.mft (raw, json)
Hash identifier: tYdeP2PwRC/M3r9xc9Db/+V0/68rt9NZuo4b7pkxp9U=
Subject key identifier: 54:8C:5C:B1:E5:89:F8:34:4F:01:F6:40:C7:D9:B5:C9:69:AA:72:01
Authority key identifier: 93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
Certificate issuer: /CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Certificate serial: 019D397797A30AFAFA85753EB67D3E3AE9FE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
Manifest number: 1595
Signing time: Sun 29 Mar 2026 12:00:32 +0000
Manifest this update: Sun 29 Mar 2026 12:00:32 +0000
Manifest next update: Mon 30 Mar 2026 12:00:32 +0000
Files and hashes: 1: Um3rCN-q-gYBIcgEg82jFZfS59k.roa (hash: 0rUOvsuwwsb08uI/Y1cwX6bj3C7aQudL+7nOqE0Zl9c=)
2: k9t6NCzZOS76XNM4lHQcqKW09Cs.crl (hash: lnqok2zzKlbkvTxl0sqgrCk3GhUwW8PF/XKtTcKHDYM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:77:97:a3:0a:fa:fa:85:75:3e:b6:7d:3e:3a:e9:fe
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=93db7a342cd9392efa5cd33894741ca8a5b4f42b
Validity
Not Before: Mar 29 12:00:32 2026 GMT
Not After : Mar 30 12:00:32 2026 GMT
Subject: CN=548c5cb1e589f8344f01f640c7d9b5c969aa7201
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:33:aa:d5:ed:a5:f4:1c:f3:a1:c5:da:ab:22:
3a:24:cb:34:7d:ee:10:c4:3e:6e:8f:16:f0:f9:e2:
54:36:69:d3:7c:83:ce:94:0d:17:5d:14:b1:85:4e:
8d:fe:ce:a4:77:47:3e:fc:fd:13:fd:78:7a:1a:e8:
67:88:b4:04:e5:da:47:1d:be:5b:71:32:d7:c6:a7:
cb:9b:f0:a8:47:73:0c:da:28:76:7b:b0:df:f5:5f:
61:58:a9:3a:8b:12:f6:0d:31:78:9c:2e:94:14:03:
cd:d9:38:67:a1:2c:ee:56:7a:48:1c:f5:6d:c2:31:
76:7b:24:8b:1a:6b:06:d3:c0:be:d9:17:73:ef:0b:
43:c6:6c:5f:37:30:4b:9e:d2:c7:cc:82:04:81:a1:
3d:d5:93:7d:4f:7b:2e:6e:b5:fe:d5:ff:f4:85:33:
16:a8:a2:4f:37:d4:27:af:e0:cb:94:c8:81:5e:37:
22:54:42:47:6b:08:3d:ae:1d:bf:83:cf:b7:37:ba:
bd:92:ef:c6:73:b1:8c:20:d2:6c:e1:fa:ac:a0:d9:
f3:7c:36:09:df:08:2d:c8:a1:29:2e:9b:b7:80:01:
d3:d1:fa:7c:3b:90:06:56:a9:72:9b:c2:e2:6b:6c:
7c:63:7f:d2:e7:be:4f:a6:70:70:40:f8:ee:ee:2c:
1d:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:8C:5C:B1:E5:89:F8:34:4F:01:F6:40:C7:D9:B5:C9:69:AA:72:01
X509v3 Authority Key Identifier:
keyid:93:DB:7A:34:2C:D9:39:2E:FA:5C:D3:38:94:74:1C:A8:A5:B4:F4:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k9t6NCzZOS76XNM4lHQcqKW09Cs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/308f53-8bff-4990-8d7b-e7185cdeccd3/1/k9t6NCzZOS76XNM4lHQcqKW09Cs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:5f:10:30:bd:6e:de:36:06:1c:4b:47:08:56:80:cc:bc:98:
f8:b2:53:85:0b:20:f0:1b:ab:8e:f9:dc:82:15:4e:38:7b:f1:
57:94:19:91:e5:a8:b6:7b:ec:84:b0:c6:ba:87:0b:dc:b2:16:
7c:5b:18:d4:97:95:93:56:16:fc:1f:de:5b:4d:05:5b:a1:e8:
4b:ac:20:23:4a:41:b1:a8:2e:f3:fc:d3:2c:df:fe:56:1c:a9:
8b:66:4b:dd:50:e3:c0:b0:6b:9e:3e:87:86:5f:cc:69:85:6f:
df:de:48:42:f3:5e:3f:2a:4a:6a:cc:16:02:d1:09:ba:df:a2:
8d:fd:44:40:90:57:c8:d3:27:f4:dd:46:54:f1:bc:3c:81:2d:
23:bc:6b:fc:a0:76:ae:7a:92:ce:f0:75:8f:cb:85:40:ba:25:
70:31:6e:0a:15:cd:ba:74:c2:a5:31:a9:34:fd:75:47:3c:d5:
ec:ad:da:6b:55:99:bb:13:e5:a4:29:6c:7c:91:8f:d3:b9:59:
94:90:75:e4:84:c6:57:ed:15:56:c5:4a:60:e1:5f:31:53:e8:
e9:ba:5a:ed:0b:6f:79:a4:8d:49:3f:ba:ea:ce:d9:4a:23:5b:
d3:92:4b:a9:ed:89:a5:b0:eb:b7:ea:79:a0:fa:09:ea:1b:4a:
eb:6f:c8:d6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:58:12 2026 by rpki-client