Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
File: kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft (raw, json)
Hash identifier: 7/c8DEPox4P9cgY3AVcwJiTrliPdVmIVXkA1ovmsHcI=
Subject key identifier: 29:BA:AA:84:3B:6C:9E:2A:47:3D:EE:EF:40:49:9A:2C:62:93:3C:4C
Authority key identifier: 90:A0:27:05:00:65:32:EF:33:A0:06:4F:87:5A:10:09:23:50:9F:D5
Certificate issuer: /CN=90a02705006532ef33a0064f875a100923509fd5
Certificate serial: 019CE523270162AD4FE78A2A1BAFEDCBC60C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kKAnBQBlMu8zoAZPh1oQCSNQn9U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
Manifest number: 1237
Signing time: Fri 13 Mar 2026 03:00:11 +0000
Manifest this update: Fri 13 Mar 2026 03:00:11 +0000
Manifest next update: Sat 14 Mar 2026 03:00:11 +0000
Files and hashes: 1: fEyQPPeKri3xxIwF-GK2DK9OO9c.roa (hash: 7YArpvgzsRn7tFDaYlxf0t+umiWwVKrDBhvgYPCrlAc=)
2: kKAnBQBlMu8zoAZPh1oQCSNQn9U.crl (hash: Pw7qfwplDpxrJkhgny8Qpxm4ADvgSF/E22v+GJnwX4s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.crl
rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
rsync://rpki.ripe.net/repository/DEFAULT/kKAnBQBlMu8zoAZPh1oQCSNQn9U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 00:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e5:23:27:01:62:ad:4f:e7:8a:2a:1b:af:ed:cb:c6:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90a02705006532ef33a0064f875a100923509fd5
Validity
Not Before: Mar 13 03:00:11 2026 GMT
Not After : Mar 14 03:00:11 2026 GMT
Subject: CN=29baaa843b6c9e2a473deeef40499a2c62933c4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3a:1f:a1:80:fd:60:41:8a:ad:f0:ae:34:76:
f1:67:47:53:5e:e6:f6:90:7f:eb:26:98:ee:cb:8e:
f4:8e:23:0c:49:f5:bb:c1:90:32:a8:a6:ef:2b:ba:
30:88:dd:d1:10:45:0e:c0:60:ae:ea:36:f3:9a:3a:
a1:d8:98:e7:61:fd:5e:a5:6a:cf:da:d5:35:0c:b1:
cd:54:61:09:dd:b6:73:76:bc:22:2e:fc:fe:e2:b1:
39:a1:7d:8a:06:b3:a9:6e:19:03:cd:cd:09:10:42:
83:8f:cc:4a:df:f4:d2:95:97:06:ff:92:b1:0a:6a:
47:3a:27:b0:ee:8b:47:98:48:6f:04:f6:4c:46:f0:
02:42:ad:b1:32:f2:fc:f2:9f:03:aa:5a:d5:80:1c:
13:64:e9:27:f9:a4:e3:2f:ef:be:bc:2b:15:d6:eb:
ad:12:68:9d:19:78:ca:49:aa:dc:80:e7:08:dc:47:
ba:99:29:35:ed:ee:aa:63:d9:27:57:58:25:8d:76:
cc:1b:ce:49:e7:12:72:68:a1:4f:c3:4c:b1:41:c3:
ed:a7:3e:b1:c6:cf:b4:5c:5c:d9:d9:77:97:9f:bc:
cc:d2:64:e2:be:c6:8e:eb:52:d3:69:6d:58:30:aa:
11:02:70:1a:02:57:d3:d9:e0:23:98:71:2d:5e:a8:
95:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:BA:AA:84:3B:6C:9E:2A:47:3D:EE:EF:40:49:9A:2C:62:93:3C:4C
X509v3 Authority Key Identifier:
keyid:90:A0:27:05:00:65:32:EF:33:A0:06:4F:87:5A:10:09:23:50:9F:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kKAnBQBlMu8zoAZPh1oQCSNQn9U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/90/d9f482-135e-47f6-9317-6785ada527c1/1/kKAnBQBlMu8zoAZPh1oQCSNQn9U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:ac:77:fb:68:68:d0:d2:2f:43:7f:4f:cc:36:93:95:80:03:
99:8a:0a:b4:10:bb:24:19:1e:bd:36:6b:53:44:22:e5:36:7d:
a9:4d:0d:87:6d:82:0e:32:a1:61:ba:a1:30:da:45:8d:a6:c3:
c7:3f:7a:ef:97:86:96:62:62:7c:46:66:f8:f9:f8:0d:ee:93:
bc:b4:59:bf:b0:17:a0:63:68:a1:6c:f2:a7:43:1c:48:54:b4:
1b:d2:12:bd:a0:dc:43:f1:e7:54:e9:ac:47:0f:71:fc:51:3d:
97:0a:18:92:c8:54:0d:12:76:96:3d:89:c0:c2:31:f4:83:85:
77:0c:62:5b:58:13:7a:c6:6b:c4:02:d1:a2:09:1d:26:aa:74:
d2:ee:72:18:5d:0e:cf:de:eb:69:99:fe:f1:9d:f2:3c:ba:b7:
48:eb:e0:2e:2e:5a:37:dc:26:e0:23:d6:86:34:4a:44:62:d9:
f1:51:8a:ba:24:91:1f:a0:68:f8:52:e2:a9:85:b1:78:d8:e8:
44:a0:bb:6d:36:83:fa:9f:6a:bb:c7:73:a5:f2:21:a3:04:b2:
65:f9:15:0d:d0:10:ea:af:5a:2d:a9:d5:11:70:c4:7f:6b:33:
c1:50:07:3f:25:3b:96:6f:b4:23:fb:40:cb:5c:a7:1e:49:36:
03:c8:2c:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 11:18:14 2026 by rpki-client