Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
File: KT0QRM1I1hcW11ngIN29qoFNXNU.mft (raw, json)
Hash identifier: 4dehN9KgJZiggedbJJJBJBIgZn6cx3vDY2uR291hbMA=
Subject key identifier: AD:AD:A9:24:7D:29:51:E3:BB:05:84:1E:8B:69:F9:1A:AE:63:1B:E8
Authority key identifier: 29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
Certificate issuer: /CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Certificate serial: 019CE6DB01D272B574C2BD9F8069D33B02AD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
Manifest number: 106C
Signing time: Fri 13 Mar 2026 11:00:38 +0000
Manifest this update: Fri 13 Mar 2026 11:00:38 +0000
Manifest next update: Sat 14 Mar 2026 11:00:38 +0000
Files and hashes: 1: G8Xjmm3bP-hXRGstLE8Fpo1sPVM.roa (hash: fWJBQMog1YWkp2bEy9v1fjvr2kKDsca319UpenUU6lI=)
2: KT0QRM1I1hcW11ngIN29qoFNXNU.crl (hash: u71Efu+hsVWKy2Sr5YYZTPCwbxOUi4g/6kRNBuNxCbE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 14 Mar 2026 09:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e6:db:01:d2:72:b5:74:c2:bd:9f:80:69:d3:3b:02:ad
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=293d1044cd48d61716d759e020ddbdaa814d5cd5
Validity
Not Before: Mar 13 11:00:38 2026 GMT
Not After : Mar 14 11:00:38 2026 GMT
Subject: CN=adada9247d2951e3bb05841e8b69f91aae631be8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:ea:2d:d9:7a:b6:f9:ec:fb:e0:54:7e:f8:95:
ab:16:0c:0b:dc:33:73:96:13:a6:1c:4f:32:b9:c2:
c2:2c:2e:6a:71:ab:71:fe:c7:8e:89:7c:89:85:bf:
55:9f:9f:bf:e1:e2:e3:96:e1:26:83:4c:98:84:6e:
6d:27:40:0f:3a:d7:4b:37:ae:7d:d8:1c:e8:07:a8:
a9:20:f0:b6:5c:c7:e7:be:68:bc:fb:b4:33:7b:52:
bc:d7:33:27:c2:ae:47:3e:83:4a:be:c1:34:9c:a3:
4f:2c:5a:14:54:a0:8c:1b:04:1b:18:21:09:0c:a5:
66:24:c3:c5:a0:25:b5:e5:f0:b8:5c:e1:0e:a2:db:
b7:33:6a:0d:77:cb:d6:af:7e:a2:a2:18:32:88:40:
02:43:a4:cf:99:9e:77:95:3d:b4:8e:67:e8:91:d3:
be:41:52:d3:81:92:2b:8f:a9:9a:df:f3:c9:f2:bf:
f0:42:f4:53:32:80:b9:ea:13:07:8b:5b:74:67:dd:
e4:7f:03:03:94:2f:d7:b3:6d:7d:b8:c3:5a:80:59:
f1:5b:b9:cb:29:98:3a:a7:37:be:77:69:c9:ec:27:
e4:8b:92:db:36:a6:76:52:c1:7b:85:fb:b3:61:0b:
b7:09:50:8a:d6:d9:7e:50:ea:7f:f2:09:fd:96:b6:
33:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:AD:A9:24:7D:29:51:E3:BB:05:84:1E:8B:69:F9:1A:AE:63:1B:E8
X509v3 Authority Key Identifier:
keyid:29:3D:10:44:CD:48:D6:17:16:D7:59:E0:20:DD:BD:AA:81:4D:5C:D5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KT0QRM1I1hcW11ngIN29qoFNXNU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/def095-056b-4dd3-bf1e-e71beda1f299/1/KT0QRM1I1hcW11ngIN29qoFNXNU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
32:0c:e2:f7:ae:56:7d:cc:3d:57:e7:76:a0:43:4f:29:36:e8:
72:88:a2:34:91:24:a0:32:41:20:5d:7f:00:62:65:14:f5:f2:
e7:a3:45:28:e3:e6:ec:48:eb:b9:76:3a:e8:5e:ad:f9:a8:71:
78:7e:ba:ed:b6:76:36:1a:b3:e7:e0:77:dc:59:53:29:7e:d6:
d5:72:4a:e4:a4:fc:7f:65:a2:42:ae:ae:54:b6:c6:16:64:f5:
ca:30:0b:12:7d:c5:33:54:1b:f8:fb:01:c1:bc:44:dc:46:8f:
d4:a5:ea:ed:d3:3b:f8:7a:b9:d7:a8:57:c5:f4:a7:f8:6e:1a:
9b:86:63:7b:06:0c:4c:ec:c9:b1:31:c6:98:d2:89:8e:3b:96:
df:aa:62:4d:8a:38:82:d1:4a:5a:c5:63:ce:70:c4:67:c4:48:
ab:20:f0:b2:d6:4d:26:20:9a:79:19:fa:a1:6b:69:fe:b4:24:
5e:ae:f4:48:2e:d8:97:cd:44:07:7a:6b:8a:0d:ad:f8:d3:cc:
c8:96:a1:35:81:8b:a9:5e:23:55:c4:47:bb:b5:c0:a8:1f:24:
c5:80:76:fc:0c:7d:c7:a6:fb:e6:8d:3f:2b:92:4d:bd:79:63:
c0:ad:37:c6:c7:30:79:6e:0e:5b:1c:e5:61:b2:cd:75:a5:a4:
d2:83:19:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 14:32:32 2026 by rpki-client