Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: g9+/sgBz4h7kMizY6B3LwxMyesuwz7V/B5OJbu7noB0=
Subject key identifier: 50:02:0F:E4:CD:77:3F:38:BF:02:0D:21:60:F3:A3:D9:B6:CB:38:80
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 019D37F6DA174B2AC1F42CDD68CF2BD3D7A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 05E6
Signing time: Sun 29 Mar 2026 05:00:17 +0000
Manifest this update: Sun 29 Mar 2026 05:00:17 +0000
Manifest next update: Mon 30 Mar 2026 05:00:17 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: ry0SVV5S6zkBKdvtpLhWsMZ496LV9igyZ77dwV0kdK8=)
2: ir9SuLduq8J9bIwWBVKAyAFiwvk.roa (hash: LeNR5QQthmrMSFvWNxLjb0RXrLTd6w9z7OeC3M8gneo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 05:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:f6:da:17:4b:2a:c1:f4:2c:dd:68:cf:2b:d3:d7:a6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Mar 29 05:00:17 2026 GMT
Not After : Mar 30 05:00:17 2026 GMT
Subject: CN=50020fe4cd773f38bf020d2160f3a3d9b6cb3880
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:26:0d:35:1b:d1:e9:ae:31:b6:d7:83:5f:a3:
58:28:f5:ba:9d:2a:cc:fe:70:80:de:f4:02:61:2a:
4a:fc:98:54:20:23:b0:8a:d0:80:03:cd:de:e3:a2:
8f:30:49:c3:5c:8c:14:6c:bc:eb:ba:21:98:1f:c9:
e9:40:b0:fc:f6:83:29:d2:ce:49:19:43:ae:00:03:
c0:17:26:8e:23:da:af:3a:f1:5d:71:be:91:2c:8c:
76:60:8e:e6:60:22:86:55:59:1e:c0:30:1d:8a:60:
2a:db:95:6a:d5:f1:ed:de:72:7b:af:e1:23:fa:93:
01:8e:07:56:c6:5d:bd:6b:e4:37:ca:81:f6:37:4e:
b2:40:45:ad:2a:60:46:5d:7d:63:8d:ab:34:89:90:
07:21:41:c1:e2:6e:e7:bc:66:34:e2:1c:9b:58:ac:
a2:5f:b1:e5:ba:bd:d4:83:13:e5:a5:1b:a4:e8:7b:
a2:5a:91:f9:ce:6b:f4:e4:6e:b1:f5:08:5f:b5:1d:
f0:09:40:93:1d:11:2d:69:86:51:d8:f3:3d:eb:3b:
5e:49:40:f7:b2:22:0d:31:fb:f3:1b:b9:10:52:be:
98:b3:f8:88:c3:f7:03:a7:f7:0f:49:aa:fa:cd:91:
ac:f7:24:de:54:ad:52:c0:f2:31:a2:85:69:87:8f:
2f:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:02:0F:E4:CD:77:3F:38:BF:02:0D:21:60:F3:A3:D9:B6:CB:38:80
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3e:4f:0b:2f:49:5e:31:fa:2f:13:13:27:ff:b8:92:6c:05:02:
11:33:13:0f:4a:64:2a:d0:a6:93:7b:e2:2c:67:0b:56:1f:d8:
c3:ab:de:18:82:03:d6:07:f9:ac:3b:74:47:6c:50:61:45:c7:
74:32:cc:e6:e7:1e:02:34:52:e7:56:8d:04:44:ae:5d:e5:41:
1e:77:8c:3a:25:3b:05:6f:62:13:ee:f5:74:2f:41:55:f7:3a:
43:9b:be:f0:b8:3f:8c:83:fb:a4:ad:b1:ca:4b:5c:98:58:03:
96:c4:66:8e:37:79:2d:83:cd:1a:eb:87:3b:de:f8:18:70:9e:
13:d1:52:51:13:33:4f:cd:91:34:2b:b7:41:15:fa:8d:e0:ea:
96:03:4a:38:fb:47:08:01:7e:1a:ab:5a:f9:ee:ad:ea:3e:eb:
14:f4:e1:29:8b:3c:be:1e:0c:52:89:44:9d:42:9c:31:75:13:
c0:5d:1d:79:3b:c2:46:81:49:bf:e6:a4:c3:2c:a5:3b:38:fe:
9d:c4:2d:a0:42:ad:79:da:55:8c:8d:09:7b:48:03:54:08:fc:
a7:8c:cc:84:87:fb:63:bd:0a:93:44:31:fc:d6:f8:06:d9:2e:
80:3a:5d:a1:d0:88:1a:ea:14:ad:b0:97:5f:87:8c:c0:5f:ee:
65:c3:cd:a6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:29:36 2026 by rpki-client