Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: 3Mgl6ucGqI6dY1DYYlqOo/z37Ms7sFf/enUNogH9sbU=
Subject key identifier: 76:9C:CC:A0:06:19:4A:B2:1A:35:59:8E:FE:21:E8:25:33:FD:D9:5A
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 019CE4116C637F397E4CD8C91CD5648B2C77
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 14F9
Signing time: Thu 12 Mar 2026 22:01:12 +0000
Manifest this update: Thu 12 Mar 2026 22:01:12 +0000
Manifest next update: Fri 13 Mar 2026 22:01:12 +0000
Files and hashes: 1: B6o8w4JwncV5UpdSgcO7ItJ2vOY.roa (hash: fNh1jUU0AZ9h8EIANivzzlh97Xsidf9NN1/ISCBJySU=)
2: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: tsGsO8IOb5OtsWgxzc7wH13wL50TfeqttKL4sD2rzKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 22:01:12 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:11:6c:63:7f:39:7e:4c:d8:c9:1c:d5:64:8b:2c:77
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Mar 12 22:01:12 2026 GMT
Not After : Mar 13 22:01:12 2026 GMT
Subject: CN=769ccca006194ab21a35598efe21e82533fdd95a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ea:6d:2c:a4:77:a2:73:a2:1e:ca:c6:95:dd:59:
8b:fa:7a:a3:33:1f:3f:d4:ab:07:9b:11:25:5b:48:
d7:61:52:0d:53:9d:7d:c0:61:60:83:c8:94:ba:15:
6d:11:63:0c:48:23:cb:91:1a:8c:64:01:4c:6a:e8:
b8:7c:3e:9c:32:3e:c9:a8:b0:75:2e:1c:7f:9d:44:
a5:fa:af:af:66:bd:c8:91:68:ec:a9:e6:83:ad:79:
e1:ec:bc:4a:ef:1e:9f:26:7a:61:96:88:c6:93:49:
1c:69:4e:35:62:9b:1c:d8:79:4a:28:01:dd:1a:70:
79:a8:3b:ea:3c:f0:68:2c:53:0a:cc:c5:9a:19:1e:
6b:10:d2:c3:4c:ee:6d:cb:75:ee:b4:1f:1d:8e:9c:
59:1a:da:99:51:0c:d0:0a:53:b7:f7:ff:f6:2d:27:
c7:92:27:54:83:f7:5f:af:bf:dc:8e:4f:d3:ed:0d:
68:7b:d8:47:f1:5c:9e:e6:08:81:cb:56:45:6a:18:
65:e1:e1:6f:26:09:a0:ca:e4:fd:f8:ff:cf:84:cf:
54:95:68:18:19:1a:cf:ef:fd:39:84:2b:31:67:a1:
0a:28:f3:26:c4:fa:18:1f:76:db:7f:b4:9e:2b:b0:
5c:92:90:43:9d:21:09:de:d8:11:31:00:4f:07:67:
d2:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
76:9C:CC:A0:06:19:4A:B2:1A:35:59:8E:FE:21:E8:25:33:FD:D9:5A
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1f:40:f2:39:ba:24:2c:d5:95:ba:17:da:74:93:f1:f5:47:51:
51:67:73:74:0e:e8:76:61:8b:01:2a:8b:c4:0d:de:c6:d4:c8:
65:9a:65:c4:00:56:b3:a4:68:33:e4:3e:37:83:51:56:5f:a7:
e1:fb:eb:38:14:3a:16:af:81:1c:8c:72:ad:17:0d:ab:58:50:
29:19:ed:6f:10:5a:ab:36:c1:35:80:e6:58:fa:99:52:23:ad:
38:6b:71:62:60:94:ca:ba:3e:2f:51:9d:58:70:cf:b7:d7:6c:
6b:2e:31:72:dc:d4:53:3c:df:bb:06:2b:2d:c4:5c:7a:14:e3:
63:f1:94:4f:26:4c:7b:11:e0:ac:88:3b:b9:96:2f:aa:86:e9:
9c:fd:d3:9d:a8:94:18:0d:c5:dc:8f:e3:de:35:cc:7c:d1:f2:
6e:18:3c:46:af:f0:4d:3b:89:88:21:a8:c4:e3:49:74:4b:bf:
d4:f9:d5:ea:d7:2b:5c:01:59:45:32:28:a3:ce:1c:74:82:3f:
23:b3:b1:d8:3e:e4:b9:17:e5:91:49:bd:a1:ac:7b:d5:b8:fe:
98:d5:29:39:72:e8:61:dc:5d:84:84:e0:f6:5c:64:cc:56:c8:
b0:02:19:a5:06:3e:53:c3:e4:8c:65:d8:cc:ab:f8:b2:5f:7e:
66:70:7a:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 13 07:24:19 2026 by rpki-client