Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
File: kPwsEuoXAhuorOBiGJfwhW2sJVk.mft (raw, json)
Hash identifier: JOhLsqF9NJjOowFoI00CabvCDi4yGlcznlykp3PoBvA=
Subject key identifier: 1B:D3:D8:BE:35:AC:A7:A3:CE:ED:9E:8C:68:5D:EA:36:A7:C8:7B:95
Authority key identifier: 90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
Certificate issuer: /CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Certificate serial: 019DCE9981CF5CF3970A6B42B52888AEDFF9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
Manifest number: 0857
Signing time: Mon 27 Apr 2026 11:00:59 +0000
Manifest this update: Mon 27 Apr 2026 11:00:59 +0000
Manifest next update: Tue 28 Apr 2026 11:00:59 +0000
Files and hashes: 1: 41FDoFH6M2is1lsICkgfh5ITDqc.roa (hash: EewgyLxSVnO+QoRL7ntY20ccJSFgs1pW1bzWTclj1yE=)
2: BRDlyqeJrmrBAcGjXwsME96B8FA.roa (hash: jjDNz/Y1cZhGq2xfdDGq/oEMuXVbmPo8+lz5IqqCETc=)
3: kPwsEuoXAhuorOBiGJfwhW2sJVk.crl (hash: Vfr+7Ao1wbUkCzhZE3HozN6uOGrMg0V+1tCwXPfqwsQ=)
4: nXsgPSU5eo-g-H5HVGkbUxzs-M0.roa (hash: bHUY+9ATlshHA4NGy9V8O1pXq9p6uilZoEQtRA9DmuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 08:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:ce:99:81:cf:5c:f3:97:0a:6b:42:b5:28:88:ae:df:f9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90fc2c12ea17021ba8ace0621897f0856dac2559
Validity
Not Before: Apr 27 11:00:59 2026 GMT
Not After : Apr 28 11:00:59 2026 GMT
Subject: CN=1bd3d8be35aca7a3ceed9e8c685dea36a7c87b95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:69:b8:72:86:8e:07:5b:33:38:ea:f9:d3:f1:
7d:de:63:26:d4:95:79:0c:03:08:be:c5:16:17:48:
71:59:1b:ee:e5:fb:50:52:b4:ea:49:ec:92:bf:50:
24:85:e9:f4:c7:df:2b:a4:a7:7c:f3:7d:09:ad:c7:
c1:71:0a:13:43:5a:b7:17:6e:68:34:c0:cb:0d:cc:
b5:0f:61:44:67:da:aa:af:eb:76:ab:e6:78:3a:54:
ad:a4:e6:45:28:ca:5b:24:7d:b1:63:f1:5e:1c:8d:
2b:80:15:bd:c7:1c:92:4e:79:70:34:e9:a6:49:34:
22:93:7c:a6:0c:28:a3:7f:04:5f:e9:42:cf:d8:2f:
71:84:bd:55:eb:0d:05:37:59:e4:8c:ce:86:15:3d:
5e:93:fa:c5:45:c8:5a:08:58:36:cb:6f:f0:7e:7d:
08:91:ef:a9:f6:70:4e:87:ba:27:61:23:25:65:1b:
12:85:40:6c:aa:53:38:55:db:d6:4d:a1:d5:c0:19:
d5:cd:23:24:1c:10:6b:6a:ff:b7:df:59:b6:c7:38:
b4:d8:90:b2:77:3a:89:61:e2:d5:b1:9c:18:9f:6b:
fc:39:31:33:3b:3d:2e:3f:0c:3e:09:23:21:ac:04:
b0:23:f3:d8:7a:13:ad:ec:b4:05:7e:06:02:4b:72:
c9:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:D3:D8:BE:35:AC:A7:A3:CE:ED:9E:8C:68:5D:EA:36:A7:C8:7B:95
X509v3 Authority Key Identifier:
keyid:90:FC:2C:12:EA:17:02:1B:A8:AC:E0:62:18:97:F0:85:6D:AC:25:59
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kPwsEuoXAhuorOBiGJfwhW2sJVk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/af/951bce-2850-4943-8f00-db2c57f4ef16/1/kPwsEuoXAhuorOBiGJfwhW2sJVk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2b:93:66:f1:7e:9c:6c:10:ec:e2:40:e2:30:31:76:75:70:36:
d2:33:c3:04:ff:59:af:18:c8:b1:cb:5b:ed:c3:21:9b:79:cc:
c8:54:86:98:b4:7f:22:e0:dd:74:5b:22:f7:26:c8:fe:0d:54:
c2:bc:24:8e:d0:44:b9:f9:53:dc:2c:07:40:ed:b0:15:65:e6:
c0:0c:12:ca:f8:e4:4d:c4:b4:60:ed:59:66:27:f3:2d:c1:5c:
a3:86:e9:a8:46:76:00:df:91:fb:34:c0:37:e4:34:c6:28:b9:
75:f1:c9:cd:ca:1e:d0:84:3b:4a:a7:c4:b8:9c:69:0a:2d:74:
ff:e0:84:a0:aa:a3:2b:9b:ff:a1:dd:4a:09:93:56:2d:2c:5b:
ef:60:47:27:72:bb:73:32:c3:55:15:c3:d8:3b:62:67:a0:e0:
e7:a8:9e:ff:d9:2f:da:ed:b2:38:36:15:57:36:22:85:db:0d:
84:b0:c0:a3:25:31:46:2c:3a:8d:f6:f8:ac:0f:00:ac:3b:f8:
07:cd:e4:e3:3e:04:a2:23:a8:24:66:56:3e:5c:87:1e:96:d4:
b7:61:d7:83:91:9b:ec:f9:84:ff:5b:9b:5e:35:fe:5d:3e:c6:
0b:42:27:dd:5a:d1:41:d0:f4:e0:82:9f:53:2a:24:d6:03:3c:
ae:bb:2c:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 15:42:24 2026 by rpki-client