Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
File: kRAQDzzHh9YxUwPLf8iNniXlbqg.mft (raw, json)
Hash identifier: KYDqBj0jem8oE1orDv3I9DooeFEoIMjnstjXE6f8CBg=
Subject key identifier: 4E:93:6A:14:40:A4:F6:41:83:A8:3A:67:22:27:7E:13:54:FA:43:CB
Authority key identifier: 91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
Certificate issuer: /CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Certificate serial: 019D397806A224401E1E4DC3BEC7169E63D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
Manifest number: 0CA4
Signing time: Sun 29 Mar 2026 12:01:00 +0000
Manifest this update: Sun 29 Mar 2026 12:01:00 +0000
Manifest next update: Mon 30 Mar 2026 12:01:00 +0000
Files and hashes: 1: P_Lt8AY8fM5LppruerzO34vRqLY.roa (hash: zp6zmtIN8JWsWA0pcCGjGihKqrwJVCtW0jabbQoyYms=)
2: kRAQDzzHh9YxUwPLf8iNniXlbqg.crl (hash: u0biJDhowu5fedbcY3w/ZXYyWrEBo9pIhVoStxzzQxo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 12:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:78:06:a2:24:40:1e:1e:4d:c3:be:c7:16:9e:63:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9110100f3cc787d6315303cb7fc88d9e25e56ea8
Validity
Not Before: Mar 29 12:01:00 2026 GMT
Not After : Mar 30 12:01:00 2026 GMT
Subject: CN=4e936a1440a4f64183a83a6722277e1354fa43cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:eb:9b:0b:3a:9c:c6:aa:a3:80:a0:4c:c9:bb:
12:fd:d8:6d:1a:8c:8f:eb:a3:b6:b5:53:ae:f3:80:
03:cb:38:b0:13:0a:81:46:e2:df:21:4e:3b:c5:57:
68:6b:43:46:34:a5:c5:2c:ff:13:21:20:57:2a:76:
b8:a8:1a:44:5d:1a:49:e0:49:d4:42:1c:06:d0:86:
73:a8:34:01:89:a5:4c:d1:11:64:b8:3d:d5:28:80:
e8:6c:b6:b0:25:94:83:01:19:77:9c:16:a3:8a:72:
cf:bd:41:eb:1f:fd:cd:27:27:83:44:88:3c:f8:c6:
39:f7:8a:13:e7:ab:bf:63:7d:bc:75:16:b6:d9:10:
c6:48:a2:c9:e2:8c:d0:81:a7:1b:f1:58:6e:a0:87:
78:38:74:5d:02:be:29:18:3b:a7:43:b1:3b:c4:62:
bd:83:db:9b:a0:3b:19:a4:5e:b1:58:fd:77:4f:73:
e5:cc:a9:d6:7a:3a:ae:af:8d:bd:1b:a4:8d:ff:70:
a0:4d:e2:a2:04:b2:db:f7:2e:cc:38:86:c8:f8:f8:
77:5a:96:38:94:cc:17:59:d6:97:4a:b1:93:2c:e8:
bb:82:fa:fa:c0:03:21:aa:61:fb:86:d8:2a:48:49:
27:bd:68:6e:6b:7c:2c:3e:8a:57:46:80:a7:bb:f8:
d9:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:93:6A:14:40:A4:F6:41:83:A8:3A:67:22:27:7E:13:54:FA:43:CB
X509v3 Authority Key Identifier:
keyid:91:10:10:0F:3C:C7:87:D6:31:53:03:CB:7F:C8:8D:9E:25:E5:6E:A8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kRAQDzzHh9YxUwPLf8iNniXlbqg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/d900b3-5462-4eb4-9c90-0e0377d4e6d6/1/kRAQDzzHh9YxUwPLf8iNniXlbqg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9c:97:71:c3:0d:52:99:58:b4:05:40:97:ba:87:ca:e0:4c:da:
a8:e6:91:e4:47:e3:3d:d9:08:a7:4d:50:f8:50:91:d2:e9:02:
c9:85:f2:0c:3b:42:a6:cb:0e:52:ce:0c:25:f2:0b:e2:9a:46:
f4:48:6e:47:09:e6:5d:ac:2d:25:30:d4:15:4d:16:92:00:78:
c3:4f:2f:43:a2:ab:75:bb:52:7a:9c:98:5f:b9:75:3f:02:c7:
da:d2:88:a1:70:fd:a8:5b:82:7e:fb:c3:e4:8e:f7:d5:2e:10:
ea:ec:dd:c3:67:21:ff:4b:34:38:d0:64:05:20:95:9c:9d:37:
7a:eb:7e:f0:d8:ee:62:a4:2f:e9:17:b7:eb:4d:90:6c:ea:8a:
f2:2b:25:a6:d9:f7:35:15:97:d3:10:8c:d1:b0:c2:95:d2:0d:
06:82:ea:0d:5f:d4:82:e3:69:47:8d:f6:3c:26:ba:e6:f1:ac:
61:bf:fe:fc:99:51:82:0e:55:f6:d8:0b:d3:a9:f7:4d:30:8e:
27:35:a4:83:fd:c5:90:17:7d:6c:df:89:6a:bd:e2:54:bb:2d:
39:9e:c3:5f:69:83:43:67:d5:a3:9e:d7:91:34:a4:80:92:07:
ca:c5:aa:10:97:35:98:92:c3:51:f4:c8:55:08:55:45:88:1a:
7b:c8:81:ae
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ05eAaiJEAeHk3DvscWnmPVMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMTAxMDBmM2NjNzg3ZDYzMTUzMDNjYjdmYzg4ZDllMjVl
NTZlYTgwHhcNMjYwMzI5MTIwMTAwWhcNMjYwMzMwMTIwMTAwWjAzMTEwLwYDVQQD
Eyg0ZTkzNmExNDQwYTRmNjQxODNhODNhNjcyMjI3N2UxMzU0ZmE0M2NiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyOubCzqcxqqjgKBMybsS/dhtGoyP
66O2tVOu84ADyziwEwqBRuLfIU47xVdoa0NGNKXFLP8TISBXKna4qBpEXRpJ4EnU
QhwG0IZzqDQBiaVM0RFkuD3VKIDobLawJZSDARl3nBajinLPvUHrH/3NJyeDRIg8
+MY594oT56u/Y328dRa22RDGSKLJ4ozQgacb8VhuoId4OHRdAr4pGDunQ7E7xGK9
g9uboDsZpF6xWP13T3PlzKnWejqur429G6SN/3CgTeKiBLLb9y7MOIbI+Ph3WpY4
lMwXWdaXSrGTLOi7gvr6wAMhqmH7htgqSEknvWhua3wsPopXRoCnu/jZswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE6TahRApPZBg6g6ZyInfhNU+kPLMB8GA1UdIwQY
MBaAFJEQEA88x4fWMVMDy3/IjZ4l5W6oMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy9kOTAwYjMtNTQ2Mi00ZWI0LTljOTAt
MGUwMzc3ZDRlNmQ2LzEva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iYy9kOTAwYjMtNTQ2Mi00ZWI0LTljOTAtMGUwMzc3ZDRlNmQ2
LzEva1JBUUR6ekhoOVl4VXdQTGY4aU5uaVhsYnFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnJdxww1S
mVi0BUCXuofK4EzaqOaR5EfjPdkIp01Q+FCR0ukCyYXyDDtCpssOUs4MJfIL4ppG
9EhuRwnmXawtJTDUFU0WkgB4w08vQ6KrdbtSepyYX7l1PwLH2tKIoXD9qFuCfvvD
5I731S4Q6uzdw2ch/0s0ONBkBSCVnJ03eut+8NjuYqQv6Re3602QbOqK8islptn3
NRWX0xCM0bDCldINBoLqDV/UguNpR432PCa65vGsYb/+/JlRgg5V9tgL06n3TTCO
JzWkg/3FkBd9bN+Jar3iVLstOZ7DX2mDQ2fVo57XkTSkgJIHysWqEJc1mJLDUfTI
VQhVRYgae8iBrg==
-----END CERTIFICATE-----
Generated at Sun Mar 29 21:19:46 2026 by rpki-client