Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
File: kMV7R1FqkODP4HIVeTenM71QO-A.mft (raw, json)
Hash identifier: PV1fQzkYZBuUDq+2dElf/V+k7qpapujJpQKKRAdg+Kk=
Subject key identifier: 07:82:88:97:8D:FF:FB:58:86:95:10:96:79:20:CA:2F:81:3E:E8:91
Authority key identifier: 90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
Certificate issuer: /CN=90c57b47516a90e0cfe072157937a733bd503be0
Certificate serial: 019D389BCE9F77303FA8BC5D5237B1651E5C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
Manifest number: 0C01
Signing time: Sun 29 Mar 2026 08:00:28 +0000
Manifest this update: Sun 29 Mar 2026 08:00:28 +0000
Manifest next update: Mon 30 Mar 2026 08:00:28 +0000
Files and hashes: 1: HedsGQinxKEoucD_-YwSKpsXVyE.roa (hash: Xcrwx8/CkX+Fe5VSYvO/6Sz1NsHEDec2ei5HK0TdHo4=)
2: kMV7R1FqkODP4HIVeTenM71QO-A.crl (hash: cfG+TABmC0veofqVPPRLDS8Q83zhbk8GnMzdkjJmr3I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:ce:9f:77:30:3f:a8:bc:5d:52:37:b1:65:1e:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c57b47516a90e0cfe072157937a733bd503be0
Validity
Not Before: Mar 29 08:00:28 2026 GMT
Not After : Mar 30 08:00:28 2026 GMT
Subject: CN=078288978dfffb58869510967920ca2f813ee891
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:85:8d:66:12:eb:f3:81:b6:7c:ee:17:bd:1c:
b3:71:61:c3:3c:22:61:f6:87:8d:ab:10:46:49:dc:
7d:2d:1b:70:cd:11:17:9b:87:6f:6a:77:8f:48:02:
b1:a1:51:66:53:4d:16:39:b8:d4:da:70:0d:ff:6e:
3f:30:fb:37:a5:f7:42:0d:bc:f8:49:f6:cc:fc:df:
0f:db:59:c6:68:56:ce:fe:ee:f1:02:80:9c:a4:d1:
34:c6:04:7b:14:74:9e:4f:d6:98:8d:82:5a:26:2a:
80:a9:57:37:a7:a8:d1:27:b3:d9:2b:c4:be:15:2c:
16:6d:ab:a8:40:fb:ee:4d:22:e4:52:35:70:9d:fb:
2c:6a:c7:1e:4e:87:9b:5c:fe:d1:e2:78:f2:07:45:
66:dd:78:f4:0d:f2:68:be:d1:f0:b5:7b:16:f2:0c:
ff:14:97:40:01:19:96:23:df:e1:81:6e:c3:65:46:
c2:f3:58:50:2d:27:46:88:25:c9:63:7a:cd:db:2a:
c0:79:a8:8d:41:4f:1f:b7:9b:f9:6a:1d:31:9c:44:
e5:f5:cf:17:01:09:80:93:87:2f:1a:1b:e9:c7:63:
47:91:81:89:cd:9e:5f:4d:d8:af:11:fa:b4:4c:52:
d1:3e:6b:22:5c:dc:b8:55:ce:ac:a4:2e:48:0e:5d:
fd:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:82:88:97:8D:FF:FB:58:86:95:10:96:79:20:CA:2F:81:3E:E8:91
X509v3 Authority Key Identifier:
keyid:90:C5:7B:47:51:6A:90:E0:CF:E0:72:15:79:37:A7:33:BD:50:3B:E0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMV7R1FqkODP4HIVeTenM71QO-A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c0/516f8b-b4d2-431c-be47-cfacb25084d7/1/kMV7R1FqkODP4HIVeTenM71QO-A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:48:eb:1e:29:a8:ec:e8:ef:2a:36:f9:31:8d:cb:fe:b6:37:
ce:b0:03:cb:32:b5:fd:e9:1d:8d:54:5a:e6:a0:45:ab:b9:5e:
c1:49:ae:33:4a:53:c0:e7:9a:a4:47:29:e4:ef:6e:0c:63:a7:
ee:1d:9f:f3:0f:29:b9:c6:3f:a3:6b:5c:80:f9:f2:45:4c:af:
b4:ff:07:2c:41:01:93:ee:7d:97:45:39:79:63:28:b6:63:cd:
42:ab:b5:37:8f:8b:70:c4:0c:8b:b2:f8:70:f9:06:5f:73:f6:
53:76:1f:5d:16:6f:ec:5d:5b:4b:f3:3d:6c:0a:2e:58:02:9b:
4a:0d:64:fd:a9:92:38:d1:b9:40:e8:db:4e:e9:a2:49:e9:ac:
fd:b2:05:6b:78:a8:60:e8:00:3c:1a:49:39:8f:ef:08:09:b6:
4f:db:e1:24:ab:a3:0b:57:d5:b7:5b:d4:94:36:9e:2b:ca:35:
44:3c:c2:59:7c:35:38:c6:7d:a7:0b:74:01:0f:4f:c4:9a:24:
fd:c9:aa:7c:33:f0:56:39:fa:1f:df:9e:c8:cb:d3:46:77:09:
ad:ac:36:57:a3:31:a0:92:94:76:37:83:80:47:dc:82:fe:1f:
3c:b3:de:64:b1:be:5d:9a:2f:ad:7d:cc:01:a2:44:00:d1:da:
bc:85:34:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 11:16:50 2026 by rpki-client