Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: LV27FMjUgc+Ce004W0by8s3NWTZ3+edKNmJFv9/+/wE=
Subject key identifier: DB:B7:5E:9F:93:80:2E:B2:EC:57:CA:27:E8:F9:A3:8D:B6:68:07:AA
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 019CE44781CACFD3CA611B0FA4336B44D68D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 0922
Signing time: Thu 12 Mar 2026 23:00:17 +0000
Manifest this update: Thu 12 Mar 2026 23:00:17 +0000
Manifest next update: Fri 13 Mar 2026 23:00:17 +0000
Files and hashes: 1: Cj5p4m8nBSHqFI7cIXQ0jxVaZqs.roa (hash: L+v38GzXEltb5Lhi/QksoQvn5l/DyY6ZKL5vW/SAZU0=)
2: ME0H6FJMomj5qNZa55hYa_mg8BI.roa (hash: 9JjtlUlu4wsnh6OKmL8KpV7lEe7W07be+5Wu0KAr73g=)
3: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: W1byLFHw/JtMPjSvFPgSTCZ+2E4z01K6R0t13OU+mtE=)
4: mxim8hiMW6KSmM1j_q23upqnj0k.roa (hash: hg33XIuLOCBoWLYKxDMan6DF9gxch5zAkStGQyi0GIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 13 Mar 2026 21:05:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:e4:47:81:ca:cf:d3:ca:61:1b:0f:a4:33:6b:44:d6:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Mar 12 23:00:17 2026 GMT
Not After : Mar 13 23:00:17 2026 GMT
Subject: CN=dbb75e9f93802eb2ec57ca27e8f9a38db66807aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:ca:2c:5c:d5:61:a8:ce:5b:e2:5e:f5:6a:1a:
d3:a7:32:6c:87:98:00:d3:45:a7:0d:9c:2a:10:85:
18:26:03:e0:fb:c1:08:dc:38:1e:86:ea:99:f5:2f:
45:fd:eb:ab:85:35:22:61:84:fd:f2:79:a6:4b:c2:
08:93:cb:fe:f9:c3:b5:a7:ea:37:47:63:75:06:bb:
e6:e9:76:f7:15:1d:b6:34:e3:6a:86:8b:e2:07:46:
a0:3d:e7:b0:e2:0d:c0:83:cf:da:c0:f6:81:bd:26:
05:db:0d:b6:3d:0e:6d:79:1b:68:d4:1a:11:bc:71:
14:ae:c7:72:24:2a:b5:c8:a4:3e:73:42:5e:38:0e:
e7:3d:45:14:1a:51:97:d1:de:ce:c0:cc:7c:90:81:
28:c6:12:0b:b5:36:dd:c9:a2:cb:fd:f4:3a:1f:25:
ce:b1:07:0c:31:5a:5a:44:09:3e:3e:7a:27:42:18:
d5:af:c5:9e:9d:de:57:5c:87:17:de:1e:6e:b1:b6:
5c:99:3f:94:89:92:14:c5:bf:29:0a:a6:63:4d:58:
31:2d:5d:c2:70:4e:09:88:3c:0c:d5:41:c8:ea:55:
cd:42:66:91:86:d2:5b:c5:3a:ae:52:35:dd:3c:c4:
2d:5a:6f:2b:a1:1e:fc:26:15:5b:b8:27:5f:0b:5b:
91:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:B7:5E:9F:93:80:2E:B2:EC:57:CA:27:E8:F9:A3:8D:B6:68:07:AA
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:b5:7c:98:dc:b6:05:32:15:80:6c:ac:32:2a:66:3e:c9:cb:
0d:5c:e8:02:59:61:d2:f4:a3:c9:55:12:a1:7e:02:b6:bb:65:
d7:1e:aa:6d:f0:a7:46:79:69:3a:4f:5e:dc:26:82:ff:7e:5a:
ce:e8:96:c9:c9:d8:b1:6d:9f:49:32:56:71:55:6c:04:65:e5:
2f:dd:90:bc:20:a4:e6:0a:20:b0:d4:ed:f3:99:99:f2:72:05:
13:1f:75:da:15:c7:21:05:f1:48:84:d0:0e:8f:43:f3:ad:d0:
5d:ed:bf:6f:6e:60:a8:f9:cd:71:34:17:46:c7:1c:e4:dc:af:
d6:ff:3e:1f:2a:cf:c7:3d:ec:22:80:f6:f6:93:d0:4a:7e:b3:
9d:36:68:33:79:38:d2:be:8f:a6:49:3e:a9:71:79:b1:60:57:
ff:de:11:fc:b3:87:40:fe:7d:e3:fa:41:8b:76:42:1b:81:5a:
ed:85:02:f8:62:cd:5f:11:3a:b0:f2:b4:e6:75:c2:56:95:5b:
d5:73:c9:c5:65:7b:6a:61:29:86:55:35:e1:1a:b9:9d:09:e7:
21:b2:17:30:ff:40:79:8d:cc:e4:66:16:c2:48:c5:26:28:8f:
b5:93:0a:27:0b:32:3b:0d:f1:f9:10:5a:7a:50:3f:12:86:d0:
fe:15:b3:1a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZzkR4HKz9PKYRsPpDNrRNaNMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDMwYTM0ZjlkMWRiZDIwYWE4N2ZiMGY2MmJkMmI2YzVlMzBj
NjE0YTIwHhcNMjYwMzEyMjMwMDE3WhcNMjYwMzEzMjMwMDE3WjAzMTEwLwYDVQQD
EyhkYmI3NWU5ZjkzODAyZWIyZWM1N2NhMjdlOGY5YTM4ZGI2NjgwN2FhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMosXNVhqM5b4l71ahrTpzJsh5gA
00WnDZwqEIUYJgPg+8EI3DgehuqZ9S9F/eurhTUiYYT98nmmS8IIk8v++cO1p+o3
R2N1Brvm6Xb3FR22NONqhoviB0agPeew4g3Ag8/awPaBvSYF2w22PQ5teRto1BoR
vHEUrsdyJCq1yKQ+c0JeOA7nPUUUGlGX0d7OwMx8kIEoxhILtTbdyaLL/fQ6HyXO
sQcMMVpaRAk+PnonQhjVr8Wend5XXIcX3h5usbZcmT+UiZIUxb8pCqZjTVgxLV3C
cE4JiDwM1UHI6lXNQmaRhtJbxTquUjXdPMQtWm8roR78JhVbuCdfC1uR+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNu3Xp+TgC6y7FfKJ+j5o422aAeqMB8GA1UdIwQY
MBaAFDCjT50dvSCqh/sPYr0rbF4wxhSiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9lZTQ3MzItYzNiYS00MDg4LWE1ZmEt
ZWI2NTNkMzYyMmJiLzEvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kYy9lZTQ3MzItYzNiYS00MDg4LWE1ZmEtZWI2NTNkMzYyMmJi
LzEvTUtOUG5SMjlJS3FILXc5aXZTdHNYakRHRktJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbLV8mNy2
BTIVgGysMipmPsnLDVzoAllh0vSjyVUSoX4Ctrtl1x6qbfCnRnlpOk9e3CaC/35a
zuiWycnYsW2fSTJWcVVsBGXlL92QvCCk5gogsNTt85mZ8nIFEx912hXHIQXxSITQ
Do9D863QXe2/b25gqPnNcTQXRscc5Nyv1v8+HyrPxz3sIoD29pPQSn6znTZoM3k4
0r6Ppkk+qXF5sWBX/94R/LOHQP594/pBi3ZCG4Fa7YUC+GLNXxE6sPK05nXCVpVb
1XPJxWV7amEphlU14Rq5nQnnIbIXMP9AeY3M5GYWwkjFJiiPtZMKJwsyOw3x+RBa
elA/EobQ/hWzGg==
-----END CERTIFICATE-----
Generated at Fri Mar 13 07:12:31 2026 by rpki-client