Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
File: rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft (raw, json)
Hash identifier: lxqg7mGyPv+j+i1MTkKIDlpZgkHSbswm/uD/VBFUPhM=
Subject key identifier: 00:9C:51:D5:37:DA:87:B4:0B:86:F9:15:A5:14:A5:79:3D:7F:FD:A4
Authority key identifier: AD:D9:20:79:94:BA:9C:7D:91:EA:7E:47:9F:EF:D1:B8:09:9F:62:CE
Certificate issuer: /CN=add9207994ba9c7d91ea7e479fefd1b8099f62ce
Certificate serial: 019D37521C3513E506418678EF5A9B1EAEBF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
Manifest number: 1899
Signing time: Sun 29 Mar 2026 02:00:21 +0000
Manifest this update: Sun 29 Mar 2026 02:00:21 +0000
Manifest next update: Mon 30 Mar 2026 02:00:21 +0000
Files and hashes: 1: KyN0CWaCH1SDWYOUqLNksdNsPzE.roa (hash: /rmcscD08dlHwE/FpDvYW0hn0CSDsvSiHmlRiI8+lQg=)
2: rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl (hash: RAuhJ2CtYj0asvhq93HfadKiNsSrMSwPqekkiJAJeIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl
rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 02:00:21 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:37:52:1c:35:13:e5:06:41:86:78:ef:5a:9b:1e:ae:bf
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=add9207994ba9c7d91ea7e479fefd1b8099f62ce
Validity
Not Before: Mar 29 02:00:21 2026 GMT
Not After : Mar 30 02:00:21 2026 GMT
Subject: CN=009c51d537da87b40b86f915a514a5793d7ffda4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:58:45:44:1e:40:1a:b9:69:6b:54:76:5d:11:
2c:cc:1d:23:26:ab:8d:41:bb:f3:22:d8:8e:6b:2a:
f5:74:4e:47:69:18:bc:d5:1d:17:61:e9:d7:86:aa:
2c:b8:3f:aa:f7:df:33:97:c5:48:64:9f:a0:4a:f0:
ab:3d:07:c1:cb:66:48:d4:f6:07:90:d8:5c:44:4d:
15:b8:6c:47:5c:22:93:5c:37:4a:2a:e5:76:80:15:
7c:53:6b:24:fc:77:5b:31:8a:20:70:40:30:99:71:
48:92:18:bc:fc:1b:7d:c1:1e:90:f1:e5:10:11:b7:
6e:9f:25:26:5b:65:94:a8:fc:32:82:95:94:46:6e:
00:6f:67:36:23:44:94:94:34:41:f3:da:9c:62:4e:
d9:7d:cc:5e:e3:61:57:6f:1f:d2:88:a6:71:69:46:
e8:bb:82:82:84:17:1a:c3:93:26:bf:0a:d2:e2:fd:
8f:12:bf:bc:1e:e1:0e:30:2e:16:c8:44:ab:08:86:
f3:a7:b9:de:0c:a4:2a:ca:31:fa:2a:40:bb:91:75:
95:da:23:ba:6d:44:1b:64:93:ff:9d:e4:8e:15:ac:
65:67:ee:e9:46:c3:82:df:a0:91:2f:d1:f2:c8:03:
e0:20:fe:4f:74:34:9d:2f:07:ee:9b:90:ce:48:c9:
c8:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
00:9C:51:D5:37:DA:87:B4:0B:86:F9:15:A5:14:A5:79:3D:7F:FD:A4
X509v3 Authority Key Identifier:
keyid:AD:D9:20:79:94:BA:9C:7D:91:EA:7E:47:9F:EF:D1:B8:09:9F:62:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/47a9c9-d457-4579-b2b0-e5212574f9ec/1/rdkgeZS6nH2R6n5Hn-_RuAmfYs4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:f4:0e:98:18:a0:9a:5f:34:30:07:de:b3:3e:35:f0:1b:fa:
37:6d:0e:83:82:e2:3a:07:17:24:8c:ff:bf:cd:af:05:f2:a5:
0e:0f:9d:3d:0e:f3:44:41:0c:e5:c9:bf:9c:ee:94:a1:12:92:
84:69:35:3f:3b:ff:17:e3:37:a0:15:5d:ed:e7:da:b9:d2:60:
bf:6f:d0:88:e4:a1:5b:ab:82:e6:f5:7e:4b:7e:ef:b4:41:91:
d1:0b:6d:8c:f0:66:b3:39:59:47:c1:85:e9:84:48:f6:a5:63:
1b:a1:2b:bf:98:4f:89:84:76:0e:d6:f5:a2:e6:67:57:d2:16:
d5:52:1c:21:6e:66:e7:7b:4f:9c:62:8f:85:d7:39:50:d0:1a:
db:6a:fe:5d:d0:a2:f8:1f:b5:81:06:e4:4c:f3:10:1e:73:a0:
52:4f:4f:8c:85:06:87:ef:62:96:0b:ed:51:19:0e:91:d8:a1:
6d:2f:58:2c:ed:27:9d:4a:3d:c0:78:25:ce:8b:f2:d3:ad:fe:
f7:ce:c9:b0:c6:be:8a:3f:4e:16:61:f0:c0:9e:b0:10:7c:08:
19:c5:4a:ae:93:1f:d8:91:a7:35:a4:2a:c9:2d:9b:d9:9c:a4:
25:1d:fd:82:5b:90:18:a5:ad:80:8a:05:68:07:f8:3a:5d:0b:
3c:3b:9f:0c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ03Uhw1E+UGQYZ471qbHq6/MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGFkZDkyMDc5OTRiYTljN2Q5MWVhN2U0NzlmZWZkMWI4MDk5
ZjYyY2UwHhcNMjYwMzI5MDIwMDIxWhcNMjYwMzMwMDIwMDIxWjAzMTEwLwYDVQQD
EygwMDljNTFkNTM3ZGE4N2I0MGI4NmY5MTVhNTE0YTU3OTNkN2ZmZGE0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsFhFRB5AGrlpa1R2XREszB0jJquN
QbvzItiOayr1dE5HaRi81R0XYenXhqosuD+q998zl8VIZJ+gSvCrPQfBy2ZI1PYH
kNhcRE0VuGxHXCKTXDdKKuV2gBV8U2sk/HdbMYogcEAwmXFIkhi8/Bt9wR6Q8eUQ
EbdunyUmW2WUqPwygpWURm4Ab2c2I0SUlDRB89qcYk7Zfcxe42FXbx/SiKZxaUbo
u4KChBcaw5MmvwrS4v2PEr+8HuEOMC4WyESrCIbzp7neDKQqyjH6KkC7kXWV2iO6
bUQbZJP/neSOFaxlZ+7pRsOC36CRL9HyyAPgIP5PdDSdLwfum5DOSMnIVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFACcUdU32oe0C4b5FaUUpXk9f/2kMB8GA1UdIwQY
MBaAFK3ZIHmUupx9kep+R5/v0bgJn2LOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvcmRrZ2VaUzZuSDJSNm41SG4tX1J1QW1mWXM0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC80N2E5YzktZDQ1Ny00NTc5LWIyYjAt
ZTUyMTI1NzRmOWVjLzEvcmRrZ2VaUzZuSDJSNm41SG4tX1J1QW1mWXM0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZC80N2E5YzktZDQ1Ny00NTc5LWIyYjAtZTUyMTI1NzRmOWVj
LzEvcmRrZ2VaUzZuSDJSNm41SG4tX1J1QW1mWXM0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkfQOmBig
ml80MAfesz418Bv6N20Og4LiOgcXJIz/v82vBfKlDg+dPQ7zREEM5cm/nO6UoRKS
hGk1Pzv/F+M3oBVd7efaudJgv2/QiOShW6uC5vV+S37vtEGR0QttjPBmszlZR8GF
6YRI9qVjG6Erv5hPiYR2Dtb1ouZnV9IW1VIcIW5m53tPnGKPhdc5UNAa22r+XdCi
+B+1gQbkTPMQHnOgUk9PjIUGh+9ilgvtURkOkdihbS9YLO0nnUo9wHglzovy063+
987JsMa+ij9OFmHwwJ6wEHwIGcVKrpMf2JGnNaQqyS2b2ZykJR39gluQGKWtgIoF
aAf4Ol0LPDufDA==
-----END CERTIFICATE-----
Generated at Sun Mar 29 11:28:59 2026 by rpki-client