Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
File: kd3H2eAtRMa_jGNcHQcV9uicEBI.mft (raw, json)
Hash identifier: kP4CwjrOMGwqFnXsJvRcOE7ZZifN4mW6iQc8toHRFqY=
Subject key identifier: BE:44:A6:42:03:5B:A4:FF:FE:4E:D0:D3:FC:68:D7:8B:41:7F:6E:E9
Authority key identifier: 91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
Certificate issuer: /CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Certificate serial: 019CADFED265A05685342C7C9BCFA675AFC2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
Manifest number: 0203
Signing time: Mon 02 Mar 2026 10:01:24 +0000
Manifest this update: Mon 02 Mar 2026 10:01:24 +0000
Manifest next update: Tue 03 Mar 2026 10:01:24 +0000
Files and hashes: 1: MvpTS49h0GRvY0Tj2YEwLbaS2cM.roa (hash: gDgNzdOYz3KjBH95RxNa3YAdnlDk82nruMEoI3Ezi38=)
2: kd3H2eAtRMa_jGNcHQcV9uicEBI.crl (hash: p105CQLzsvqLtXNFigWGPdvKuedI77Kj1HSc8IGhP00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:fe:d2:65:a0:56:85:34:2c:7c:9b:cf:a6:75:af:c2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Validity
Not Before: Mar 2 10:01:24 2026 GMT
Not After : Mar 3 10:01:24 2026 GMT
Subject: CN=be44a642035ba4fffe4ed0d3fc68d78b417f6ee9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:b2:f7:a9:2a:7b:8b:0d:ed:59:d0:4a:70:4d:
ae:71:99:77:5f:f2:f1:a8:9e:3f:07:b5:37:00:0c:
04:17:27:59:a7:09:12:66:af:cd:8e:bc:c8:de:f8:
7e:1c:48:72:e1:0b:d8:90:66:56:4d:12:66:70:0b:
2b:64:d2:fb:d3:f8:69:2d:16:6f:2b:7c:19:06:8d:
96:12:3f:16:a8:6b:65:a4:1d:e2:89:2d:7a:65:3f:
d3:e8:bd:53:c5:50:43:68:4c:7f:15:e4:ca:bc:49:
76:04:da:eb:ba:75:ef:f5:3e:c9:32:b5:90:36:f4:
97:8b:cd:97:d2:ea:10:e4:37:ac:b2:48:36:90:0d:
6d:3c:2f:6a:b0:eb:23:00:be:a2:3f:33:99:20:4c:
9b:9b:32:dc:f7:2b:fc:47:d0:a8:f4:4d:46:82:4b:
50:24:e2:76:55:8c:fa:14:2b:52:b8:34:8b:ab:8b:
ac:45:74:78:b4:40:36:71:a0:73:bf:63:73:66:8b:
76:fe:ed:93:e7:e6:fe:ff:e2:41:5a:cc:85:15:bc:
c2:9b:f1:8e:c1:8c:a1:63:3a:4a:7d:6a:27:19:f3:
3d:c9:ab:62:e0:a5:4c:29:eb:7e:db:7c:2a:9a:12:
3d:c7:fb:7d:04:8f:ae:04:b4:e1:0e:a7:b5:a6:46:
82:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BE:44:A6:42:03:5B:A4:FF:FE:4E:D0:D3:FC:68:D7:8B:41:7F:6E:E9
X509v3 Authority Key Identifier:
keyid:91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
17:c1:05:a5:b8:9e:42:83:7d:59:cc:a1:23:d9:ce:54:38:02:
7c:18:76:db:6d:d9:ec:6c:81:ad:17:8c:71:21:55:dc:9b:7a:
ad:06:72:80:34:f6:50:86:ca:50:8d:28:a2:25:76:65:f4:3e:
72:c1:2a:ba:84:b3:d4:12:c5:e3:9a:eb:2d:ed:90:9f:91:e4:
29:fa:81:98:77:28:85:c8:12:f5:8a:e8:11:d5:bf:37:44:3c:
1a:a1:62:12:a6:48:5a:31:3d:df:2e:60:42:54:88:af:a9:94:
cf:90:ba:e4:a0:3c:2a:bf:2e:1b:76:45:c1:b0:07:96:6b:e8:
b8:c5:84:a3:33:29:ef:11:dc:79:26:36:2a:a8:b6:99:38:cd:
76:d7:ba:de:c8:f8:e8:87:d4:ea:61:93:b7:c1:cb:ea:6d:5a:
07:0f:a5:ba:d6:ea:55:12:f9:85:a7:d9:0d:06:bf:55:d8:75:
c3:bb:2d:ca:9a:09:29:41:39:3d:27:0e:e4:ad:e8:35:1f:21:
44:b0:37:0a:83:73:05:ff:19:24:56:bc:5e:96:01:e4:3e:17:
29:36:4e:1e:ba:89:47:78:a5:c2:b7:e5:2d:ac:c7:12:4f:7e:
6e:66:e2:7f:ee:62:63:80:6f:cc:34:ff:74:6f:82:58:72:69:
09:6f:6f:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 14:59:26 2026 by rpki-client