Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
File: kd3H2eAtRMa_jGNcHQcV9uicEBI.mft (raw, json)
Hash identifier: BDarOLc0+o7fsVeb8H6bb2WvkG3vU3dSUE7oHqOamEA=
Subject key identifier: E9:38:01:D7:C4:5C:39:5C:43:D4:43:AE:28:8E:50:82:07:AE:AE:8E
Authority key identifier: 91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
Certificate issuer: /CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Certificate serial: 019DA52FB6D75AF0C49CB17011592762A1F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
Manifest number: 0283
Signing time: Sun 19 Apr 2026 10:01:00 +0000
Manifest this update: Sun 19 Apr 2026 10:01:00 +0000
Manifest next update: Mon 20 Apr 2026 10:01:00 +0000
Files and hashes: 1: MvpTS49h0GRvY0Tj2YEwLbaS2cM.roa (hash: gDgNzdOYz3KjBH95RxNa3YAdnlDk82nruMEoI3Ezi38=)
2: kd3H2eAtRMa_jGNcHQcV9uicEBI.crl (hash: 3vROsYk7vlM8Ty4Q2KYB8Bz7ENtiRmjVoZj6veWQeSY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 04:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a5:2f:b6:d7:5a:f0:c4:9c:b1:70:11:59:27:62:a1:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91ddc7d9e02d44c6bf8c635c1d0715f6e89c1012
Validity
Not Before: Apr 19 10:01:00 2026 GMT
Not After : Apr 20 10:01:00 2026 GMT
Subject: CN=e93801d7c45c395c43d443ae288e508207aeae8e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:30:8a:37:04:82:6d:35:0d:a7:ce:16:97:10:
2f:fa:eb:87:44:40:2c:dc:eb:5c:89:c3:c4:59:7e:
d4:94:8d:67:73:dc:96:d6:7e:07:40:f4:30:c6:35:
01:5a:f6:09:22:53:f6:4b:0c:01:15:cb:e2:51:cc:
82:06:14:f8:78:4a:59:71:ce:2e:70:43:f7:20:a7:
b3:d4:8f:4d:16:cc:c7:8c:5d:f8:da:6b:0d:0d:c8:
4f:31:2f:84:d6:95:19:b5:e5:5e:fc:fc:cd:2f:ab:
11:1c:36:17:64:5c:f4:e7:31:f3:59:74:8b:f7:44:
2c:61:2b:75:aa:f1:e0:42:77:ac:83:07:56:b2:53:
02:a9:b2:ea:70:56:f0:1f:cd:e3:96:06:f8:fe:2c:
a0:c2:56:a7:2b:0f:1d:28:7a:2c:bb:1d:90:24:0d:
c0:1c:1b:51:5c:24:a4:a5:cd:c8:b0:a7:36:ea:c0:
51:c5:75:ad:7d:c0:3a:e6:e8:e2:9d:19:1d:06:52:
8d:c4:c1:f4:bd:e6:ec:c7:44:27:9a:93:7a:a5:8c:
8a:94:4d:2b:7e:7b:76:02:d4:55:24:be:5c:42:4d:
c9:9e:dd:f1:92:dc:0c:b6:91:f0:7d:9f:cb:46:b2:
20:7e:3f:7a:97:e8:d3:17:e8:55:66:bb:78:e7:fb:
36:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E9:38:01:D7:C4:5C:39:5C:43:D4:43:AE:28:8E:50:82:07:AE:AE:8E
X509v3 Authority Key Identifier:
keyid:91:DD:C7:D9:E0:2D:44:C6:BF:8C:63:5C:1D:07:15:F6:E8:9C:10:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kd3H2eAtRMa_jGNcHQcV9uicEBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/01/c7afbc-b885-4755-8d15-893b8dd2d2b0/1/kd3H2eAtRMa_jGNcHQcV9uicEBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:58:aa:94:0a:77:ca:2d:37:d9:8f:db:4b:41:05:1f:75:a0:
0a:45:64:98:d9:32:af:53:b5:91:0c:0f:64:0e:19:11:47:ae:
67:fc:2a:8c:09:91:d3:ff:c8:ce:ec:5f:42:7d:26:96:95:99:
ec:76:94:31:22:70:57:a1:76:3e:eb:aa:30:0d:93:5f:63:ac:
82:7a:ae:85:6d:08:66:14:c3:dc:38:ce:a2:19:52:6e:2a:28:
37:2b:00:d1:49:ec:fe:57:2d:d1:64:d7:d0:06:58:cf:75:0d:
88:bc:f6:77:c4:a4:30:16:a9:73:a2:31:01:09:df:63:60:99:
2a:03:b7:ea:f9:c6:df:4e:ad:74:e6:35:c3:78:23:da:5c:1d:
cc:c1:02:5b:55:ff:f5:b2:06:d9:45:42:77:fa:14:8f:80:54:
16:d0:bd:2d:90:93:53:f2:f5:20:94:3b:dd:2a:e4:23:03:e3:
34:a6:aa:97:86:a1:9b:29:b9:d4:a8:47:99:5b:29:3f:a9:58:
72:36:a7:33:4b:16:87:25:61:b3:f6:a7:30:74:61:82:a3:ad:
ae:cf:07:b1:c4:e5:53:ee:57:83:3d:2b:56:c9:32:e2:5d:37:
45:52:d9:da:e7:de:b3:4f:9b:82:b7:4a:8a:de:8f:64:c9:c2:
e9:1c:f1:86
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2lL7bXWvDEnLFwEVknYqHwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxZGRjN2Q5ZTAyZDQ0YzZiZjhjNjM1YzFkMDcxNWY2ZTg5
YzEwMTIwHhcNMjYwNDE5MTAwMTAwWhcNMjYwNDIwMTAwMTAwWjAzMTEwLwYDVQQD
EyhlOTM4MDFkN2M0NWMzOTVjNDNkNDQzYWUyODhlNTA4MjA3YWVhZThlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzCKNwSCbTUNp84WlxAv+uuHREAs
3OtcicPEWX7UlI1nc9yW1n4HQPQwxjUBWvYJIlP2SwwBFcviUcyCBhT4eEpZcc4u
cEP3IKez1I9NFszHjF342msNDchPMS+E1pUZteVe/PzNL6sRHDYXZFz05zHzWXSL
90QsYSt1qvHgQnesgwdWslMCqbLqcFbwH83jlgb4/iygwlanKw8dKHosux2QJA3A
HBtRXCSkpc3IsKc26sBRxXWtfcA65ujinRkdBlKNxMH0vebsx0QnmpN6pYyKlE0r
fnt2AtRVJL5cQk3Jnt3xktwMtpHwfZ/LRrIgfj96l+jTF+hVZrt45/s2FwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOk4AdfEXDlcQ9RDriiOUIIHrq6OMB8GA1UdIwQY
MBaAFJHdx9ngLUTGv4xjXB0HFfbonBASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMS9jN2FmYmMtYjg4NS00NzU1LThkMTUt
ODkzYjhkZDJkMmIwLzEva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wMS9jN2FmYmMtYjg4NS00NzU1LThkMTUtODkzYjhkZDJkMmIw
LzEva2QzSDJlQXRSTWFfakdOY0hRY1Y5dWljRUJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ1iqlAp3
yi032Y/bS0EFH3WgCkVkmNkyr1O1kQwPZA4ZEUeuZ/wqjAmR0//IzuxfQn0mlpWZ
7HaUMSJwV6F2PuuqMA2TX2OsgnquhW0IZhTD3DjOohlSbiooNysA0Uns/lct0WTX
0AZYz3UNiLz2d8SkMBapc6IxAQnfY2CZKgO36vnG306tdOY1w3gj2lwdzMECW1X/
9bIG2UVCd/oUj4BUFtC9LZCTU/L1IJQ73SrkIwPjNKaql4ahmym51KhHmVspP6lY
cjanM0sWhyVhs/anMHRhgqOtrs8HscTlU+5Xgz0rVsky4l03RVLZ2ufes0+bgrdK
it6PZMnC6Rzxhg==
-----END CERTIFICATE-----
Generated at Sun Apr 19 13:41:45 2026 by rpki-client