Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
File: K67n6kgtYqZxBj6sg3ia8585C3Q.mft (raw, json)
Hash identifier: +hur9+taasnDKkiEmqENJp9mQJmO/szVEK/ZiGObW0g=
Subject key identifier: A8:B3:A5:25:BB:1D:C2:9F:FA:59:48:7D:D4:D3:A7:4A:7F:CF:55:EE
Authority key identifier: 2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74
Certificate issuer: /CN=2baee7ea482d62a671063eac83789af39f390b74
Certificate serial: 019CA97D28F577FB66767F3EA63343740641
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
Manifest number: 0A03
Signing time: Sun 01 Mar 2026 13:01:17 +0000
Manifest this update: Sun 01 Mar 2026 13:01:17 +0000
Manifest next update: Mon 02 Mar 2026 13:01:17 +0000
Files and hashes: 1: 57OxBTF4X7lyr00PQWTLC_7l0LM.roa (hash: Qu9Cp0fGN2f6UG2Bu1+rVSKBmfLjLGmUIUXyj9DRqEM=)
2: K67n6kgtYqZxBj6sg3ia8585C3Q.crl (hash: y7fJGNV59wSzvOKE7cj2W0PMQewUAzX+beUeLDvk2XE=)
3: wLKTHNAi_SKjDTW74BcesnX-WQQ.asa (hash: j48nzI6JGxErzvih/a7iFeEhyD9lYuYhcQYuQ7FCZgk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl
rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 06:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7d:28:f5:77:fb:66:76:7f:3e:a6:33:43:74:06:41
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2baee7ea482d62a671063eac83789af39f390b74
Validity
Not Before: Mar 1 13:01:17 2026 GMT
Not After : Mar 2 13:01:17 2026 GMT
Subject: CN=a8b3a525bb1dc29ffa59487dd4d3a74a7fcf55ee
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:55:46:b8:65:7c:ec:32:8b:6d:e7:15:bb:cc:
b8:2b:43:b6:b2:41:63:3a:81:5a:57:80:28:46:1d:
a9:02:3a:74:4e:b9:7b:86:cc:4a:48:bb:c6:ab:f0:
b6:0e:d9:ed:fd:8a:eb:ad:7f:36:c6:94:8b:cd:c6:
0e:3a:9f:32:67:37:bb:2f:76:b2:5a:36:1c:32:57:
60:b5:ff:ee:33:68:85:98:43:e9:b3:b8:39:9a:63:
c8:1a:2b:78:e0:39:4f:96:a0:af:ec:7e:0d:0f:91:
f8:ee:bc:63:10:2f:5a:77:a0:f4:c0:89:82:56:9d:
d2:1c:e5:12:aa:af:52:23:91:a9:d0:d1:d5:54:45:
ee:7e:1c:4a:e3:54:92:5e:7d:45:6b:2f:32:6a:78:
8c:10:4e:90:08:d3:39:66:d4:4b:cf:90:b9:5a:79:
88:ec:9c:8f:8c:a7:71:4a:46:38:9b:25:c8:18:8c:
4a:8a:76:19:19:fa:75:4a:46:5c:ef:8b:11:a5:d7:
2b:6b:84:93:b3:57:dc:f5:fb:82:08:3e:27:94:e5:
18:38:95:52:4f:ae:11:8d:d1:3d:7b:ce:2b:0e:08:
58:bd:21:db:d5:52:c0:e6:b5:af:90:e5:b4:dd:b3:
ca:0e:6c:d7:da:0a:11:90:aa:dc:a2:c8:45:8b:f7:
6c:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:B3:A5:25:BB:1D:C2:9F:FA:59:48:7D:D4:D3:A7:4A:7F:CF:55:EE
X509v3 Authority Key Identifier:
keyid:2B:AE:E7:EA:48:2D:62:A6:71:06:3E:AC:83:78:9A:F3:9F:39:0B:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K67n6kgtYqZxBj6sg3ia8585C3Q.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/07/015784-3705-418a-b994-7521af1ce259/1/K67n6kgtYqZxBj6sg3ia8585C3Q.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:95:b5:f3:5c:ca:6a:f5:46:f9:37:5e:97:01:af:6e:4f:a0:
d1:4c:63:86:47:45:50:c4:e0:ad:48:af:7a:e4:17:07:7b:49:
a5:8e:a2:5f:23:0d:e9:7b:28:2b:87:49:70:1b:d0:08:04:22:
73:b1:ef:da:8e:4a:21:17:47:cd:dc:f7:7e:55:bb:4c:83:a4:
66:6d:d1:f6:15:7a:21:c4:05:be:85:4f:0e:f2:da:25:51:8b:
e5:21:36:01:44:f8:1a:82:49:4e:ed:77:cf:91:ba:77:64:a2:
8b:8c:90:4e:87:d4:75:f2:f7:c7:8d:c7:8d:fe:96:e0:13:0b:
41:25:c9:41:6d:9e:49:b5:f8:02:ce:7a:93:68:08:25:07:0a:
f2:26:43:7e:dc:49:b2:1f:41:e1:14:29:aa:00:bb:40:9b:92:
54:2a:b3:91:64:bc:e3:98:e3:00:ef:7c:6d:4c:87:3f:01:63:
b8:cd:ee:5b:da:9f:d0:71:19:1f:3d:3b:95:96:91:0f:69:9f:
88:7d:25:51:ee:c3:5f:0f:c0:4d:52:50:0f:0b:b3:ab:f6:0d:
1a:e9:5e:40:77:ae:b4:6c:17:43:71:06:f6:56:90:cd:5f:41:
c2:df:0f:92:7d:c4:38:c7:a7:d7:f2:84:85:c9:f8:83:d0:97:
1a:4f:32:83
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZypfSj1d/tmdn8+pjNDdAZBMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJiYWVlN2VhNDgyZDYyYTY3MTA2M2VhYzgzNzg5YWYzOWYz
OTBiNzQwHhcNMjYwMzAxMTMwMTE3WhcNMjYwMzAyMTMwMTE3WjAzMTEwLwYDVQQD
EyhhOGIzYTUyNWJiMWRjMjlmZmE1OTQ4N2RkNGQzYTc0YTdmY2Y1NWVlMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1VGuGV87DKLbecVu8y4K0O2skFj
OoFaV4AoRh2pAjp0Trl7hsxKSLvGq/C2Dtnt/YrrrX82xpSLzcYOOp8yZze7L3ay
WjYcMldgtf/uM2iFmEPps7g5mmPIGit44DlPlqCv7H4ND5H47rxjEC9ad6D0wImC
Vp3SHOUSqq9SI5Gp0NHVVEXufhxK41SSXn1Fay8yaniMEE6QCNM5ZtRLz5C5WnmI
7JyPjKdxSkY4myXIGIxKinYZGfp1SkZc74sRpdcra4STs1fc9fuCCD4nlOUYOJVS
T64RjdE9e84rDghYvSHb1VLA5rWvkOW03bPKDmzX2goRkKrcoshFi/dscQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFKizpSW7HcKf+llIfdTTp0p/z1XuMB8GA1UdIwQY
MBaAFCuu5+pILWKmcQY+rIN4mvOfOQt0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQt
NzUyMWFmMWNlMjU5LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wNy8wMTU3ODQtMzcwNS00MThhLWI5OTQtNzUyMWFmMWNlMjU5
LzEvSzY3bjZrZ3RZcVp4Qmo2c2czaWE4NTg1QzNRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFpW181zK
avVG+TdelwGvbk+g0UxjhkdFUMTgrUiveuQXB3tJpY6iXyMN6XsoK4dJcBvQCAQi
c7Hv2o5KIRdHzdz3flW7TIOkZm3R9hV6IcQFvoVPDvLaJVGL5SE2AUT4GoJJTu13
z5G6d2Sii4yQTofUdfL3x43Hjf6W4BMLQSXJQW2eSbX4As56k2gIJQcK8iZDftxJ
sh9B4RQpqgC7QJuSVCqzkWS845jjAO98bUyHPwFjuM3uW9qf0HEZHz07lZaRD2mf
iH0lUe7DXw/ATVJQDwuzq/YNGuleQHeutGwXQ3EG9laQzV9Bwt8Pkn3EOMen1/KE
hcn4g9CXGk8ygw==
-----END CERTIFICATE-----
Generated at Sun Mar 1 16:33:52 2026 by rpki-client