Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: i41BHTnmSZAYT/Aebuv/Ad1fQvtdEsnAp1tEr+aJ7y0=
Subject key identifier: 4B:B3:E1:16:E0:3A:DF:01:29:28:B8:01:CC:19:A2:E6:9D:5A:CD:C8
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019CA97CFB14D9221E95F69BBD3080A059DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 05F4
Signing time: Sun 01 Mar 2026 13:01:06 +0000
Manifest this update: Sun 01 Mar 2026 13:01:06 +0000
Manifest next update: Mon 02 Mar 2026 13:01:06 +0000
Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=)
2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=)
3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: Eu/I659UHdvl+h2Rh5zn083gy+9s5IQV16uAIkIPVeg=)
5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=)
6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 13:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:7c:fb:14:d9:22:1e:95:f6:9b:bd:30:80:a0:59:db
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Mar 1 13:01:06 2026 GMT
Not After : Mar 2 13:01:06 2026 GMT
Subject: CN=4bb3e116e03adf012928b801cc19a2e69d5acdc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:ac:a0:2a:73:8d:1d:9e:e9:fa:4c:93:18:4b:
78:b0:7d:a8:84:e4:7b:79:80:f5:37:de:eb:c4:a1:
8b:71:9a:79:92:54:48:11:95:f2:a7:4b:0a:84:30:
ad:df:d6:30:5f:62:8c:0f:fe:4b:80:0c:e2:9e:83:
77:7e:f4:a6:33:53:d0:a7:fa:53:1f:a5:b6:9a:7f:
cd:1d:8c:2b:00:50:a0:83:48:0c:b2:ce:cc:23:6a:
fe:98:62:c0:cf:1e:e8:b5:a4:06:fa:62:5a:65:ed:
9e:14:7a:af:34:5f:23:2b:03:80:ff:be:27:86:7e:
86:98:20:f2:05:4c:2a:9e:f9:65:ae:af:45:6a:ba:
8e:e8:6e:53:14:31:d5:d0:af:be:5c:d0:00:7e:a9:
9d:2a:28:09:44:16:55:32:ed:76:3a:5b:d0:c6:5a:
3e:1b:b6:e5:02:a0:0f:e3:fd:67:26:7d:c8:93:68:
00:2a:87:55:3a:43:01:ec:e4:25:8c:09:3a:c1:06:
37:49:cc:a9:ba:aa:77:40:fb:69:c6:50:d3:f0:38:
71:4a:f2:37:1d:df:ee:ee:51:be:65:14:36:be:26:
72:8f:29:ec:84:ae:b8:9e:be:0d:48:cc:67:ff:a5:
1e:9e:1a:0b:56:dc:65:a8:f5:40:46:06:1e:11:c9:
a2:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:B3:E1:16:E0:3A:DF:01:29:28:B8:01:CC:19:A2:E6:9D:5A:CD:C8
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
58:bc:7f:78:fd:cb:55:98:1a:a4:a2:a1:4e:6e:c7:3e:7b:45:
65:a2:f6:8e:a2:c8:67:cf:e5:3d:bf:7e:00:9d:74:9a:2b:b7:
0a:6a:e4:d0:1c:3c:be:b6:21:1a:80:b8:aa:31:5b:8a:e4:c0:
40:81:d6:30:22:7c:58:d0:c6:6d:65:a7:ba:c2:85:4c:7e:a9:
2a:df:7c:86:3a:85:02:d7:17:42:6e:c4:2d:a2:63:85:60:fd:
97:29:6b:70:4e:a8:e6:db:61:15:6e:22:80:e8:5f:65:dc:49:
3d:84:3c:e6:dc:78:c6:2c:c0:27:f0:67:41:45:0d:6c:6c:9c:
0a:3d:b5:8f:4e:7a:09:8f:d7:09:64:70:e3:69:57:53:45:70:
4d:cb:f8:4b:a6:9e:4e:a8:62:4b:8e:32:eb:70:56:bb:3b:97:
64:54:b7:04:b7:30:53:43:dc:54:83:1e:66:ba:f3:ef:b1:82:
a5:36:0a:56:e6:a8:3d:e3:30:e6:44:f9:d5:c0:41:d7:3c:d4:
32:55:73:fe:7c:61:9b:8c:4b:2b:d1:5a:fd:df:92:d9:f2:cf:
77:53:b8:2b:f7:67:17:b2:f8:34:4e:e3:34:de:bc:70:63:7a:
6f:c9:23:ee:07:f8:9e:f9:e8:a4:fc:2f:cf:d1:d1:6e:01:6c:
f1:38:a1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 22:46:59 2026 by rpki-client