Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
File: kUXq2NPxKEQCtvdWFKhyV1A84bw.mft (raw, json)
Hash identifier: 685oQgs86gQexYoZhPccwf0DC3ozN6EtgQsCYMqrWM8=
Subject key identifier: B9:2D:C3:A5:90:C1:B9:2E:E5:ED:4D:09:BA:6C:9C:3F:20:EC:7A:C2
Authority key identifier: 91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
Certificate issuer: /CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Certificate serial: 019CADC7554DFE5ABFE0960F334434CDF473
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
Manifest number: 1601
Signing time: Mon 02 Mar 2026 09:00:47 +0000
Manifest this update: Mon 02 Mar 2026 09:00:47 +0000
Manifest next update: Tue 03 Mar 2026 09:00:47 +0000
Files and hashes: 1: EA-NEOtP3uDP9jqB_OwjrtlomoQ.roa (hash: f9ettJwQvG7z/vLtWszxNDWQ12P3Qi4WIIeHx0l0KMI=)
2: RUWdvZOnBJK0iIW0niXlms-_ZTE.roa (hash: 2+wMNcHhj5TvnlxNSP9HNjiQphs6X1jHdgsBG2jH8oQ=)
3: dJ99YeIlqHaqk3MFFpF1s00gLYY.roa (hash: 2get34VvGB/+dlsQY7O9iVM7eMGsBo6doetqxUk2mpw=)
4: kUXq2NPxKEQCtvdWFKhyV1A84bw.crl (hash: 1lWpidaOFAsa1/ktm9UIb7CNj7B6w3CMdI3TPwEFAA8=)
5: oZzPr194SGFDBoXBt9T9kB-yFLc.roa (hash: Dw3uJz0rcR+PJswxCLk9+YfSwY4+DIuftXl5NNe/QJg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c7:55:4d:fe:5a:bf:e0:96:0f:33:44:34:cd:f4:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9145ead8d3f1284402b6f75614a87257503ce1bc
Validity
Not Before: Mar 2 09:00:47 2026 GMT
Not After : Mar 3 09:00:47 2026 GMT
Subject: CN=b92dc3a590c1b92ee5ed4d09ba6c9c3f20ec7ac2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:50:22:b1:0c:a6:d2:40:2b:c8:93:99:25:06:
ab:29:91:e6:6e:14:7e:3f:92:a9:5c:4c:88:6b:dd:
27:d0:f7:3f:e3:78:10:cc:ad:b0:11:7d:64:3a:d2:
11:9d:46:cc:c1:bf:68:36:e1:2f:e6:13:37:13:36:
af:71:35:5d:e3:1f:00:dd:87:78:eb:ad:09:71:40:
2e:85:c8:90:2f:ec:47:d1:27:ba:67:6f:17:66:4e:
ba:c2:b1:40:2f:db:07:0a:06:1c:b3:24:b7:0f:bd:
74:62:ab:0a:7c:b3:2d:90:fb:e2:1e:00:37:27:86:
ec:5c:bf:79:25:a2:f8:98:b1:a4:c0:59:3f:10:a9:
08:71:ed:cb:d0:96:46:35:26:eb:b5:19:54:b7:26:
46:f0:a4:96:3c:ca:e8:79:9e:8b:75:b5:53:05:62:
87:9f:05:15:9c:fc:d1:29:e0:bb:55:6b:b9:bb:a4:
9c:32:db:63:b6:91:f3:2a:eb:fb:dd:b4:11:6d:5d:
1d:f6:5e:7e:b0:4d:14:01:c1:07:e5:b5:b0:eb:d1:
bc:62:d4:67:76:03:20:8a:a8:36:67:b2:8d:b8:65:
a3:bd:bd:c7:6f:05:25:f1:5b:f4:84:0b:b1:2e:d6:
17:a6:34:36:bf:25:4e:4c:1a:1b:50:a3:83:12:62:
81:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B9:2D:C3:A5:90:C1:B9:2E:E5:ED:4D:09:BA:6C:9C:3F:20:EC:7A:C2
X509v3 Authority Key Identifier:
keyid:91:45:EA:D8:D3:F1:28:44:02:B6:F7:56:14:A8:72:57:50:3C:E1:BC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kUXq2NPxKEQCtvdWFKhyV1A84bw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/a5235f-62fb-4abb-8037-2ad195264c72/1/kUXq2NPxKEQCtvdWFKhyV1A84bw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:5e:0c:52:26:ac:88:c8:29:b4:7a:13:98:bf:fb:38:d1:ed:
a3:ab:fe:54:aa:74:61:20:17:51:80:80:c5:84:8a:80:5e:47:
27:b9:ec:40:4c:66:62:f6:3c:69:3a:2c:05:4d:26:0e:f8:59:
3b:e1:99:cb:64:f1:d5:98:a4:46:c6:cb:67:56:8e:07:8b:18:
c8:82:68:bb:d5:2a:c0:65:35:ea:61:c6:1d:a9:b2:11:71:b9:
9d:24:82:f8:22:ee:3a:ed:3d:c1:3f:35:c8:19:66:66:53:41:
17:b5:eb:16:c6:1f:2b:e1:bd:5c:7e:60:7a:14:e6:0a:2f:38:
55:58:42:44:2a:77:cd:3f:5f:e7:df:2b:ca:2f:f3:9a:d1:0b:
bc:c4:80:a7:8e:64:fe:c1:29:c7:c1:4d:75:d6:4e:3c:a2:e9:
35:51:57:06:1c:4a:a6:f6:cf:9d:4f:4d:6d:f5:ec:a3:b2:9d:
61:25:41:0e:7c:10:4e:37:ce:00:07:2e:36:b5:6e:0f:ca:af:
8a:9d:b0:4b:a6:07:7b:10:4b:65:4b:e0:1b:13:16:4b:53:91:
87:63:9a:9d:59:27:5d:16:05:99:a1:d8:6f:de:fe:5d:e1:85:
25:4f:0f:09:7c:cd:2b:d0:90:61:26:75:9c:cd:2f:97:44:b3:
c1:36:2d:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 15:35:17 2026 by rpki-client