Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
File: kiYrQ-lHhUb8DhN16LHguv1q3lA.mft (raw, json)
Hash identifier: fADPIjwDCcwShj0/ImWkl1+wVcJMO6RhGAk7H0Q9u0w=
Subject key identifier: 4D:73:4A:54:E6:17:87:5E:84:D1:29:5B:69:A5:04:80:85:99:94:42
Authority key identifier: 92:26:2B:43:E9:47:85:46:FC:0E:13:75:E8:B1:E0:BA:FD:6A:DE:50
Certificate issuer: /CN=92262b43e9478546fc0e1375e8b1e0bafd6ade50
Certificate serial: 019CAE3570EF18A7519DEB00BDCB43FAE033
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
Manifest number: 1844
Signing time: Mon 02 Mar 2026 11:01:03 +0000
Manifest this update: Mon 02 Mar 2026 11:01:03 +0000
Manifest next update: Tue 03 Mar 2026 11:01:03 +0000
Files and hashes: 1: kiYrQ-lHhUb8DhN16LHguv1q3lA.crl (hash: 9UiuN0LEsUXD8z+OIhsGbXVbJyUkjR8O2vLSYfnxZrY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.crl
rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:70:ef:18:a7:51:9d:eb:00:bd:cb:43:fa:e0:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92262b43e9478546fc0e1375e8b1e0bafd6ade50
Validity
Not Before: Mar 2 11:01:03 2026 GMT
Not After : Mar 3 11:01:03 2026 GMT
Subject: CN=4d734a54e617875e84d1295b69a5048085999442
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f6:f9:74:43:bd:54:23:fb:2a:be:47:69:01:50:
3e:2c:7c:d7:ce:d1:b2:74:c4:e5:ee:27:32:aa:b0:
28:ba:06:d1:af:20:8d:e8:d4:d6:72:00:ac:e8:3e:
e0:31:c1:e3:9e:f3:36:18:70:a2:6b:c8:bc:eb:d8:
f3:01:37:5c:72:dd:c1:41:1f:29:9c:07:47:2f:12:
70:70:32:50:b1:c1:d4:c3:4a:5b:e6:18:cd:ac:ca:
00:fb:33:4a:04:d0:d2:ea:7e:4b:29:e3:31:48:0c:
e6:45:b0:66:72:81:52:bc:de:4c:af:39:2e:16:18:
69:71:db:af:7f:b5:5e:26:97:1c:55:59:39:20:3b:
4e:ed:61:f4:13:da:ea:10:13:bd:15:c6:2b:8b:85:
d0:d7:fa:e6:4e:ca:b9:7d:27:c0:ab:0a:2f:06:ac:
eb:e1:3a:bf:31:49:92:f9:c2:65:b4:51:55:79:ad:
23:ae:96:de:63:b5:5d:9e:e6:9d:f7:32:6a:77:fe:
30:36:ff:e6:45:c5:cb:75:3c:fc:89:77:4a:c5:62:
f4:a5:f9:1f:ed:43:3a:1a:a9:55:a4:f0:39:22:be:
bf:e6:d5:13:57:ee:76:12:9f:05:8a:fe:28:4e:0c:
bb:d1:ec:e5:fe:19:b2:7e:30:8a:7a:ec:7b:62:02:
2a:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:73:4A:54:E6:17:87:5E:84:D1:29:5B:69:A5:04:80:85:99:94:42
X509v3 Authority Key Identifier:
keyid:92:26:2B:43:E9:47:85:46:FC:0E:13:75:E8:B1:E0:BA:FD:6A:DE:50
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiYrQ-lHhUb8DhN16LHguv1q3lA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/26/d76c43-dd6d-4986-898f-193814d843d4/1/kiYrQ-lHhUb8DhN16LHguv1q3lA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7a:dd:97:00:ee:a8:ee:d7:91:17:87:d5:c5:03:bc:5e:fa:1b:
40:40:7c:66:f6:a8:f4:33:6e:ef:58:f3:5e:d0:d0:12:83:f2:
2b:f8:3f:b9:24:15:58:5d:88:c0:54:51:58:4e:6e:5c:cf:59:
5f:30:c4:af:7f:8e:14:86:37:44:55:7f:67:ad:6e:25:38:b4:
97:19:bb:07:c8:0f:ad:4b:94:4b:48:62:af:7a:b2:03:42:1e:
04:58:96:1a:10:dd:5a:4e:84:cb:f5:6e:24:6c:1c:62:f5:27:
8c:47:9c:ff:e8:84:d2:84:f6:82:50:75:87:68:ce:3e:7d:cc:
4f:62:9d:fa:88:01:69:e2:b8:b8:60:7f:c0:87:86:22:36:24:
10:48:ee:d3:47:a1:be:e0:62:02:33:ec:97:1b:f4:95:d9:1c:
34:b7:46:9a:99:4c:f1:d6:86:56:82:8e:89:e0:67:2a:1d:b8:
74:7d:20:3c:2b:0f:57:25:e8:45:0e:3c:a5:40:9a:0b:ca:93:
b6:74:fa:57:7d:72:97:9d:05:b6:7c:f2:33:29:a2:2a:a8:73:
9c:4d:19:b6:eb:35:7e:ba:6f:30:5e:d6:2c:ac:0b:0f:36:88:
57:f9:e1:b8:e7:61:df:42:1f:4c:11:f6:33:00:f2:4c:22:c0:
4c:2e:54:f3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyuNXDvGKdRnesAvctD+uAzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMjYyYjQzZTk0Nzg1NDZmYzBlMTM3NWU4YjFlMGJhZmQ2
YWRlNTAwHhcNMjYwMzAyMTEwMTAzWhcNMjYwMzAzMTEwMTAzWjAzMTEwLwYDVQQD
Eyg0ZDczNGE1NGU2MTc4NzVlODRkMTI5NWI2OWE1MDQ4MDg1OTk5NDQyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9vl0Q71UI/sqvkdpAVA+LHzXztGy
dMTl7icyqrAougbRryCN6NTWcgCs6D7gMcHjnvM2GHCia8i869jzATdcct3BQR8p
nAdHLxJwcDJQscHUw0pb5hjNrMoA+zNKBNDS6n5LKeMxSAzmRbBmcoFSvN5Mrzku
Fhhpcduvf7VeJpccVVk5IDtO7WH0E9rqEBO9FcYri4XQ1/rmTsq5fSfAqwovBqzr
4Tq/MUmS+cJltFFVea0jrpbeY7Vdnuad9zJqd/4wNv/mRcXLdTz8iXdKxWL0pfkf
7UM6GqlVpPA5Ir6/5tUTV+52Ep8Fiv4oTgy70ezl/hmyfjCKeux7YgIqyQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE1zSlTmF4dehNEpW2mlBICFmZRCMB8GA1UdIwQY
MBaAFJImK0PpR4VG/A4Tdeix4Lr9at5QMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2lZclEtbEhoVWI4RGhOMTZMSGd1djFxM2xBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9kNzZjNDMtZGQ2ZC00OTg2LTg5OGYt
MTkzODE0ZDg0M2Q0LzEva2lZclEtbEhoVWI4RGhOMTZMSGd1djFxM2xBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8yNi9kNzZjNDMtZGQ2ZC00OTg2LTg5OGYtMTkzODE0ZDg0M2Q0
LzEva2lZclEtbEhoVWI4RGhOMTZMSGd1djFxM2xBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAet2XAO6o
7teRF4fVxQO8XvobQEB8Zvao9DNu71jzXtDQEoPyK/g/uSQVWF2IwFRRWE5uXM9Z
XzDEr3+OFIY3RFV/Z61uJTi0lxm7B8gPrUuUS0hir3qyA0IeBFiWGhDdWk6Ey/Vu
JGwcYvUnjEec/+iE0oT2glB1h2jOPn3MT2Kd+ogBaeK4uGB/wIeGIjYkEEju00eh
vuBiAjPslxv0ldkcNLdGmplM8daGVoKOieBnKh24dH0gPCsPVyXoRQ48pUCaC8qT
tnT6V31yl50FtnzyMymiKqhznE0Ztus1frpvMF7WLKwLDzaIV/nhuOdh30IfTBH2
MwDyTCLATC5U8w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 14:30:31 2026 by rpki-client