Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
File: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft (raw, json)
Hash identifier: BcorUUjDBkH/dIJaDv2RBNdgHlw7z18MuLzw7YsEDXo=
Subject key identifier: 62:0F:27:DC:2F:9D:5B:9B:2B:67:47:BD:07:6A:4D:A9:06:AA:2C:FF
Authority key identifier: 91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
Certificate issuer: /CN=91362d3c0953e8c933f0092a589b75494904f962
Certificate serial: 019CAC7DBDEFCC3E926DB1ACBA81D6DA5646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
Manifest number: 16F8
Signing time: Mon 02 Mar 2026 03:00:47 +0000
Manifest this update: Mon 02 Mar 2026 03:00:47 +0000
Manifest next update: Tue 03 Mar 2026 03:00:47 +0000
Files and hashes: 1: Ego0nl6qnumbw-BU5_acGm_TtM8.roa (hash: 7c/b4633erpOytsAafi0TuyOCeY/FHIybW7GxJJgywE=)
2: kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl (hash: durYDD12As2z8z8hofnGMmeNfky/umVd3rMz5ua1Kbc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:bd:ef:cc:3e:92:6d:b1:ac:ba:81:d6:da:56:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=91362d3c0953e8c933f0092a589b75494904f962
Validity
Not Before: Mar 2 03:00:47 2026 GMT
Not After : Mar 3 03:00:47 2026 GMT
Subject: CN=620f27dc2f9d5b9b2b6747bd076a4da906aa2cff
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:41:93:d7:90:0e:f7:bb:5d:11:b5:5a:0b:4f:
1f:9d:2c:4b:8e:34:cf:73:a0:f0:42:64:6e:df:a5:
51:e3:5e:fd:7d:34:7c:54:fe:b6:e7:fe:bf:91:2a:
b8:2f:78:51:9d:f8:33:aa:76:c6:af:13:86:53:e3:
f8:a8:e5:e2:dd:ed:1f:ea:6f:02:ac:d6:fb:35:bb:
c4:19:71:08:43:61:6c:01:85:2f:da:19:cd:08:17:
bb:f7:90:1b:7e:48:de:2f:de:3d:a2:3d:0e:d1:4c:
e9:05:9b:3c:e8:f0:ca:b2:76:0d:a7:15:81:a8:27:
9b:87:45:cf:d4:52:3a:ac:e5:cc:d9:f4:e6:e3:64:
7a:20:62:61:07:e5:c1:7d:8e:12:87:a3:e9:31:e5:
ef:c5:8c:72:fa:d6:72:b7:24:c7:ef:24:fb:2d:2f:
bf:12:7e:54:fe:66:36:0b:23:2b:0a:f7:d2:f1:36:
d1:26:5a:10:af:66:e1:ee:3f:f6:5c:3b:0c:4c:04:
9e:a0:a2:53:da:92:1d:70:25:92:9f:34:b2:40:64:
a6:73:74:dd:d0:1c:a1:cb:0b:f7:4c:dd:82:68:3a:
cb:a1:c2:fc:59:61:45:bc:ff:1b:cc:8d:23:b4:29:
d9:63:de:d7:17:50:42:ed:bd:b7:df:d5:9c:d5:c4:
49:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:0F:27:DC:2F:9D:5B:9B:2B:67:47:BD:07:6A:4D:A9:06:AA:2C:FF
X509v3 Authority Key Identifier:
keyid:91:36:2D:3C:09:53:E8:C9:33:F0:09:2A:58:9B:75:49:49:04:F9:62
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/022ee4-44de-4004-9839-a449ce46a9b1/1/kTYtPAlT6Mkz8AkqWJt1SUkE-WI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:c5:ab:71:b0:c8:13:93:13:30:59:2e:7b:3a:02:3d:e3:57:
6c:07:40:2a:14:e0:c1:7b:e6:67:77:4b:2e:5d:25:34:4e:23:
29:c0:70:e4:fd:22:80:31:1b:54:8c:ce:c9:a2:2d:19:03:db:
1b:21:97:5f:ec:b2:63:8f:fb:5e:da:cc:68:b1:03:78:85:2d:
3c:45:a8:8c:cd:b2:41:8c:9d:01:ea:f6:b7:60:b1:d4:a2:5f:
59:28:2a:41:5f:07:c4:23:f9:88:91:6c:79:6b:50:64:a9:29:
52:f0:4b:f6:c3:6d:12:c2:a2:3c:68:35:15:89:2d:4a:7d:5d:
47:93:c8:8a:95:a8:36:c4:67:44:b0:8e:f8:1a:fb:ca:0f:83:
49:53:75:dc:b7:4f:be:f0:95:33:3e:97:6a:50:5c:ad:af:58:
38:7e:f3:a7:e2:06:e9:68:63:f1:ad:2f:16:b8:1d:03:5a:57:
16:03:17:da:b0:60:a5:db:2e:e1:c9:61:23:c0:e1:5a:11:d2:
42:8c:f8:d0:87:9f:9b:22:37:14:cd:ab:9e:a3:50:87:ae:4c:
05:15:b7:1a:a3:24:e8:b3:16:b4:84:5b:b9:ad:35:77:53:5d:
86:ac:cb:f7:40:e7:55:ac:55:78:a5:ef:7e:97:c3:e4:0f:0c:
7f:1d:ae:f1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 05:55:33 2026 by rpki-client