Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: opVAeh9r2fzexo3meMu7UDtfZzhc+d2j6tAVNHcJuws=
Subject key identifier: F5:5B:24:17:3E:70:A3:92:02:B7:C2:A2:35:F4:66:F3:C3:52:A4:5D
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019CAD9058FC9D4EA2A868EBAE2B9FE1676E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 17A0
Signing time: Mon 02 Mar 2026 08:00:44 +0000
Manifest this update: Mon 02 Mar 2026 08:00:44 +0000
Manifest next update: Tue 03 Mar 2026 08:00:44 +0000
Files and hashes: 1: BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa (hash: XfIOGzU1Xr7xtlffkFSqkAOYlDdi/uy4BUfSJ4jYq/U=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: MYUmkXaeXzjE7zptSRsqZHgLS97PLXsXl5dAd6JDObQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:90:58:fc:9d:4e:a2:a8:68:eb:ae:2b:9f:e1:67:6e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Mar 2 08:00:44 2026 GMT
Not After : Mar 3 08:00:44 2026 GMT
Subject: CN=f55b24173e70a39202b7c2a235f466f3c352a45d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a0:48:27:62:ee:b1:7c:71:42:5f:8b:13:3d:
0b:1d:05:9b:ea:bb:90:9c:c2:d8:09:b8:34:32:80:
ef:68:48:5f:63:fc:cd:85:0f:9f:15:41:ee:b8:a8:
fb:7d:e8:cf:83:04:df:a2:38:ec:46:6f:c0:83:18:
18:5e:59:ad:27:6a:25:bf:e1:e1:7f:67:ba:2f:e1:
ba:66:e2:48:62:89:c2:fb:63:79:e5:66:5c:e7:6a:
25:7b:a5:7b:48:40:f5:fe:6a:a7:91:88:fb:62:c8:
cb:b5:17:c5:ab:a4:6a:b1:74:bc:02:f1:0b:4d:23:
ad:ce:85:05:3a:06:f9:7d:8a:33:8c:58:82:39:8c:
d8:bf:a2:83:ea:70:b7:9b:c8:dc:70:ff:3f:5f:09:
f4:df:a6:48:90:96:96:9f:3a:49:63:cd:74:36:f6:
dd:5b:42:78:a0:2a:63:3d:5b:06:77:87:e2:50:d0:
30:0a:85:3f:44:e3:db:8b:1c:8c:c5:ab:92:0d:9a:
0f:92:47:dd:ba:b6:7a:c9:bd:42:af:ef:0b:ab:d7:
48:42:11:8e:cf:c1:44:8b:15:47:a3:b1:b1:42:e4:
9c:3c:86:b6:f3:0a:05:08:89:bf:14:06:70:72:72:
48:0f:43:33:c8:a2:46:97:cc:f0:ee:90:62:5f:ce:
61:7d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F5:5B:24:17:3E:70:A3:92:02:B7:C2:A2:35:F4:66:F3:C3:52:A4:5D
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
77:f1:0f:c6:78:f8:f0:00:5d:6a:5b:3a:61:ef:9d:db:b7:df:
4c:3f:71:a3:09:33:54:6e:d0:d5:25:66:b2:38:1b:d6:f5:0e:
d2:e0:14:0a:e8:14:f7:e8:fd:3e:5e:30:0c:d5:85:71:34:62:
96:fd:60:16:99:7c:6b:88:f9:2e:18:f5:f3:73:4a:04:41:5d:
c1:1f:25:26:b5:69:f1:05:6f:89:90:79:dd:77:8a:84:b2:bd:
9e:54:71:7c:8e:d7:9f:86:ba:1d:38:7e:62:3b:33:f3:b3:61:
ab:b0:09:96:7d:85:5b:87:1b:f8:65:78:c3:f0:6b:6b:a8:ae:
14:45:0e:48:13:17:43:55:06:97:f0:e5:52:86:3b:c8:a2:82:
dc:12:ed:57:6a:a5:ed:c9:6f:50:f8:4e:5d:e6:3e:9c:b8:c5:
b8:95:98:9f:fa:74:2d:2e:74:3a:e7:e6:b8:ac:ed:f2:e7:67:
91:5b:4b:cb:7c:a6:ff:5c:df:8e:ed:a8:1d:53:01:e1:83:eb:
41:bd:ed:23:6b:19:d6:5d:fc:4d:7b:b7:b5:68:22:79:86:a5:
d8:f8:ed:c6:f2:6b:95:8a:2d:e9:56:b1:a1:b1:2f:93:38:c9:
f2:cd:e6:97:ab:ec:2f:a9:bb:8d:c8:e4:5b:19:9d:b9:b2:ed:
93:77:c4:8c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 11:23:59 2026 by rpki-client