Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: EnrheM5oQ68mIDuDDPIthAjqNbegjg1igTEmS+qMMk4=
Subject key identifier: 97:A5:36:42:15:9E:39:0F:9A:37:80:39:E9:0F:6A:C8:A5:22:43:65
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019D9D07B9D95AFB85D31930434CCBBD5659
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 181C
Signing time: Fri 17 Apr 2026 20:00:22 +0000
Manifest this update: Fri 17 Apr 2026 20:00:22 +0000
Manifest next update: Sat 18 Apr 2026 20:00:22 +0000
Files and hashes: 1: BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa (hash: XfIOGzU1Xr7xtlffkFSqkAOYlDdi/uy4BUfSJ4jYq/U=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: TRBJyQjunIo8UefMpKT6Fv6JL1lv1RhrVlsee7f9a+M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 16:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9d:07:b9:d9:5a:fb:85:d3:19:30:43:4c:cb:bd:56:59
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Apr 17 20:00:22 2026 GMT
Not After : Apr 18 20:00:22 2026 GMT
Subject: CN=97a53642159e390f9a378039e90f6ac8a5224365
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:cd:61:e6:ee:68:a2:6a:fa:fb:bc:0c:6c:fb:
a9:46:c8:bd:66:3c:2d:ac:52:5b:e6:a5:fa:ab:ee:
7b:7f:70:d9:a8:cf:66:fa:ab:70:fb:a3:20:80:4e:
ae:dc:6f:17:9c:07:62:4d:9a:39:5f:c1:35:24:e7:
91:56:49:5b:df:fe:31:f6:c0:8d:13:92:63:cc:a3:
45:0d:32:fe:f7:bd:65:ec:78:89:2c:b9:7e:b6:55:
c0:2c:27:f4:51:10:0f:cc:5b:93:62:bf:70:34:2b:
c7:d2:6a:8f:aa:f4:7e:c5:5b:6b:c4:5e:30:50:49:
33:4b:cf:f2:30:fb:d5:06:4f:e2:32:3f:c3:44:af:
73:89:c9:ce:ea:0e:58:a2:cf:0f:8f:60:ce:0c:07:
c4:f0:6b:ab:3f:7e:52:c0:c7:d8:cb:b3:87:a2:e5:
48:20:a5:34:45:57:5b:a7:1c:ca:b1:91:51:f5:9f:
af:15:a0:07:83:9b:a2:31:00:b6:23:18:cd:85:d8:
ea:5b:c3:24:db:ae:47:2d:ef:17:dd:64:a2:cf:0c:
3a:cb:d9:3b:28:a1:05:52:24:8d:df:f0:15:23:db:
aa:d6:6f:43:62:ff:c0:50:1d:67:9a:8b:fd:c3:88:
37:5f:0f:3a:ad:8e:87:51:e2:4d:d9:eb:23:7f:d1:
82:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A5:36:42:15:9E:39:0F:9A:37:80:39:E9:0F:6A:C8:A5:22:43:65
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:3c:e5:17:0b:67:97:e2:2a:a5:30:76:49:b1:5c:16:0a:bd:
30:d5:66:45:f1:0e:3d:d4:21:f5:d8:be:d9:4c:7d:c5:06:ee:
fc:28:7a:47:93:fa:ef:59:1c:6e:a5:0c:67:dc:25:06:bf:39:
56:a2:cb:3c:8c:9b:38:20:ce:74:41:b0:a0:73:bb:68:06:7e:
76:29:19:d9:b9:bd:a6:af:75:68:4e:0a:7e:98:44:4b:f4:40:
b3:48:c8:54:28:7a:78:b6:29:fc:a2:28:fb:3b:a2:3a:87:bc:
48:22:6c:aa:f3:fa:fc:02:cf:5e:08:63:90:9c:68:4f:a4:7d:
28:a8:c0:45:56:31:1f:67:fa:5c:14:b9:69:29:96:2e:7d:fe:
67:31:29:3f:a1:13:ed:3b:51:2f:ba:3d:cd:f9:e7:79:5e:c3:
bb:66:14:c2:99:32:c9:06:6b:14:8a:b1:ed:d0:7b:c9:24:fb:
b7:f3:49:00:13:d4:4c:91:75:5f:ae:ca:2c:3c:fc:c2:94:51:
9f:c0:3a:08:4d:44:6c:9b:83:2e:ce:af:a7:8f:3b:82:fa:75:
96:47:57:b5:10:5f:c8:d9:a2:ad:2f:be:3b:75:35:2e:cc:37:
5a:e9:8f:20:2f:77:b9:2e:6b:ff:62:a4:36:f6:4c:07:ca:96:
b9:de:86:36
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 22:46:41 2026 by rpki-client