Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
File: kMuqazbmzWh0x47UWk-N1xcwMdk.mft (raw, json)
Hash identifier: eK22NABZ8QCkxi5bNvBnXd6HDLPtACoXT+1KRUleFBw=
Subject key identifier: 1A:24:71:AE:63:AB:09:BE:FB:A3:54:2E:79:1B:7F:C6:88:E1:1A:86
Authority key identifier: 90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
Certificate issuer: /CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Certificate serial: 019D9818D58E1F4E7CD3EC04D8473B82F688
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
Manifest number: 0E32
Signing time: Thu 16 Apr 2026 21:00:57 +0000
Manifest this update: Thu 16 Apr 2026 21:00:57 +0000
Manifest next update: Fri 17 Apr 2026 21:00:57 +0000
Files and hashes: 1: kMuqazbmzWh0x47UWk-N1xcwMdk.crl (hash: f+qUN6WJ1oV73nfKi2hIpTUrunYyA87u/zv4DsoZFmY=)
2: pMXoRrm1A-T70xPjALrZ4oMq61E.roa (hash: FsTM7joUHNqdKecmC2zVhM+EhuHDUQROQu4Azrsbbr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:d5:8e:1f:4e:7c:d3:ec:04:d8:47:3b:82:f6:88
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Validity
Not Before: Apr 16 21:00:57 2026 GMT
Not After : Apr 17 21:00:57 2026 GMT
Subject: CN=1a2471ae63ab09befba3542e791b7fc688e11a86
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:7b:50:2d:22:51:ab:ea:ef:33:45:14:de:cd:
d4:8b:8c:5b:89:4e:47:4c:99:6b:5d:17:17:2d:62:
b1:ca:f6:20:7a:f6:47:3f:3b:13:a4:91:3f:31:66:
0c:84:14:a4:58:3c:07:10:4f:f1:04:88:75:94:76:
12:ac:20:65:f6:2a:1c:34:1a:28:05:93:20:b6:95:
58:9c:fb:1b:02:a9:e4:f3:e5:68:89:7a:2d:67:3e:
76:f1:b5:e6:e8:e9:fa:d5:e8:7c:93:04:d4:1a:e5:
d8:84:ba:78:dd:8e:22:ac:a0:6e:7e:60:d3:76:38:
66:a9:2b:c3:c0:7d:73:d8:7f:a0:ff:ea:20:2d:63:
9a:f3:ed:58:84:cf:b9:e4:06:80:78:30:a7:1a:1d:
d3:e8:49:0a:10:7c:0c:42:d0:37:c9:ab:bb:f4:58:
16:4d:d4:b8:c8:5e:63:b8:b3:2a:0a:f8:ab:af:4e:
bc:a7:91:3e:ab:f3:16:55:2e:85:53:91:44:21:5b:
4a:f7:71:24:fd:d7:24:cb:7d:dc:91:1a:3f:33:c2:
c4:4d:cc:d5:24:fb:c4:2c:e7:8c:6e:65:fe:26:14:
d0:df:7f:e2:65:6c:21:37:59:7c:fa:b6:84:fd:ed:
25:60:fc:ae:79:5d:cb:5e:ab:02:9d:fd:b8:06:03:
f2:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:24:71:AE:63:AB:09:BE:FB:A3:54:2E:79:1B:7F:C6:88:E1:1A:86
X509v3 Authority Key Identifier:
keyid:90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
39:82:af:54:72:e5:1e:9d:81:95:fe:c1:f3:c1:62:e4:31:a8:
08:c1:7d:c1:4f:70:25:a8:72:64:96:59:03:c8:1f:c3:2c:4b:
5d:4e:cd:83:48:fe:3d:9e:50:7f:66:9f:4e:11:9e:b8:03:52:
45:69:b1:71:96:a9:2d:c7:21:36:34:1e:53:23:bb:99:6a:61:
6f:64:22:1f:df:c1:90:f5:03:cc:b5:e5:c4:69:1a:85:9a:0a:
53:93:a5:1f:c7:e9:b2:88:cf:0d:9e:ec:e1:35:8a:ca:bc:8e:
cb:b0:ac:5f:b8:a8:bd:38:bd:99:ad:23:1c:1a:77:2b:bd:f7:
10:14:7d:13:a8:4c:16:29:d4:8f:a7:37:56:a5:09:b5:6f:bd:
60:a7:97:a5:e0:e7:14:95:b3:31:68:92:63:ff:10:89:07:9c:
32:3a:d7:5d:9d:a2:3a:20:b0:27:4b:1a:46:0d:f3:85:90:d1:
39:28:c3:12:c3:4d:91:40:94:a1:ee:88:a3:36:18:b8:0c:c7:
21:85:20:2d:b9:97:bf:0b:57:55:d3:a9:cc:60:39:25:35:de:
9a:66:55:76:1f:f7:c5:46:ac:31:86:19:f7:f1:cb:c7:c4:23:
f5:4b:8a:03:07:dc:d4:eb:72:e7:e5:fe:26:3d:4a:3b:ef:99:
b5:f8:af:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 05:02:44 2026 by rpki-client