Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
File: kMuqazbmzWh0x47UWk-N1xcwMdk.mft (raw, json)
Hash identifier: Nc4YXeb8xGPbgvEGbOOT7yN1nW+ITcdMc/MAF9kOqtI=
Subject key identifier: 38:50:54:50:FD:E4:8B:9C:CC:60:2C:1D:C9:01:58:D6:0C:2D:82:78
Authority key identifier: 90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
Certificate issuer: /CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Certificate serial: 019EBF91B30C1DE1BCE166760B354DB84F8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
Manifest number: 0ECB
Signing time: Sat 13 Jun 2026 06:00:57 +0000
Manifest this update: Sat 13 Jun 2026 06:00:57 +0000
Manifest next update: Sun 14 Jun 2026 06:00:57 +0000
Files and hashes: 1: kMuqazbmzWh0x47UWk-N1xcwMdk.crl (hash: kmv9G/k6d8tL8+JyADlPWfrm28C8dNk5MuU3/VAA1Es=)
2: pMXoRrm1A-T70xPjALrZ4oMq61E.roa (hash: FsTM7joUHNqdKecmC2zVhM+EhuHDUQROQu4Azrsbbr0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 06:00:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:b3:0c:1d:e1:bc:e1:66:76:0b:35:4d:b8:4f:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90cbaa6b36e6cd6874c78ed45a4f8dd7173031d9
Validity
Not Before: Jun 13 06:00:57 2026 GMT
Not After : Jun 14 06:00:57 2026 GMT
Subject: CN=38505450fde48b9ccc602c1dc90158d60c2d8278
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:08:b9:ff:55:aa:93:b0:73:ec:42:ad:06:78:
ae:ae:bb:37:ba:73:86:27:ae:c5:d6:54:f3:a7:79:
61:fd:d1:49:88:f0:0f:21:04:b9:37:0d:60:2b:ce:
05:2c:d2:38:a0:20:68:d7:d4:77:cf:f4:80:fd:27:
37:6d:36:71:ee:7e:bc:cd:76:1f:05:5b:12:7e:33:
19:cb:be:65:5c:90:07:95:af:8b:e2:3e:6c:75:b6:
c7:02:27:17:fa:59:3b:3f:b5:f7:6e:58:ed:b5:55:
98:a5:3a:0e:4d:ed:87:3d:5c:13:68:a6:da:d2:8a:
de:40:ea:4c:bb:c6:4f:9c:a7:44:d7:4e:94:0e:8b:
7e:58:74:c5:07:f7:26:3e:03:5a:4a:43:2d:ce:a5:
c3:cd:ac:ed:d7:16:98:4a:a9:73:f0:34:0c:0c:94:
6a:36:cd:5f:c2:31:2f:74:dd:65:6f:bc:4e:47:3b:
59:4c:6e:29:21:23:f7:3d:c4:86:68:7d:d6:3e:b4:
8b:9f:f1:a2:f8:71:8d:7e:85:23:18:bd:6a:ac:0d:
82:0a:29:a1:83:f8:f1:58:11:3b:05:94:a4:7f:5c:
f2:d3:0b:d2:d9:c7:b5:ae:29:2b:69:cb:65:3e:e8:
c6:89:0d:76:20:ae:33:69:6e:4f:af:5b:3f:45:55:
44:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:50:54:50:FD:E4:8B:9C:CC:60:2C:1D:C9:01:58:D6:0C:2D:82:78
X509v3 Authority Key Identifier:
keyid:90:CB:AA:6B:36:E6:CD:68:74:C7:8E:D4:5A:4F:8D:D7:17:30:31:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMuqazbmzWh0x47UWk-N1xcwMdk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/06ca5d-d0c4-4215-8968-b6d4c4fc0c21/1/kMuqazbmzWh0x47UWk-N1xcwMdk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:59:ba:35:a8:1e:dc:fd:90:da:4c:cf:a3:8c:ee:91:4c:70:
1a:1a:42:5d:3e:49:e8:02:f0:f0:4f:13:a9:8d:41:9b:34:78:
5b:49:e5:da:71:b6:70:e6:11:10:35:60:a9:28:0b:76:c4:c9:
5c:16:f4:be:f6:1a:9a:c6:7e:1f:6b:a0:71:30:a2:a5:70:fa:
7c:06:22:b5:c8:a4:a6:1d:3c:03:93:8b:bb:47:d9:b9:52:32:
c5:7d:42:cd:04:a0:23:f0:98:88:10:1f:e0:a9:fb:0a:e5:57:
bc:b1:e7:55:42:75:f6:26:2e:e5:b6:92:54:eb:a1:28:33:a8:
d3:b0:36:5e:0d:c6:3d:9b:2b:d2:a1:7a:23:c8:82:df:63:6c:
b3:2c:eb:6d:c3:c2:75:a1:5d:f6:07:bd:32:c9:d0:23:a6:ae:
3f:6c:1d:66:f2:d0:3b:79:2e:be:70:33:6e:a4:9f:99:17:8c:
8b:f7:4f:5c:89:82:c0:53:73:14:4f:98:10:f3:0c:68:98:0e:
37:4b:d8:e8:3a:a6:6f:8e:41:15:41:f9:aa:f5:e4:d0:34:a7:
ed:07:ae:2b:8f:5b:af:a9:25:17:56:9f:e7:ee:8e:9e:18:c3:
26:1b:bd:55:05:75:15:2c:a5:43:ce:42:1c:f1:9e:73:94:ee:
47:44:c2:b1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:23:26 2026 by rpki-client