Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
File: K6OJMzWM9mz_O2zj97wlF_3UdCE.mft (raw, json)
Hash identifier: Tzha5pH2bqXEzAH1wX5LCJaxzmSMbUaCKTM6oc70Hqs=
Subject key identifier: 49:DF:07:AE:FB:43:80:2B:7A:21:CE:B0:49:B4:21:2F:C2:C6:9E:04
Authority key identifier: 2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21
Certificate issuer: /CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421
Certificate serial: 019CABA21B59DD22F32703B518192E76B548
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
Manifest number: 09BC
Signing time: Sun 01 Mar 2026 23:00:53 +0000
Manifest this update: Sun 01 Mar 2026 23:00:53 +0000
Manifest next update: Mon 02 Mar 2026 23:00:53 +0000
Files and hashes: 1: 5x2-8garOOilf6io7nZnF9dIZSA.roa (hash: hdj3plspymuwOcIm8tESK6Qn+W8Q6cC5cyX/oC/V1CQ=)
2: K6OJMzWM9mz_O2zj97wlF_3UdCE.crl (hash: IYXN9eCWJmr+6WdYKOB+is0aAhvv1QEsFE4K1ADfT3M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a2:1b:59:dd:22:f3:27:03:b5:18:19:2e:76:b5:48
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2ba38933358cf66cff3b6ce3f7bc2517fdd47421
Validity
Not Before: Mar 1 23:00:53 2026 GMT
Not After : Mar 2 23:00:53 2026 GMT
Subject: CN=49df07aefb43802b7a21ceb049b4212fc2c69e04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:0b:c6:f1:6a:5a:7c:d3:46:44:3f:b1:8f:ff:
54:52:9b:f5:37:a2:32:a8:d4:c8:d7:f7:b9:d1:c9:
62:71:67:70:b4:7c:86:c5:1b:56:f3:fb:41:22:03:
4c:30:0c:51:2d:58:bf:17:37:68:b5:8e:df:99:34:
78:e2:98:46:32:d5:d3:f9:87:31:12:51:28:23:d7:
3b:b8:59:1c:ad:5d:2a:c9:29:d7:25:2b:1b:ef:ca:
da:b9:10:b8:d0:7d:35:60:3d:1a:2b:d4:45:5e:e3:
74:aa:0b:20:25:b7:99:f2:bd:ad:06:c1:93:9e:81:
6a:eb:1e:58:2d:ea:50:60:15:85:58:58:f3:86:64:
28:26:80:3d:b2:0b:8a:9c:8b:fa:94:1d:f5:1d:84:
16:a7:0c:7b:14:4d:3a:70:7d:3e:44:f6:dc:30:2b:
96:2d:c1:40:a7:b8:5b:ba:e6:a1:54:43:7f:6a:9a:
9a:91:e7:2c:16:10:90:d5:6c:a3:c7:b1:72:d8:e8:
13:3f:dd:35:85:e2:02:09:a8:9b:9a:28:05:31:19:
72:88:49:8f:3c:39:49:e8:c7:3a:b2:33:91:95:24:
0a:e6:72:c7:61:64:6c:14:0c:cb:62:5f:61:8a:9f:
82:4a:8e:18:ca:b0:95:75:ce:86:a7:f9:ad:4a:97:
51:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:DF:07:AE:FB:43:80:2B:7A:21:CE:B0:49:B4:21:2F:C2:C6:9E:04
X509v3 Authority Key Identifier:
keyid:2B:A3:89:33:35:8C:F6:6C:FF:3B:6C:E3:F7:BC:25:17:FD:D4:74:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K6OJMzWM9mz_O2zj97wlF_3UdCE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/9856ee-699f-4fed-bb98-e06fd0cd3b77/1/K6OJMzWM9mz_O2zj97wlF_3UdCE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:f2:e9:a0:fc:92:86:02:8c:78:53:1e:c4:92:ec:fc:b1:b4:
27:da:80:2c:27:d4:08:f9:95:b5:26:60:f9:7d:95:c6:8b:72:
bb:24:69:63:c2:fe:16:35:28:29:14:be:49:db:75:0a:0f:d5:
60:09:2a:0c:ea:32:42:c4:8b:5f:c5:ed:a8:8a:13:a1:8d:2a:
6e:e0:f0:bc:42:95:87:7e:91:6f:a0:4b:61:ac:3f:c3:bf:b4:
cd:b1:fe:8c:66:ac:d6:52:b6:ba:60:76:ba:e8:b9:a9:71:07:
a2:ae:8c:5c:1b:0f:52:24:cb:27:1c:cd:f7:eb:eb:3c:c3:7f:
19:a1:38:b6:e6:cf:4e:49:10:b4:e3:ff:44:0b:95:88:f6:af:
b2:23:87:d1:3b:9c:e5:78:24:6c:b8:60:12:50:c1:93:00:1f:
19:02:34:51:15:1b:f1:86:7d:dd:80:3c:e7:16:3b:e5:f3:91:
72:6a:ee:27:f8:97:db:2d:8c:6f:0a:22:f9:1d:11:7d:b3:28:
cb:1f:4e:ef:9d:47:49:b3:cf:35:f8:6b:8c:c0:12:8c:28:9b:
44:dd:db:a7:4b:21:36:23:bc:cb:44:5c:4b:d3:0b:f9:92:a0:
69:2b:a7:d0:df:1a:7c:ba:11:96:44:c1:24:40:d0:d6:c0:28:
2d:13:10:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:46:04 2026 by rpki-client