Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
File: KWMrEVG5T_zt9AqK02quGvshYlc.mft (raw, json)
Hash identifier: DC3CZaXhmmzJtWD7Jmy6ADA/I+JMsHEfjGEYjJEN0IU=
Subject key identifier: 40:2E:68:02:2C:9C:20:32:0B:7A:A9:F4:E3:5B:14:39:10:59:B4:C3
Authority key identifier: 29:63:2B:11:51:B9:4F:FC:ED:F4:0A:8A:D3:6A:AE:1A:FB:21:62:57
Certificate issuer: /CN=29632b1151b94ffcedf40a8ad36aae1afb216257
Certificate serial: 019CADC836C87032503970572F21F1D24292
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KWMrEVG5T_zt9AqK02quGvshYlc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
Manifest number: 5F
Signing time: Mon 02 Mar 2026 09:01:45 +0000
Manifest this update: Mon 02 Mar 2026 09:01:45 +0000
Manifest next update: Tue 03 Mar 2026 09:01:45 +0000
Files and hashes: 1: KWMrEVG5T_zt9AqK02quGvshYlc.crl (hash: 8+bEmBddDid6Qze9gjJMssWnVEntj1Gtdqu3h+4MTPw=)
2: R04uk59tL-FqUHxfWd8Y5B17azg.roa (hash: 5f566Fl0rgtpysFtLbApUeRuQVHAZSsSCcfDuYmn3cU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
rsync://rpki.ripe.net/repository/DEFAULT/KWMrEVG5T_zt9AqK02quGvshYlc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:01:45 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ad:c8:36:c8:70:32:50:39:70:57:2f:21:f1:d2:42:92
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29632b1151b94ffcedf40a8ad36aae1afb216257
Validity
Not Before: Mar 2 09:01:45 2026 GMT
Not After : Mar 3 09:01:45 2026 GMT
Subject: CN=402e68022c9c20320b7aa9f4e35b14391059b4c3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:d9:c2:a4:1e:e3:a7:06:9b:e1:92:ed:23:1c:
73:22:f6:20:f1:cd:f6:be:f7:15:2a:0a:77:03:76:
47:ce:97:b5:04:c6:58:77:45:ca:dd:0c:67:bd:48:
90:7b:85:a5:44:7b:05:1f:ba:53:af:fa:c7:d8:44:
5a:8b:41:eb:10:42:f5:0e:bc:22:64:da:82:df:f4:
45:ab:aa:3d:20:7e:2f:c9:c2:37:24:b0:b4:2b:4a:
24:4e:6b:fb:06:c3:da:42:38:b1:eb:5d:8f:7f:2e:
95:c6:f2:de:c9:e5:e9:06:06:49:90:5c:36:c3:b3:
08:28:40:d1:f7:65:19:fe:55:4d:09:d5:88:60:c3:
6e:cc:be:1c:61:b9:f9:ed:84:3d:c8:3a:d2:ad:14:
2b:0f:90:f3:59:f8:b6:94:f1:b9:89:88:db:40:55:
64:7e:2b:5b:24:a2:10:07:ab:28:b8:a3:69:75:7c:
85:4a:52:87:30:ec:cb:d6:c0:f8:61:f7:50:d7:e9:
3e:6b:e4:87:3e:17:4a:6f:90:ce:58:55:56:a2:41:
4e:3e:d8:8a:b8:87:f7:5c:cf:5a:c8:83:28:e4:5b:
af:2b:16:29:19:be:7e:e8:7e:64:a3:e7:41:99:e9:
9c:dd:89:51:4f:3b:b6:c8:81:5a:4a:94:7b:de:5d:
2f:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:2E:68:02:2C:9C:20:32:0B:7A:A9:F4:E3:5B:14:39:10:59:B4:C3
X509v3 Authority Key Identifier:
keyid:29:63:2B:11:51:B9:4F:FC:ED:F4:0A:8A:D3:6A:AE:1A:FB:21:62:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KWMrEVG5T_zt9AqK02quGvshYlc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/254995-4c39-4f37-9e3b-b2f0541afacf/1/KWMrEVG5T_zt9AqK02quGvshYlc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:37:bd:48:d2:c2:c9:5f:ea:8b:36:0e:19:c6:e1:b2:b6:a3:
69:21:bf:ee:3b:a0:2a:22:34:0f:80:76:21:70:c9:6d:31:d3:
15:7d:6b:15:0a:02:d4:d4:f4:e5:de:19:72:07:b6:bc:b3:6c:
89:93:09:3b:48:7c:6b:f2:ac:b0:20:f9:d1:63:87:b8:ab:af:
b0:b0:e9:df:50:57:d3:88:07:f6:e6:ae:8a:cf:c5:cd:1f:bd:
a2:2f:a9:e5:d8:d4:17:33:33:1c:35:42:4a:64:52:b2:1c:a9:
ce:22:26:2e:55:63:33:35:ed:32:53:66:76:0a:ab:56:fa:5b:
4c:ab:a3:2f:3a:00:0f:a0:96:18:51:70:53:22:23:09:62:d6:
08:ea:58:07:e8:38:8a:96:a5:e9:71:84:4c:cd:bc:cd:51:8a:
80:45:a0:39:8b:87:a4:11:8f:aa:d4:7f:b2:2a:e2:77:8f:7a:
c1:e8:9f:83:85:60:0b:11:c6:21:e2:57:b4:2a:73:52:d1:d2:
06:73:41:8c:0b:94:cf:d6:81:96:f6:c9:ab:81:e9:b4:f5:85:
18:21:da:7c:22:59:37:c8:b5:df:fa:e7:6c:5c:4c:4a:f2:d7:
47:3c:ba:24:6a:65:20:f1:aa:2c:5b:f2:5a:0d:b7:0a:95:9a:
02:61:89:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 19:03:23 2026 by rpki-client