Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
File: mk2qT2rA5rwQK2iECirGu1QbQPw.mft (raw, json)
Hash identifier: JJ//vNao862D5cHUYWKQabsqhJLPmM6LJpll1RpDF9s=
Subject key identifier: 17:29:93:89:62:1E:0F:23:1F:D9:AB:E9:C9:0F:E9:1D:CC:D4:09:96
Authority key identifier: 9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
Certificate issuer: /CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Certificate serial: 019CAA8FE4B2000518C6136CA7B2FD9FB272
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
Manifest number: 083C
Signing time: Sun 01 Mar 2026 18:01:22 +0000
Manifest this update: Sun 01 Mar 2026 18:01:22 +0000
Manifest next update: Mon 02 Mar 2026 18:01:22 +0000
Files and hashes: 1: KIWGoOwTd_0to3ZfSp61C8HKyu8.roa (hash: zO+QGlqWRre1WYpcK0kFybtzqC8LgSXdzrWLa3l1LOU=)
2: mk2qT2rA5rwQK2iECirGu1QbQPw.crl (hash: mPKh+SS+IM9qa4t19gvbqQtl2MgIEv2vn/zHMyqYlW0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:8f:e4:b2:00:05:18:c6:13:6c:a7:b2:fd:9f:b2:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4daa4f6ac0e6bc102b68840a2ac6bb541b40fc
Validity
Not Before: Mar 1 18:01:22 2026 GMT
Not After : Mar 2 18:01:22 2026 GMT
Subject: CN=17299389621e0f231fd9abe9c90fe91dccd40996
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:74:24:5c:89:f2:5e:21:a9:ac:83:4f:17:d8:
f0:6f:c1:d7:d1:a7:99:38:39:86:0a:17:d4:43:f5:
01:f8:50:bb:52:13:24:c7:9d:e0:2b:03:cd:6f:ff:
1c:39:4f:9e:ae:9e:4d:c3:fb:13:ed:6d:01:cc:a1:
90:ea:3d:2c:31:7d:f5:43:51:04:56:b1:aa:95:7b:
86:1e:89:c7:45:93:93:36:67:ef:55:21:5c:3a:ae:
56:11:f9:97:41:9b:e9:48:d6:6f:ff:30:3f:5c:14:
43:72:58:6a:20:df:3e:f5:a7:0c:2d:b5:42:a7:11:
bf:bb:55:1e:95:b3:19:a6:9c:68:7b:d6:1c:a3:16:
9e:36:1e:04:cf:09:b0:a3:0c:4c:a0:99:5d:47:79:
ea:43:4d:b4:3f:e8:d7:7f:d0:59:43:c5:5f:40:54:
f5:7d:07:f3:90:e7:d6:2c:9a:f6:e8:1e:62:47:96:
2f:51:b4:0b:95:4c:1f:c9:f2:55:af:3b:b9:d1:2c:
c0:4e:ae:ca:15:d4:74:6e:73:31:f7:4d:86:b4:fa:
fb:36:8c:4e:c9:fe:7e:24:c8:56:54:28:84:4c:ef:
43:29:f6:e9:03:81:88:c8:48:3e:ed:f4:35:b0:28:
75:20:c1:90:2a:56:ea:71:e6:74:05:90:30:48:98:
48:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:29:93:89:62:1E:0F:23:1F:D9:AB:E9:C9:0F:E9:1D:CC:D4:09:96
X509v3 Authority Key Identifier:
keyid:9A:4D:AA:4F:6A:C0:E6:BC:10:2B:68:84:0A:2A:C6:BB:54:1B:40:FC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk2qT2rA5rwQK2iECirGu1QbQPw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/cd4624-620a-4cb2-a416-6be92b1aa8b3/1/mk2qT2rA5rwQK2iECirGu1QbQPw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:92:54:c5:5e:20:33:09:06:3d:38:f0:43:b2:3b:4c:c5:4b:
9e:70:35:c6:cd:6e:66:68:e5:29:f8:89:e3:89:28:bc:87:de:
b2:1b:12:d3:a4:57:17:df:3a:df:23:2e:c8:07:a8:d0:c5:ad:
db:c6:91:30:dd:eb:b0:3c:db:a2:6e:9c:d6:28:f3:70:96:80:
29:cd:c2:88:f0:24:12:68:88:15:40:ac:08:55:4f:5e:57:2f:
d9:03:a5:84:9f:75:46:de:6a:60:6d:2d:27:51:af:48:c1:6f:
b0:9f:fb:52:bd:b0:5f:1a:41:ca:94:dd:86:81:de:9d:8f:f2:
1c:4a:3f:28:20:96:4b:78:05:b8:23:31:e8:3d:a1:fc:dc:53:
79:d8:3d:77:65:88:4b:48:7b:dd:5c:ec:cf:ca:a2:b7:c5:c0:
ed:92:34:39:f3:b2:09:8f:ea:8d:b1:11:5d:cf:a0:51:f4:d7:
f8:b6:97:6e:f2:dd:33:75:d0:a3:47:d8:5d:25:14:22:89:2e:
69:4d:c5:84:48:a3:ac:30:bf:67:e5:23:f1:61:e9:74:e1:24:
bb:5e:55:b3:f7:ae:1b:78:c5:9d:29:b2:91:bf:3b:94:2a:f2:
60:07:04:6b:87:29:d4:77:67:dd:00:b8:43:d2:b9:81:73:4a:
36:d4:6b:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:58:35 2026 by rpki-client