Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: axHITtcgULGcKG32bVCEBYhovZzF/ysmQq7FAlaiZxs=
Subject key identifier: 17:D6:8A:41:87:89:0B:72:44:6F:BC:92:D5:F3:97:0B:32:72:E0:3B
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 019CAE358F7F4C0A075BCE0F5678F5D0DDFB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 0905
Signing time: Mon 02 Mar 2026 11:01:11 +0000
Manifest this update: Mon 02 Mar 2026 11:01:11 +0000
Manifest next update: Tue 03 Mar 2026 11:01:11 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: zF3d8O+F90WfN9Q+wMx2V+Jaj/YmmtphEBFBsRkzA18=)
2: yJzTIcAhRcC6ZEzxWsi_CH0k6Sk.roa (hash: YVqSm3FfhpaemLgcMqrRSZQk3gYIEbjzjgNvnaJ9X18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 11:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:35:8f:7f:4c:0a:07:5b:ce:0f:56:78:f5:d0:dd:fb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Mar 2 11:01:11 2026 GMT
Not After : Mar 3 11:01:11 2026 GMT
Subject: CN=17d68a4187890b72446fbc92d5f3970b3272e03b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:70:88:7c:07:71:60:44:6d:6c:21:aa:6a:c8:
cc:40:63:01:fa:91:a1:72:8f:cf:8a:24:49:cf:b8:
6c:b2:69:a6:bc:f1:d7:73:06:28:5e:4a:16:ca:92:
18:a3:4e:8e:0d:a0:c8:4e:2f:22:81:ee:e5:0d:f6:
3b:d0:8e:bd:52:f0:ab:3a:99:63:9f:6d:36:88:63:
6d:c2:f5:ee:89:90:fc:86:63:81:61:19:44:0b:ea:
8d:ca:fb:d6:0d:5d:94:6d:97:26:b5:db:d7:5c:c7:
1d:44:3e:35:68:9b:0a:33:89:aa:4b:54:f6:b6:61:
4d:d6:f2:88:bb:06:d0:ba:ef:60:34:92:cf:a3:7a:
02:da:63:dc:c2:21:1a:1a:c0:d3:e7:1c:8f:95:f0:
c0:bb:18:80:af:e3:a9:a4:75:07:2c:a6:6e:d8:c4:
9d:10:ba:2d:34:5d:e0:ce:1f:4b:60:a3:a9:54:91:
3d:b5:0f:30:7b:e4:0f:16:14:03:b5:d8:51:cd:11:
17:ee:41:e7:9e:ee:19:eb:98:99:4c:ec:fd:37:74:
68:43:8f:1e:cf:56:52:e0:ff:be:dc:d3:67:44:e5:
94:50:08:2e:2c:df:cf:62:23:23:75:7f:5d:5c:10:
29:04:d2:cc:64:a6:d7:35:e0:93:f2:d1:6c:b2:38:
64:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:D6:8A:41:87:89:0B:72:44:6F:BC:92:D5:F3:97:0B:32:72:E0:3B
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
86:30:24:f6:d5:87:76:3c:cf:a5:83:5c:46:6f:72:b6:5d:61:
92:60:5d:b8:69:cb:76:2d:89:6c:ef:73:d8:40:24:96:42:5a:
e6:03:72:ce:ca:e3:e7:d7:30:c0:63:b4:18:37:1a:d7:ec:f4:
cf:68:8f:59:69:96:04:c3:f6:67:af:f3:29:c0:be:bb:05:2d:
cd:e9:c0:e9:58:a3:fa:f6:04:bc:fe:88:23:5a:ed:09:ed:ac:
0a:77:71:cb:86:86:8d:f5:0f:7e:c7:42:a6:e9:ec:44:2c:62:
d2:80:7b:34:91:ad:1b:01:c3:51:f0:60:ba:e8:bd:01:db:ad:
ad:d8:3e:d6:3b:5b:2a:22:ce:a4:c8:11:c3:b0:0b:fa:7c:a1:
36:ed:92:56:73:c0:82:08:8d:11:c1:96:38:a3:aa:31:eb:fe:
ad:ee:60:2e:a1:2c:34:59:f6:32:3d:7c:fe:28:3c:18:fa:e4:
2f:63:2a:85:ad:36:45:83:a0:86:6a:4c:ac:9f:d3:79:4f:56:
b9:af:b5:ba:7a:e2:7a:95:98:05:ea:02:4e:77:ee:1f:b2:8f:
b2:ed:4a:0c:42:09:2f:d2:64:40:d8:f4:30:49:d8:df:32:36:
d5:52:6b:08:83:7e:12:e9:08:2e:13:6d:ff:7a:85:04:19:18:
64:56:04:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 16:32:38 2026 by rpki-client