Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: I9Liw3vqtdrpBqi6+9cLvGWvG9W6OobWe4O5JGjbp7U=
Subject key identifier: D7:46:0D:73:BF:A8:72:AA:02:16:37:AE:C5:A2:E7:07:30:D9:B6:A0
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019CACB5080EA987C53BF9A7AE63E56C3ED2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1847
Signing time: Mon 02 Mar 2026 04:01:10 +0000
Manifest this update: Mon 02 Mar 2026 04:01:10 +0000
Manifest next update: Tue 03 Mar 2026 04:01:10 +0000
Files and hashes: 1: KGRZtAAx-sknvQQcwhztrA8NJos.roa (hash: uYCNY8bnQOpiSbQHGpcKZAraJm0QfOSnQkHdbbBpb7U=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: tQfaU8ZzK8Us/frBfuz7NvB0kk18lN0gTyzIhdVjGkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:b5:08:0e:a9:87:c5:3b:f9:a7:ae:63:e5:6c:3e:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Mar 2 04:01:10 2026 GMT
Not After : Mar 3 04:01:10 2026 GMT
Subject: CN=d7460d73bfa872aa021637aec5a2e70730d9b6a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:46:2b:d5:25:85:6a:5c:fa:61:62:44:76:be:
d5:21:21:39:e6:2e:ed:a8:d0:f7:09:a2:cb:84:68:
56:db:d1:b7:e1:88:3c:63:b9:3d:b2:2b:2f:35:1e:
14:9d:b8:f6:91:71:87:67:b5:27:d8:4a:11:47:32:
bf:44:79:b0:d7:59:23:29:d4:f2:2b:51:9d:3c:b4:
f5:69:90:66:a3:79:35:e3:ad:61:d2:67:8f:cb:8c:
b2:a9:f0:78:15:c2:d7:03:3f:a1:55:ec:0e:10:d2:
d8:11:c2:a0:84:d3:1b:a7:68:70:ce:16:95:2f:9a:
60:6d:da:c5:0c:f9:43:4b:b4:f4:c1:4b:75:b3:1d:
19:0d:af:a5:82:bd:29:e0:96:b7:9a:f7:0d:0f:65:
88:2e:a4:77:1d:a8:4b:cb:3d:68:7b:6f:65:c0:f7:
14:01:4c:17:0b:9b:04:ce:9b:dd:49:7f:d6:d0:02:
8b:de:ae:ce:7d:0d:44:e0:32:8c:d3:5a:c7:ba:b2:
fd:13:b2:61:5f:69:aa:58:68:4e:f0:a2:72:1c:dd:
f4:15:67:ea:b8:0f:3c:a8:4c:bc:47:aa:d6:c5:5c:
d6:e2:85:ba:09:25:5f:67:65:6d:ad:ac:6a:63:a5:
a8:cd:2d:1b:98:1c:31:87:ee:af:78:23:6a:66:c1:
78:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:46:0D:73:BF:A8:72:AA:02:16:37:AE:C5:A2:E7:07:30:D9:B6:A0
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
79:29:13:44:eb:52:57:55:38:94:37:97:33:19:0b:ee:c9:4e:
59:20:3d:48:1d:52:c2:11:f2:6e:b9:e5:9f:d7:db:6c:5d:bb:
89:93:3c:7e:98:76:43:72:d3:ff:15:41:85:90:44:e3:d5:c8:
a0:f0:5a:a8:1e:df:bf:0c:55:0d:d2:18:07:bf:6d:3f:1c:8d:
e6:a6:12:0d:3b:e7:b8:22:9f:f8:47:e3:79:cb:69:16:44:8c:
3b:6a:82:a4:6a:08:5f:a5:19:ef:b1:9b:bd:d0:ff:b2:b7:59:
ff:ff:77:97:1c:d0:f2:f7:f3:44:1f:f6:ed:f5:21:8b:1c:f8:
2a:98:87:20:42:d3:68:11:98:a7:52:e2:ac:5a:fe:cb:0c:d4:
80:fe:12:0e:bb:75:b3:21:e5:1b:bc:06:54:2e:ab:48:91:2e:
cb:b7:9a:10:81:c9:cd:7f:51:68:ce:ff:72:26:38:70:59:73:
07:e6:bb:f1:3f:49:19:05:26:e8:8b:bb:2d:aa:db:d4:62:da:
56:33:89:7f:62:98:de:d4:87:1d:e8:93:96:4d:d5:30:6b:7c:
b0:fb:b3:4f:7f:61:ca:30:46:19:5f:ea:7d:dd:06:1b:5c:23:
eb:48:fd:ed:e5:3c:50:98:db:79:2d:42:a4:e9:82:e8:a5:ea:
c3:e8:db:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:37 2026 by rpki-client