Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: gYt4owQ5J1jf9Ya08zHofoS+M4kn4LBiIb8fA3obv6k=
Subject key identifier: 52:BB:D4:F4:EE:81:9F:8B:1F:29:E2:A7:5A:05:67:36:15:5F:9F:FB
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 019CAAC6F8721721BB35C32C22D33305E070
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 0741
Signing time: Sun 01 Mar 2026 19:01:32 +0000
Manifest this update: Sun 01 Mar 2026 19:01:32 +0000
Manifest next update: Mon 02 Mar 2026 19:01:32 +0000
Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: t/Ia1CfHvRBYkr+HLVlK6fFlkVGHJQLQ6JzRKPxR8q0=)
2: oWAA3712bfUBzXFDQ4qEFnRk4-8.roa (hash: IL/tQvQ5PPq+dUr5LLZdpWR+gfGz/0GU5klPWCUecLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:aa:c6:f8:72:17:21:bb:35:c3:2c:22:d3:33:05:e0:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Mar 1 19:01:32 2026 GMT
Not After : Mar 2 19:01:32 2026 GMT
Subject: CN=52bbd4f4ee819f8b1f29e2a75a056736155f9ffb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:fa:54:c5:52:20:cd:7a:eb:b7:98:78:15:26:
d1:fb:f6:69:b5:6d:c5:b1:0f:d9:6c:e8:2d:09:1b:
f8:17:75:fc:0f:98:5c:b4:b9:92:eb:2e:0d:ba:1d:
3a:04:fa:37:e1:a0:ab:45:c0:be:59:44:b1:5c:52:
80:ba:89:06:8d:40:3e:a7:85:c8:34:cd:47:33:20:
a0:53:c1:e0:94:ac:e9:9a:2f:d7:c5:c7:4d:61:97:
39:24:99:26:3f:d2:73:ed:6c:72:59:e6:db:4d:0c:
95:9a:2c:2c:e4:33:45:c0:14:33:64:07:3d:83:d2:
6f:16:96:89:14:43:1b:6d:0a:81:72:ee:11:db:77:
07:6a:0b:55:bd:c1:67:08:d6:34:61:59:d1:05:d8:
13:10:14:00:6f:4a:1e:08:d1:74:15:f3:e4:0c:db:
54:d3:04:78:90:e1:80:6f:d1:6b:bb:5a:48:e3:bd:
a1:db:c2:24:2f:72:25:50:11:73:98:fc:0c:8d:56:
43:fd:a7:42:6b:6c:d9:62:54:33:31:95:cc:5f:95:
49:ea:8a:02:ad:ff:6f:e9:aa:d4:a0:db:a1:cc:48:
86:92:0d:31:7b:4e:37:85:b8:7d:a6:74:68:11:70:
58:65:7b:7f:4a:c6:fd:63:a6:ac:7f:fa:70:5d:d2:
a9:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
52:BB:D4:F4:EE:81:9F:8B:1F:29:E2:A7:5A:05:67:36:15:5F:9F:FB
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:4d:c7:ac:04:2c:9c:4a:61:89:2f:27:6e:d1:67:27:66:4f:
7d:38:a7:be:8c:28:7d:ec:4e:a5:c0:80:9a:28:8c:43:eb:e7:
8f:fa:ac:6d:9d:cf:85:65:82:d2:c4:22:20:8f:1b:47:af:52:
c9:d3:39:f4:7e:39:b9:a3:6f:31:55:d8:0f:de:3a:6c:79:81:
d3:05:90:c9:1b:ae:cc:4f:f0:42:00:66:ef:14:e7:8b:17:4a:
5a:8e:38:16:27:c8:c5:32:a2:b5:88:7f:09:bf:60:59:09:5c:
7d:f6:7c:bd:75:8e:89:4c:b9:8e:62:73:16:34:10:97:70:c3:
ca:f7:9c:f9:70:0e:cc:84:be:6d:95:cf:d2:7c:bd:bb:2c:b6:
87:c4:23:ba:1f:93:da:66:01:8f:42:8e:0d:32:30:80:b0:1c:
f3:6b:85:c9:63:42:d4:4e:eb:59:0c:2b:48:02:4d:ef:da:86:
09:6b:c8:9e:26:1c:49:b4:a1:cc:03:c7:3f:d9:7c:c9:75:1a:
d6:14:11:3b:34:57:76:29:b4:cf:90:0d:69:7d:bf:96:35:bb:
19:ae:34:47:f6:ab:5c:30:d5:f7:09:11:7a:3d:df:86:1e:52:
c6:cf:38:0f:86:af:c9:3c:40:8a:65:ec:b1:b5:c6:d2:dc:ff:
87:90:32:fe
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 01:17:38 2026 by rpki-client