Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
File: 00KrFW1a4VOtFlKOh9nIR53ApKU.mft (raw, json)
Hash identifier: waav1insJePXf1P/eCBfZSiduewviIa78RrxecGAAro=
Subject key identifier: 04:80:6A:A6:4A:01:3F:18:EF:28:A8:83:E1:D4:CA:65:84:C6:3B:5D
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 019CA9463D89D7A598220847E9D1D69C06B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
Manifest number: 1846
Signing time: Sun 01 Mar 2026 12:01:18 +0000
Manifest this update: Sun 01 Mar 2026 12:01:18 +0000
Manifest next update: Mon 02 Mar 2026 12:01:18 +0000
Files and hashes: 1: 00KrFW1a4VOtFlKOh9nIR53ApKU.crl (hash: Ti63uip9moXWIcy9yJDztPCm2073P3THPf0Lu7Cs/0g=)
2: m-OH61lf9VVgWjii0PINezzjttE.roa (hash: 2GsJyhthbzFVpryryMCfZ+0hcAAlxYfWmqigOWWbj9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 12:01:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:a9:46:3d:89:d7:a5:98:22:08:47:e9:d1:d6:9c:06:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Mar 1 12:01:18 2026 GMT
Not After : Mar 2 12:01:18 2026 GMT
Subject: CN=04806aa64a013f18ef28a883e1d4ca6584c63b5d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:b8:35:e8:fd:68:fa:c3:9d:cd:92:ab:f6:6b:
73:b7:7c:52:fd:24:77:9b:ce:49:9e:05:70:46:e9:
ea:17:86:a6:5c:82:1b:21:7a:9f:86:8a:83:7f:aa:
e4:95:8b:68:4c:d1:ea:82:a3:5e:54:14:38:f4:e2:
82:35:4f:2f:59:e6:cf:86:08:33:e2:8b:28:85:b2:
84:d9:74:d1:97:a0:da:c7:67:24:96:12:e8:ac:56:
91:52:56:b3:87:52:b4:90:b1:36:f8:d7:2d:de:78:
b5:26:d9:2b:e0:b7:80:31:81:e1:06:cd:43:ff:3e:
6d:31:00:4d:49:74:bd:e4:00:77:0c:82:34:39:d1:
2e:ad:a3:7c:c7:46:34:b3:ac:04:6f:71:2e:f3:c8:
74:43:6a:8f:c9:ec:73:15:87:ac:3c:5a:12:16:b6:
b6:8a:6c:05:96:b3:17:df:6e:75:46:f8:5f:8b:64:
cd:70:ab:69:80:25:47:fb:15:87:2b:0e:76:78:4e:
44:94:83:e0:4a:03:74:ce:ee:ee:ea:dd:c5:7a:4c:
da:d1:c6:85:f8:91:22:fb:3a:ed:9e:63:5f:ca:9a:
5d:f4:66:f5:bf:9a:33:11:d9:e2:14:16:df:8f:d5:
b6:ab:1f:da:48:e4:43:2a:89:1f:f1:3f:ed:d5:c5:
15:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:80:6A:A6:4A:01:3F:18:EF:28:A8:83:E1:D4:CA:65:84:C6:3B:5D
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
49:8c:c7:a8:d7:3e:c8:ff:3f:68:bf:78:a2:b4:6c:f3:24:f0:
7d:16:5b:3c:05:39:ff:cc:2b:a5:15:94:39:38:67:5c:ae:4c:
09:2d:41:5d:e7:ec:03:59:de:22:58:7b:8c:77:e9:f3:af:33:
8e:e9:a6:31:53:8b:cf:09:ac:51:4d:7a:ac:14:76:85:93:89:
c3:6c:a7:00:ba:bb:32:6b:a7:36:a7:7c:ab:f6:2b:e3:d9:1e:
f2:25:14:08:94:0e:60:e2:4c:93:38:0f:e4:49:4d:f4:9e:f7:
68:5e:90:bc:55:d5:fb:5b:98:a2:9c:e2:d7:92:dc:7a:99:39:
bb:7b:ee:9d:60:9a:ff:7a:cc:d1:cf:3c:fa:4a:48:3a:18:f8:
c1:91:c7:aa:ba:38:b6:52:af:75:b3:9b:58:4d:b5:e5:39:c9:
7f:37:26:37:67:c4:ee:0c:bc:64:73:45:69:1c:2e:e2:ef:bf:
ac:2c:95:22:63:9c:eb:8d:a6:09:a4:c2:ad:a0:87:7d:d3:19:
f0:5c:da:4a:48:7e:f1:96:4a:9d:63:73:42:d1:c2:98:ff:52:
8a:e2:44:b9:87:58:ee:64:a9:ca:cf:17:ef:24:02:31:cd:8f:
b1:b6:8a:82:01:ab:de:e6:a0:78:65:3b:90:78:fb:3c:57:33:
74:d8:9e:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 1 23:59:00 2026 by rpki-client