Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
File: KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft (raw, json)
Hash identifier: jrlHdnMdXW4NMZnAuc265+CynXe884W42tLnVL7UkDU=
Subject key identifier: 84:2A:82:49:6C:97:CA:F1:D3:AF:3A:4C:00:FD:D8:64:86:60:06:B6
Authority key identifier: 28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
Certificate issuer: /CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Certificate serial: 019CAC476CB8EC4A2A226E2DAB09C535B185
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
Manifest number: 0D2D
Signing time: Mon 02 Mar 2026 02:01:27 +0000
Manifest this update: Mon 02 Mar 2026 02:01:27 +0000
Manifest next update: Tue 03 Mar 2026 02:01:27 +0000
Files and hashes: 1: 0d0jGfKX-gxJysHLosjRpYlTW5Q.roa (hash: CvfYQwzjI8vLt2H1NJc+s052pBAhojbFkOv6NxHUB/E=)
2: KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl (hash: RXKRE9QyV3De8hFcS1wGN5eP82CrQj8q0AjzotUvDRM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:6c:b8:ec:4a:2a:22:6e:2d:ab:09:c5:35:b1:85
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28cb5f3fb957251aad4ba09d0bab7352b74bb07d
Validity
Not Before: Mar 2 02:01:27 2026 GMT
Not After : Mar 3 02:01:27 2026 GMT
Subject: CN=842a82496c97caf1d3af3a4c00fdd864866006b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:cb:4a:4a:82:22:c8:6b:17:0e:84:70:8b:d9:
a8:4d:db:8a:3b:f8:61:c4:fa:33:02:d6:9c:25:c6:
7b:9f:21:ea:68:5b:e3:6c:7a:b1:47:b4:bd:ea:e4:
03:2f:12:22:82:d0:2f:0e:30:9a:04:25:3a:60:58:
5b:ce:db:d6:d0:5c:21:72:9f:f8:b4:00:8f:68:90:
c3:8d:2f:1d:3c:a1:3c:1c:6e:21:b4:dc:ab:98:6c:
50:7f:b9:62:84:e5:0b:2a:70:f8:33:a1:af:da:b5:
b1:e0:44:38:07:e6:2c:b0:06:3f:90:82:ac:dc:96:
44:ae:29:a8:cf:76:56:f8:61:c5:e1:8c:54:ba:27:
81:0b:de:a0:16:ab:73:44:2a:a6:bf:70:ba:f0:c1:
82:4c:c9:8d:1c:1f:c5:86:47:9e:81:f9:33:08:fa:
30:e0:03:35:d4:0b:0f:50:35:d6:f8:f7:43:04:fc:
9d:a3:32:be:05:b6:7a:f6:6b:bd:48:4a:b5:4b:c0:
47:43:f0:4b:48:92:f4:b9:26:a7:ce:ba:5a:b9:c8:
13:eb:67:ba:eb:ea:95:3d:c0:ca:f3:7d:67:dc:5d:
3f:26:74:6b:1c:05:55:0b:7b:be:86:3f:0a:31:21:
42:4b:8e:6f:1a:1b:f0:f7:73:19:1c:d3:d4:13:39:
ae:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:2A:82:49:6C:97:CA:F1:D3:AF:3A:4C:00:FD:D8:64:86:60:06:B6
X509v3 Authority Key Identifier:
keyid:28:CB:5F:3F:B9:57:25:1A:AD:4B:A0:9D:0B:AB:73:52:B7:4B:B0:7D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMtfP7lXJRqtS6CdC6tzUrdLsH0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/e6632b-1fbf-496f-b355-1536fc78385d/1/KMtfP7lXJRqtS6CdC6tzUrdLsH0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9e:84:51:65:16:b4:9e:ce:3b:7c:ad:f5:51:21:c6:9d:ee:06:
f4:da:b4:78:b6:3c:24:25:9f:dc:91:1a:21:f1:4b:9e:be:af:
81:22:7c:ed:73:dc:34:e4:9d:30:f5:a1:5b:8d:a6:b5:83:b8:
c6:c3:7f:43:37:fb:05:5a:51:a0:04:79:f3:e7:5b:34:5e:e2:
a2:fd:48:d0:a3:9b:db:a6:00:37:2e:39:5f:15:2d:5a:1e:c5:
38:08:01:ef:28:2a:25:e6:b2:ae:ba:c0:42:91:e6:36:e2:ec:
4c:56:78:2f:2a:21:ff:10:40:43:a3:a3:37:b2:17:0d:21:0c:
ce:2d:f3:b6:c1:b0:90:64:2a:64:6f:c6:a0:03:be:12:f4:05:
8f:4a:88:e8:c6:0b:fa:e6:f2:03:1d:5f:ca:06:6a:02:b2:48:
2b:1b:15:97:08:3a:56:97:cc:70:fa:40:ec:22:de:93:c2:08:
78:b6:19:50:0d:0d:b4:ae:04:f0:02:9f:09:d7:fb:4a:fb:e1:
43:e1:ac:9d:80:4b:d1:03:8d:82:c1:7d:5a:ef:16:23:e3:3b:
78:1a:ce:61:6a:b5:0e:38:46:68:c5:07:ec:03:e9:1a:d1:07:
a0:3e:17:93:a4:ee:7a:56:65:65:6b:34:bc:59:e0:0a:87:0b:
f1:a4:8c:b0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysR2y47EoqIm4tqwnFNbGFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Y2I1ZjNmYjk1NzI1MWFhZDRiYTA5ZDBiYWI3MzUyYjc0
YmIwN2QwHhcNMjYwMzAyMDIwMTI3WhcNMjYwMzAzMDIwMTI3WjAzMTEwLwYDVQQD
Eyg4NDJhODI0OTZjOTdjYWYxZDNhZjNhNGMwMGZkZDg2NDg2NjAwNmI2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzctKSoIiyGsXDoRwi9moTduKO/hh
xPozAtacJcZ7nyHqaFvjbHqxR7S96uQDLxIigtAvDjCaBCU6YFhbztvW0Fwhcp/4
tACPaJDDjS8dPKE8HG4htNyrmGxQf7lihOULKnD4M6Gv2rWx4EQ4B+YssAY/kIKs
3JZErimoz3ZW+GHF4YxUuieBC96gFqtzRCqmv3C68MGCTMmNHB/FhkeegfkzCPow
4AM11AsPUDXW+PdDBPydozK+BbZ69mu9SEq1S8BHQ/BLSJL0uSanzrpaucgT62e6
6+qVPcDK831n3F0/JnRrHAVVC3u+hj8KMSFCS45vGhvw93MZHNPUEzmuZwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFIQqgklsl8rx0686TAD92GSGYAa2MB8GA1UdIwQY
MBaAFCjLXz+5VyUarUugnQurc1K3S7B9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUt
MTUzNmZjNzgzODVkLzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy9lNjYzMmItMWZiZi00OTZmLWIzNTUtMTUzNmZjNzgzODVk
LzEvS010ZlA3bFhKUnF0UzZDZEM2dHpVcmRMc0gwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnoRRZRa0
ns47fK31USHGne4G9Nq0eLY8JCWf3JEaIfFLnr6vgSJ87XPcNOSdMPWhW42mtYO4
xsN/Qzf7BVpRoAR58+dbNF7iov1I0KOb26YANy45XxUtWh7FOAgB7ygqJeayrrrA
QpHmNuLsTFZ4Lyoh/xBAQ6OjN7IXDSEMzi3ztsGwkGQqZG/GoAO+EvQFj0qI6MYL
+ubyAx1fygZqArJIKxsVlwg6VpfMcPpA7CLek8IIeLYZUA0NtK4E8AKfCdf7Svvh
Q+GsnYBL0QONgsF9Wu8WI+M7eBrOYWq1DjhGaMUH7APpGtEHoD4Xk6TuelZlZWs0
vFngCocL8aSMsA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 05:39:47 2026 by rpki-client