Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
File: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft (raw, json)
Hash identifier: lPHVW0ypNySLWfusSVm1N06Kj72gdRr4HDLizXUgq8A=
Subject key identifier: E4:E7:F7:13:39:05:16:A2:20:AB:29:39:24:14:75:FC:9F:10:87:18
Authority key identifier: 29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
Certificate issuer: /CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Certificate serial: 019CAB6BD0A4AC703B65A01918EBA85B8BA4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
Manifest number: 041C
Signing time: Sun 01 Mar 2026 22:01:35 +0000
Manifest this update: Sun 01 Mar 2026 22:01:35 +0000
Manifest next update: Mon 02 Mar 2026 22:01:35 +0000
Files and hashes: 1: 77Whh77iKwt1yOOYU4DtYorlBOk.roa (hash: tO7vF8xusHO1O0mKViJ8yyoCaEKBRB4DR9BPRK3Lwnc=)
2: KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl (hash: OeoEcV6NHr+JKdnDoxTnjS83GX6etTMOvbIL+0DGJKo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:d0:a4:ac:70:3b:65:a0:19:18:eb:a8:5b:8b:a4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2996cd68531847e3b0be0d93c65cc1fb64ecd21a
Validity
Not Before: Mar 1 22:01:35 2026 GMT
Not After : Mar 2 22:01:35 2026 GMT
Subject: CN=e4e7f713390516a220ab2939241475fc9f108718
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:45:db:92:58:7c:60:4c:ca:40:b5:c0:cb:bc:
ae:56:31:c3:57:23:0a:b1:30:f2:65:7f:ae:63:c3:
1c:c6:8a:63:e4:45:09:03:5e:dd:e7:49:01:dd:5f:
5c:4a:7b:06:fd:b3:bd:d8:2e:5c:ab:45:3b:0f:ea:
10:a9:30:ef:40:7a:2a:b3:a8:a7:15:ed:0b:f8:2a:
14:82:ed:91:d2:57:41:43:b9:65:20:b4:c4:5f:51:
57:36:57:91:52:89:7f:92:45:5a:94:47:88:bf:6c:
0c:f9:85:1c:eb:ec:1f:b3:bd:fd:8a:37:b7:22:57:
22:ad:4d:43:5b:8c:9f:53:be:b8:7c:c4:7e:8b:2b:
aa:b7:6a:e8:ca:a7:f5:7b:49:a9:0a:c4:60:e6:10:
88:dd:6b:6a:06:ec:a0:eb:e5:a4:7f:49:bf:ff:0f:
cc:74:0a:a4:43:db:21:44:3a:7d:0e:22:4c:3b:cd:
51:09:63:d9:dc:52:2a:7f:31:bc:d4:1d:31:9f:3c:
82:44:46:bf:17:6e:55:3a:05:d7:74:ab:a2:0e:72:
b1:77:db:6d:97:4b:4f:a9:c6:54:2f:c2:49:66:0b:
8a:b7:fa:b9:d2:cf:8d:ad:df:56:32:0b:73:a1:93:
bf:3c:d7:76:f8:27:85:5b:ef:95:c6:df:52:13:cd:
50:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E4:E7:F7:13:39:05:16:A2:20:AB:29:39:24:14:75:FC:9F:10:87:18
X509v3 Authority Key Identifier:
keyid:29:96:CD:68:53:18:47:E3:B0:BE:0D:93:C6:5C:C1:FB:64:EC:D2:1A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/83cd41-7256-4d66-942f-72ecba131af8/1/KZbNaFMYR-Owvg2TxlzB-2Ts0ho.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:fe:2e:93:4e:a8:9b:52:d3:65:59:4c:af:f9:fb:73:7a:ed:
84:e3:9b:b7:01:ca:56:84:41:81:ae:95:68:cc:50:e5:81:a5:
68:f6:56:ec:5a:8c:8a:04:e7:c8:c0:6b:bd:20:12:a3:94:77:
b1:9e:29:93:fc:e0:66:36:03:29:19:1a:20:bc:91:29:4d:03:
04:01:ed:71:20:21:7a:62:73:2a:81:58:23:ef:e1:2d:7a:93:
1b:0d:0c:eb:9a:c8:72:f4:b7:3c:2e:be:87:0b:6b:4c:8d:a1:
59:a8:75:fd:7f:59:a0:c7:e7:15:a0:7e:1b:f1:3e:33:c8:8f:
39:b0:0a:95:10:9f:1b:0d:b1:12:8b:55:27:96:ea:8e:a9:4d:
b7:2e:35:2b:d2:89:40:37:72:69:1b:c4:fe:fe:da:c0:97:de:
ad:5c:05:ef:79:92:f7:fe:e0:c2:04:13:a0:40:6e:57:bf:ab:
0f:1d:20:d5:66:04:af:b9:58:e1:a3:b1:0b:64:a7:f5:72:5c:
33:0e:cd:79:84:4b:f8:f2:74:0f:80:9f:56:4a:75:cf:44:f9:
9a:23:16:ac:e4:70:c8:31:ec:1b:34:31:c3:0b:71:5d:8e:34:
25:bb:36:6e:66:9b:24:f5:97:8a:af:82:45:da:a1:d0:d4:d3:
4a:82:fb:1e
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra9CkrHA7ZaAZGOuoW4ukMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI5OTZjZDY4NTMxODQ3ZTNiMGJlMGQ5M2M2NWNjMWZiNjRl
Y2QyMWEwHhcNMjYwMzAxMjIwMTM1WhcNMjYwMzAyMjIwMTM1WjAzMTEwLwYDVQQD
EyhlNGU3ZjcxMzM5MDUxNmEyMjBhYjI5MzkyNDE0NzVmYzlmMTA4NzE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EXbklh8YEzKQLXAy7yuVjHDVyMK
sTDyZX+uY8Mcxopj5EUJA17d50kB3V9cSnsG/bO92C5cq0U7D+oQqTDvQHoqs6in
Fe0L+CoUgu2R0ldBQ7llILTEX1FXNleRUol/kkValEeIv2wM+YUc6+wfs739ije3
IlcirU1DW4yfU764fMR+iyuqt2royqf1e0mpCsRg5hCI3WtqBuyg6+Wkf0m//w/M
dAqkQ9shRDp9DiJMO81RCWPZ3FIqfzG81B0xnzyCREa/F25VOgXXdKuiDnKxd9tt
l0tPqcZUL8JJZguKt/q50s+Nrd9WMgtzoZO/PNd2+CeFW++Vxt9SE81QTQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOTn9xM5BRaiIKspOSQUdfyfEIcYMB8GA1UdIwQY
MBaAFCmWzWhTGEfjsL4Nk8Zcwftk7NIaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1piTmFGTVlSLU93dmcyVHhsekItMlRzMGhvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMC84M2NkNDEtNzI1Ni00ZDY2LTk0MmYt
NzJlY2JhMTMxYWY4LzEvS1piTmFGTVlSLU93dmcyVHhsekItMlRzMGhvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mMC84M2NkNDEtNzI1Ni00ZDY2LTk0MmYtNzJlY2JhMTMxYWY4
LzEvS1piTmFGTVlSLU93dmcyVHhsekItMlRzMGhvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAwP4uk06o
m1LTZVlMr/n7c3rthOObtwHKVoRBga6VaMxQ5YGlaPZW7FqMigTnyMBrvSASo5R3
sZ4pk/zgZjYDKRkaILyRKU0DBAHtcSAhemJzKoFYI+/hLXqTGw0M65rIcvS3PC6+
hwtrTI2hWah1/X9ZoMfnFaB+G/E+M8iPObAKlRCfGw2xEotVJ5bqjqlNty41K9KJ
QDdyaRvE/v7awJferVwF73mS9/7gwgQToEBuV7+rDx0g1WYEr7lY4aOxC2Sn9XJc
Mw7NeYRL+PJ0D4CfVkp1z0T5miMWrORwyDHsGzQxwwtxXY40Jbs2bmabJPWXiq+C
Rdqh0NTTSoL7Hg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:04:51 2026 by rpki-client