Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
File: kLCsKbEI83Ixb79OqT4UhzGkxOk.mft (raw, json)
Hash identifier: a5iYgh1BZ94LpUMeZT/H5vS1M1394bZzqYSRo6NAhCw=
Subject key identifier: 4E:F3:AE:EF:7B:91:75:F3:9F:75:70:CF:49:7E:3D:11:5A:69:32:27
Authority key identifier: 90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
Certificate issuer: /CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Certificate serial: 019CAC0FBC2F6D21EC6D651042F762E227CB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 01:00:38 +0000
Manifest this update: Mon 02 Mar 2026 01:00:38 +0000
Manifest next update: Tue 03 Mar 2026 01:00:38 +0000
Files and hashes: 1: kLCsKbEI83Ixb79OqT4UhzGkxOk.crl (hash: ziEwF23nbVwmcEW0PDIxjy0BoMGzjZ4j7JWzwyBkoP4=)
2: qv3Ej32YD_b_UD9Nd2LLu7Onshs.roa (hash: QDsiGpgCL1OjBF1UVwY4OIbEFPuPDLsm5/b5USJqJRw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:0f:bc:2f:6d:21:ec:6d:65:10:42:f7:62:e2:27:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b0ac29b108f372316fbf4ea93e148731a4c4e9
Validity
Not Before: Mar 2 01:00:38 2026 GMT
Not After : Mar 3 01:00:38 2026 GMT
Subject: CN=4ef3aeef7b9175f39f7570cf497e3d115a693227
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:2f:a9:db:64:89:cf:be:73:81:a0:17:cc:92:
dc:e6:76:94:7f:e5:66:78:9e:67:4d:39:08:a1:da:
04:8f:f1:91:93:47:c8:88:cb:1f:0a:ef:c4:13:ac:
d6:f1:02:54:42:fa:98:ad:c4:79:72:fe:1b:09:79:
08:16:c3:5a:f1:0d:6a:6f:7b:b7:68:fa:8e:87:03:
56:47:1e:ed:d2:01:3e:76:8c:00:95:eb:2a:a8:f6:
6a:e5:4d:43:78:17:6a:37:49:80:25:aa:ce:ad:e6:
c3:70:a4:4b:9b:a9:47:62:dc:43:65:97:b3:13:2f:
fa:74:fe:66:72:4f:64:6a:c2:a4:7f:14:d9:70:db:
08:81:0c:bb:5a:47:75:53:7e:c7:9b:c0:c6:8d:36:
fd:b2:78:04:41:2b:38:c0:50:13:54:64:05:b3:02:
62:2c:66:be:fe:be:e6:fc:12:c0:e2:90:d2:b9:40:
ed:15:83:d5:fc:18:19:d5:a8:e2:3b:ce:a5:35:36:
50:14:ff:ea:a2:55:8a:4a:58:02:81:80:7f:66:ac:
fd:1f:74:f9:a7:8f:70:30:75:75:ca:72:44:d1:dd:
9b:34:23:96:be:58:c3:2a:9f:44:45:6a:51:7f:f6:
ca:92:4d:c3:37:54:93:06:58:fb:af:51:34:42:9c:
71:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:F3:AE:EF:7B:91:75:F3:9F:75:70:CF:49:7E:3D:11:5A:69:32:27
X509v3 Authority Key Identifier:
keyid:90:B0:AC:29:B1:08:F3:72:31:6F:BF:4E:A9:3E:14:87:31:A4:C4:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLCsKbEI83Ixb79OqT4UhzGkxOk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/2f632c-bd54-4036-90b6-d253cd3e7a34/1/kLCsKbEI83Ixb79OqT4UhzGkxOk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:fc:37:ec:7e:df:a4:f4:8c:06:f6:83:75:1a:0c:dd:13:af:
88:d6:d4:7c:82:b2:f1:48:64:96:60:d5:16:40:33:00:61:c5:
a0:ba:a9:29:92:fd:8f:ed:2c:f7:d5:83:91:3e:dc:3c:8b:d6:
a1:c2:b4:24:ee:e5:7e:be:17:61:9e:3c:99:42:b1:a4:e0:1f:
db:98:62:78:25:9e:56:09:76:41:b0:b2:79:a5:b2:a7:8e:17:
96:88:f3:a0:74:34:92:a5:6c:bb:63:82:25:64:78:10:fd:6a:
59:7b:50:7f:82:8b:84:99:b8:48:64:e2:06:48:9a:9a:11:e4:
63:88:b6:1c:97:39:fc:36:c1:16:64:8c:c5:e9:14:95:46:07:
ad:b6:75:1d:10:1a:96:33:fe:71:10:05:eb:c2:c1:94:19:09:
25:1d:f2:0a:3c:21:cc:8e:b8:96:db:7f:58:2d:f2:81:8f:81:
c8:91:fa:65:c7:ce:eb:1a:d7:a6:18:49:a2:6e:c1:2f:ec:54:
87:aa:90:01:9c:c2:17:da:a3:58:31:a7:40:c5:7b:f4:9b:5a:
17:d9:3e:8f:15:ae:8d:5d:32:5c:b5:7f:f3:8c:67:bc:86:8a:
31:06:54:ae:45:dd:eb:52:3b:a8:08:b4:ba:37:12:aa:53:1c:
db:d3:f4:25
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysD7wvbSHsbWUQQvdi4ifLMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYjBhYzI5YjEwOGYzNzIzMTZmYmY0ZWE5M2UxNDg3MzFh
NGM0ZTkwHhcNMjYwMzAyMDEwMDM4WhcNMjYwMzAzMDEwMDM4WjAzMTEwLwYDVQQD
Eyg0ZWYzYWVlZjdiOTE3NWYzOWY3NTcwY2Y0OTdlM2QxMTVhNjkzMjI3MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvC+p22SJz75zgaAXzJLc5naUf+Vm
eJ5nTTkIodoEj/GRk0fIiMsfCu/EE6zW8QJUQvqYrcR5cv4bCXkIFsNa8Q1qb3u3
aPqOhwNWRx7t0gE+dowAlesqqPZq5U1DeBdqN0mAJarOrebDcKRLm6lHYtxDZZez
Ey/6dP5mck9kasKkfxTZcNsIgQy7Wkd1U37Hm8DGjTb9sngEQSs4wFATVGQFswJi
LGa+/r7m/BLA4pDSuUDtFYPV/BgZ1ajiO86lNTZQFP/qolWKSlgCgYB/Zqz9H3T5
p49wMHV1ynJE0d2bNCOWvljDKp9ERWpRf/bKkk3DN1STBlj7r1E0Qpxx/wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFE7zru97kXXzn3Vwz0l+PRFaaTInMB8GA1UdIwQY
MBaAFJCwrCmxCPNyMW+/Tqk+FIcxpMTpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0xDc0tiRUk4M0l4Yjc5T3FUNFVoekdreE9rLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZS8yZjYzMmMtYmQ1NC00MDM2LTkwYjYt
ZDI1M2NkM2U3YTM0LzEva0xDc0tiRUk4M0l4Yjc5T3FUNFVoekdreE9rLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9mZS8yZjYzMmMtYmQ1NC00MDM2LTkwYjYtZDI1M2NkM2U3YTM0
LzEva0xDc0tiRUk4M0l4Yjc5T3FUNFVoekdreE9rLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjPw37H7f
pPSMBvaDdRoM3ROviNbUfIKy8UhklmDVFkAzAGHFoLqpKZL9j+0s99WDkT7cPIvW
ocK0JO7lfr4XYZ48mUKxpOAf25hieCWeVgl2QbCyeaWyp44XlojzoHQ0kqVsu2OC
JWR4EP1qWXtQf4KLhJm4SGTiBkiamhHkY4i2HJc5/DbBFmSMxekUlUYHrbZ1HRAa
ljP+cRAF68LBlBkJJR3yCjwhzI64ltt/WC3ygY+ByJH6ZcfO6xrXphhJom7BL+xU
h6qQAZzCF9qjWDGnQMV79JtaF9k+jxWujV0yXLV/84xnvIaKMQZUrkXd61I7qAi0
ujcSqlMc29P0JQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 04:44:16 2026 by rpki-client