Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
File: KZkwB8fJLfYXjny0MYP9f1KlJtg.mft (raw, json)
Hash identifier: FGyVgGL2mqTAGjhTT90NJ7l1tJIMkT//C36b5mf4PoQ=
Subject key identifier: D2:16:A3:13:44:A7:96:B4:02:A2:24:64:12:8A:B9:EA:5E:86:CB:39
Authority key identifier: 29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
Certificate issuer: /CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Certificate serial: 019D2515EFA69D63AC4A6ABD9923FA58C9E2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
Manifest number: 0634
Signing time: Wed 25 Mar 2026 13:01:27 +0000
Manifest this update: Wed 25 Mar 2026 13:01:27 +0000
Manifest next update: Thu 26 Mar 2026 13:01:27 +0000
Files and hashes: 1: 7f4UvQlMdpfAbI5t8bFTk5iRj8k.roa (hash: /N2n+SGiRBz3V3eyWEIptUhy7tOM9oDQMEZwfy867yE=)
2: CGspQAEXscYtnhUkcO43B4rOMYI.roa (hash: ZmpcN0BqbrZBIrGn5PsZ/DSc38P9usOvQmrKlG150S0=)
3: JdmDASsiVF3OIVzqa3C7Cim1k98.roa (hash: nFwnLYcc5xw59Kim5t3Ysus4IUlGUDLjCzJ6lO8Sg5o=)
4: KZkwB8fJLfYXjny0MYP9f1KlJtg.crl (hash: 6LCYeaEDF+INaI3zRBLbeGrGfmTKGWR4q0EoOIREs5o=)
5: c_SCSSOMfndQeyUkFaC27pfW1mU.roa (hash: uAY189SdMJyDwdqEHdr62YdMVXHkgzdNjAsXqKard7o=)
6: zq_9_kcYqu3vefIRsvfC8bPWQ-g.roa (hash: QDKMvUQqB0HqtMyuZtPJ5BCeeeIwdd+NrKPpEKtzi6U=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 13:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:15:ef:a6:9d:63:ac:4a:6a:bd:99:23:fa:58:c9:e2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29993007c7c92df6178e7cb43183fd7f52a526d8
Validity
Not Before: Mar 25 13:01:27 2026 GMT
Not After : Mar 26 13:01:27 2026 GMT
Subject: CN=d216a31344a796b402a22464128ab9ea5e86cb39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:94:f7:ce:53:bf:96:e5:69:08:b3:0d:1a:1a:37:
95:14:62:46:a0:03:91:d8:cb:25:9a:f2:4d:45:d0:
01:47:4e:50:f7:4e:fe:51:32:7c:65:88:eb:83:62:
8b:15:0d:ef:46:e8:d9:ec:9b:f4:77:7f:51:f4:13:
85:e4:f6:2b:87:a2:16:8e:57:0e:65:79:cd:4c:3c:
2e:d9:a7:4f:0b:6d:d4:09:f6:61:2d:70:5d:28:1e:
ab:f2:32:d0:65:2f:1f:8f:9e:4b:e9:cd:45:cd:2f:
e6:75:e9:a7:ef:21:ac:99:c9:21:28:f4:ff:55:63:
95:f6:6c:e3:56:7a:77:4c:53:da:1b:df:0b:94:f7:
8a:37:9d:bf:c8:4b:a8:14:e1:db:d2:58:51:95:bd:
d4:34:f7:00:60:38:3a:10:77:87:88:6b:de:e8:36:
19:4f:18:2b:b4:7f:1a:cb:1a:b4:a9:c2:81:9f:33:
27:2e:f7:45:32:d0:b6:24:db:7a:07:7b:e7:be:89:
bb:f3:13:be:45:78:45:c6:ad:82:a4:d9:ff:f0:9b:
6c:fa:3d:6a:9a:4c:96:68:88:9f:7e:94:8a:30:da:
28:b8:90:4e:65:ad:40:a1:73:2f:d3:da:c3:6e:47:
b6:53:44:14:21:03:82:8f:0d:89:f4:d4:7b:f5:d0:
83:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D2:16:A3:13:44:A7:96:B4:02:A2:24:64:12:8A:B9:EA:5E:86:CB:39
X509v3 Authority Key Identifier:
keyid:29:99:30:07:C7:C9:2D:F6:17:8E:7C:B4:31:83:FD:7F:52:A5:26:D8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KZkwB8fJLfYXjny0MYP9f1KlJtg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/dc9b6f-3a6d-449f-8b89-1e829ffa1c3a/1/KZkwB8fJLfYXjny0MYP9f1KlJtg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4e:92:f9:bf:c2:84:af:b3:34:61:4a:c8:ba:83:de:fc:8b:53:
12:0b:8f:29:9b:f8:04:50:f7:24:04:ba:ad:e1:7d:f5:ea:bb:
24:5e:1f:6f:1d:d0:d7:2f:ff:27:e8:d6:b1:40:21:a9:3f:38:
9b:de:2c:7d:20:bc:40:78:e4:28:64:3a:e7:ca:63:63:c3:3d:
d2:a2:f0:b1:79:11:6c:fd:4e:2e:93:a7:9a:98:33:c8:7c:e5:
b9:e5:ef:b8:4e:74:d8:3b:ca:c4:80:64:27:d8:19:a7:63:aa:
cb:71:28:14:5f:f4:d6:41:27:ea:9f:49:31:6a:48:8e:c3:97:
f3:d9:8c:05:8f:25:76:1b:27:6a:2d:73:6e:82:67:1d:b0:a1:
68:37:89:86:3f:51:67:c8:07:81:67:91:0e:68:01:dd:f7:99:
46:ae:bd:68:01:26:ac:bf:bc:6d:bc:c1:84:da:6c:ad:5f:f6:
b7:d4:4b:ec:56:cf:24:28:1b:d9:de:b3:2d:45:06:c3:45:ca:
c0:ca:fd:90:7a:95:f7:4c:88:83:89:5f:71:d0:ec:fe:e7:5b:
7f:72:00:d2:2c:92:08:fa:fa:5d:95:f1:9e:af:74:40:fb:03:
ff:b5:ba:4f:a4:c6:57:60:8e:c2:96:42:99:43:e3:1c:c0:7c:
e5:da:84:0c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Mar 25 23:24:13 2026 by rpki-client