Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
File: kniPTrt0HAw2mg_TBZTNAQHcdHY.mft (raw, json)
Hash identifier: Kh9J4MxB4PVaierznjj/Rh5Ecsq1IUt1xb97HR0ExYE=
Subject key identifier: F1:15:D3:58:1C:B2:A7:39:96:7E:85:A0:D8:EB:34:DA:11:FF:27:3C
Authority key identifier: 92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
Certificate issuer: /CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Certificate serial: 019D29618001718A66CAE84C34A929AF4806
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
Manifest number: 1888
Signing time: Thu 26 Mar 2026 09:02:28 +0000
Manifest this update: Thu 26 Mar 2026 09:02:28 +0000
Manifest next update: Fri 27 Mar 2026 09:02:28 +0000
Files and hashes: 1: b3JxtrhKDsDTqBI6cQvHONYRjVU.roa (hash: C950hko8WTv3REmoomJ1yY7S0AF8GUGo8sOTvPlJ2Dg=)
2: kniPTrt0HAw2mg_TBZTNAQHcdHY.crl (hash: Y3+YImhzRvF/XIPo7vfPH8sQCMVzOlAYnnU/bHuYFas=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:61:80:01:71:8a:66:ca:e8:4c:34:a9:29:af:48:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92788f4ebb741c0c369a0fd30594cd0101dc7476
Validity
Not Before: Mar 26 09:02:28 2026 GMT
Not After : Mar 27 09:02:28 2026 GMT
Subject: CN=f115d3581cb2a739967e85a0d8eb34da11ff273c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:78:93:d7:87:65:cf:76:8c:b1:ee:28:b0:4b:
8e:10:28:c8:b8:fd:3b:50:ef:e4:de:60:7e:5b:68:
e2:cc:d5:4c:51:ca:cb:fd:ef:1b:de:b8:65:be:0d:
66:2a:48:b8:65:a2:4e:8d:99:7d:30:16:d1:54:fc:
ff:d3:6d:6a:3c:bf:25:f3:a9:aa:d4:b7:a7:51:42:
06:6a:6f:c4:11:ba:11:11:2c:a7:d8:e6:36:c7:42:
be:a8:f1:25:d4:99:e2:53:d1:4f:6a:1e:0c:95:7e:
db:0d:ab:09:1f:65:bd:8b:a5:ba:3d:75:0e:26:1d:
76:24:0c:82:29:3c:b2:f6:49:82:ec:e8:ec:77:63:
8b:81:df:f3:ae:b5:41:48:0f:ec:5a:d9:52:f8:17:
ce:a7:57:33:b2:9b:87:19:61:84:f1:d4:be:57:8e:
fa:ff:75:22:50:3a:e1:29:fb:b8:3f:19:cf:7d:a9:
f6:6c:22:72:60:c7:5b:a5:3f:17:9f:9e:83:89:be:
6b:be:aa:8d:f2:30:13:6a:72:4f:cf:22:79:d9:09:
68:ec:6e:58:ed:3f:51:c0:da:51:c8:8e:25:d8:5e:
9b:5d:28:3c:3e:4f:4e:a7:ba:8a:39:3c:fe:f4:aa:
b4:fd:e8:f1:18:e8:33:24:bd:1a:21:b4:74:43:cb:
9f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F1:15:D3:58:1C:B2:A7:39:96:7E:85:A0:D8:EB:34:DA:11:FF:27:3C
X509v3 Authority Key Identifier:
keyid:92:78:8F:4E:BB:74:1C:0C:36:9A:0F:D3:05:94:CD:01:01:DC:74:76
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kniPTrt0HAw2mg_TBZTNAQHcdHY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/15/771e77-c649-47f3-99a8-dbfac00fb0ef/1/kniPTrt0HAw2mg_TBZTNAQHcdHY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:76:d0:af:37:45:25:9a:aa:af:f6:ee:a6:25:d1:3d:f4:02:
4e:83:23:0e:d7:12:59:8f:96:81:45:3d:15:da:4f:ef:ce:55:
01:66:75:f5:18:2c:ea:39:be:1d:46:24:d2:0d:49:14:b3:c8:
14:30:46:73:e7:1d:0d:6b:25:0e:d8:6a:fb:48:a5:9f:a2:61:
f4:85:ca:96:12:93:10:80:7c:47:25:d9:a0:82:4f:82:35:26:
50:24:7f:98:71:43:62:ae:b5:07:c3:eb:52:90:fc:5a:b7:22:
36:61:b3:02:67:d2:ec:ef:3a:38:a7:c3:1a:21:cb:4d:f8:7f:
4a:b3:1a:94:e0:7b:ce:a9:a9:ec:9e:f1:40:5c:79:45:e7:19:
c0:d1:88:64:92:42:65:ca:78:ef:d4:06:57:5a:b0:d0:c3:14:
4a:80:d3:b5:36:fb:bb:3b:3a:9e:f0:6f:2b:b0:d4:5b:8d:38:
60:23:67:44:d7:f6:0f:0e:b5:04:b2:38:02:5a:24:5b:5c:b5:
1a:33:b7:fe:d8:d1:f0:ed:6f:58:4c:ac:06:eb:c4:7a:60:50:
da:8c:2b:33:cc:2e:e7:42:5e:e9:92:39:31:d5:84:c2:8b:db:
aa:83:d8:8f:fc:f5:c5:ec:27:2b:66:a8:0d:27:ef:8b:50:d8:
67:55:cb:44
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pYYABcYpmyuhMNKkpr0gGMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNzg4ZjRlYmI3NDFjMGMzNjlhMGZkMzA1OTRjZDAxMDFk
Yzc0NzYwHhcNMjYwMzI2MDkwMjI4WhcNMjYwMzI3MDkwMjI4WjAzMTEwLwYDVQQD
EyhmMTE1ZDM1ODFjYjJhNzM5OTY3ZTg1YTBkOGViMzRkYTExZmYyNzNjMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxniT14dlz3aMse4osEuOECjIuP07
UO/k3mB+W2jizNVMUcrL/e8b3rhlvg1mKki4ZaJOjZl9MBbRVPz/021qPL8l86mq
1LenUUIGam/EEboRESyn2OY2x0K+qPEl1JniU9FPah4MlX7bDasJH2W9i6W6PXUO
Jh12JAyCKTyy9kmC7Ojsd2OLgd/zrrVBSA/sWtlS+BfOp1czspuHGWGE8dS+V476
/3UiUDrhKfu4PxnPfan2bCJyYMdbpT8Xn56Dib5rvqqN8jATanJPzyJ52Qlo7G5Y
7T9RwNpRyI4l2F6bXSg8Pk9Op7qKOTz+9Kq0/ejxGOgzJL0aIbR0Q8ufmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPEV01gcsqc5ln6FoNjrNNoR/yc8MB8GA1UdIwQY
MBaAFJJ4j067dBwMNpoP0wWUzQEB3HR2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgt
ZGJmYWMwMGZiMGVmLzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xNS83NzFlNzctYzY0OS00N2YzLTk5YTgtZGJmYWMwMGZiMGVm
LzEva25pUFRydDBIQXcybWdfVEJaVE5BUUhjZEhZLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArnbQrzdF
JZqqr/bupiXRPfQCToMjDtcSWY+WgUU9FdpP785VAWZ19Rgs6jm+HUYk0g1JFLPI
FDBGc+cdDWslDthq+0iln6Jh9IXKlhKTEIB8RyXZoIJPgjUmUCR/mHFDYq61B8Pr
UpD8WrciNmGzAmfS7O86OKfDGiHLTfh/SrMalOB7zqmp7J7xQFx5RecZwNGIZJJC
Zcp479QGV1qw0MMUSoDTtTb7uzs6nvBvK7DUW404YCNnRNf2Dw61BLI4AlokW1y1
GjO3/tjR8O1vWEysBuvEemBQ2owrM8wu50Je6ZI5MdWEwovbqoPYj/z1xewnK2ao
DSfvi1DYZ1XLRA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 15:18:14 2026 by rpki-client