Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
File: Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft (raw, json)
Hash identifier: qcm9Ui9IhIv1W/ESOoRKLrnEf9Bp8owwDGMR7ZJs0u8=
Subject key identifier: B8:AB:65:52:B2:D9:AB:97:74:4C:89:77:4D:AD:65:F3:67:32:6A:10
Authority key identifier: 2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
Certificate issuer: /CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Certificate serial: 019D284DF3F0AAF57ED2F029BECC9523188C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
Manifest number: 047A
Signing time: Thu 26 Mar 2026 04:01:30 +0000
Manifest this update: Thu 26 Mar 2026 04:01:30 +0000
Manifest next update: Fri 27 Mar 2026 04:01:30 +0000
Files and hashes: 1: Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl (hash: 2w1PpHQXTC/v/jnFU0/DZCuqHr8IN4k7P9kVJn4w8WA=)
2: bHxNQUrJC8Eh62QodMXQrjbnmgg.roa (hash: 1d3ZqMZQAbRLtC6TZNo/vpwZQcPk90gTwtcmQgBCgII=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:4d:f3:f0:aa:f5:7e:d2:f0:29:be:cc:95:23:18:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b3f6fa9f037765e74bdf2ac82ccbabc7e4fc8ed
Validity
Not Before: Mar 26 04:01:30 2026 GMT
Not After : Mar 27 04:01:30 2026 GMT
Subject: CN=b8ab6552b2d9ab97744c89774dad65f367326a10
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:56:fa:4c:7d:20:02:3b:56:98:4f:ba:22:90:
72:47:d9:44:18:d2:97:18:53:6b:2f:5a:65:6b:4a:
b4:38:fa:70:5a:32:16:a8:2a:92:d5:60:02:3c:46:
2f:2b:8d:0b:87:d3:04:99:1c:70:be:67:65:40:36:
eb:b4:4b:60:c4:ac:76:eb:2e:8f:b7:69:45:4e:73:
db:fd:ee:22:92:2d:83:f2:8d:ba:cb:09:18:93:d7:
d4:38:d2:d2:df:da:e7:43:76:14:d6:df:2c:36:85:
0b:42:a7:08:b0:ab:ba:a1:03:71:1a:f3:f5:c8:f1:
5f:a5:48:51:0c:6a:60:0f:6e:6a:4a:3d:f1:5c:2c:
23:4d:5c:3d:cb:47:2d:89:ea:7c:bc:b6:f1:dd:96:
56:3d:5c:a1:28:26:f0:0d:5b:6b:62:4b:63:ac:5c:
c1:5c:3d:05:aa:09:4f:26:07:b3:37:6c:ca:12:ce:
c3:6d:53:d8:72:99:4e:20:5b:80:f5:59:54:f0:78:
a4:bb:81:d6:a3:7b:31:52:aa:45:e7:99:3a:b6:7d:
ca:07:31:c4:55:d3:54:a9:4f:b4:6d:4a:04:bd:ba:
be:0a:b9:b0:f5:f8:d7:99:42:e8:71:df:2a:b8:96:
05:a7:3d:98:bc:6b:9e:e3:f0:46:ff:85:6a:72:04:
b2:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:AB:65:52:B2:D9:AB:97:74:4C:89:77:4D:AD:65:F3:67:32:6A:10
X509v3 Authority Key Identifier:
keyid:2B:3F:6F:A9:F0:37:76:5E:74:BD:F2:AC:82:CC:BA:BC:7E:4F:C8:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Kz9vqfA3dl50vfKsgsy6vH5PyO0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/c54f42-912f-4b81-8b00-5c00fcd73619/1/Kz9vqfA3dl50vfKsgsy6vH5PyO0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0e:88:7d:a2:58:64:51:d3:20:8f:95:0f:12:45:41:01:5f:48:
03:ce:d7:47:37:cb:5e:6b:8f:83:28:05:9a:d4:a9:6b:0c:85:
8c:98:b8:9b:3e:d7:d5:c2:3d:47:46:b1:1a:c2:23:6e:e6:7f:
eb:92:0a:e7:2d:3c:e7:b8:5e:89:ee:f0:1e:20:72:d0:61:b5:
f7:e7:02:02:63:a7:b0:74:06:82:a3:1a:b2:c0:98:d1:99:08:
33:c2:94:c0:0e:e9:04:c3:2c:80:44:bb:08:ba:98:28:2a:ca:
06:18:13:c6:68:90:95:f2:6f:2d:2a:b1:8a:3e:dc:06:81:6a:
da:30:b5:f2:93:f4:d9:e4:ff:f6:d7:34:fa:1e:7f:31:b0:df:
9a:bc:10:28:29:c7:20:75:df:93:c3:ff:a1:90:f2:60:81:30:
7b:85:d6:2b:94:63:7f:9c:fb:da:93:e7:a6:f4:cc:df:b0:a2:
c4:7e:00:de:ff:c1:0a:48:71:46:e7:1f:18:45:6c:30:d7:4a:
5f:d7:43:9d:88:46:46:35:2d:a1:77:f7:00:16:97:74:2f:48:
e9:f0:da:7c:46:43:c6:3b:95:75:ab:46:42:92:35:d2:4a:74:
52:aa:df:bd:c4:06:33:f5:40:aa:79:fb:0d:de:e1:cf:79:a4:
1e:72:c4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:08:53 2026 by rpki-client