Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
File: rKZqWTivVnqeKbT3bxFWB8K4qiA.mft (raw, json)
Hash identifier: E0W92vGzk9Cvv0lHFzpowx53Unv1a6p9tQPcSEzgxj0=
Subject key identifier: 06:7C:33:53:9E:BE:86:2A:A6:73:3F:F2:39:40:B5:DF:84:D0:87:B3
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 019D277A999D9DC6202D97B5BA8279023AE9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
Manifest number: 18FC
Signing time: Thu 26 Mar 2026 00:10:39 +0000
Manifest this update: Thu 26 Mar 2026 00:10:39 +0000
Manifest next update: Fri 27 Mar 2026 00:10:39 +0000
Files and hashes: 1: 1-Xvc5gCVbJkMb7aBtCcpC8l4-MM.roa (hash: FwCaQTUY8Tz8J970VXrceXVsj6Exzn+0KzNwBcjvgvg=)
2: 5xL91cicHjEr0Gua0-R4t1teYC0.roa (hash: skf5Tl39Q8VUYq9a2IZC66UhAhkPNinq994IXxIAa7A=)
3: FwbsSA-LLYDwJveOiIwWRQL8O4A.roa (hash: LZ4xTrrdN0a7so3riKKQBkOHl1SW+eGzBvkpE5DQJok=)
4: MkX0Qs5QdljMhK1aflh5MTKXzO4.roa (hash: KSTQpt87uhzYNiHFxrY5cqxrzanTSAkQM+v7akSgplw=)
5: SPPQs6sj1ChGjioRgdt4m0EK_DI.roa (hash: dA7acJP1FFj2uYgRIKSdY63Jcht0mQAVqYE4S/QoGHQ=)
6: Z9v03Glll_6U7rPnPHeeMtOaRwo.roa (hash: MIONyPy9xxM9PP/Mww4JUQcmmXncwxAen4eKUZkPg6g=)
7: iVOoUf02lKRXL3oJbi3T9vnGKdg.roa (hash: bjpJoRMAUvfcj1BV5tTIYSFfF/2t/Mkxs7m+u3Yuu/o=)
8: rKZqWTivVnqeKbT3bxFWB8K4qiA.crl (hash: Sd1Qw6468DmJzmAStE+XbKJkwalCS//Gy8XhYWyby6U=)
9: wgk7tbWmPW1ceRhgjBnAVe2XcSo.roa (hash: ArVzv6tRuWJhm3qMA99cKCCM7Y2OnnqGto+xwi0HB+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:7a:99:9d:9d:c6:20:2d:97:b5:ba:82:79:02:3a:e9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: Mar 26 00:10:39 2026 GMT
Not After : Mar 27 00:10:39 2026 GMT
Subject: CN=067c33539ebe862aa6733ff23940b5df84d087b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:7a:19:8d:ff:dd:3a:9d:69:a5:80:1a:3a:68:
55:b3:a6:ad:5a:a9:65:a5:5c:41:a2:d6:86:f3:5a:
06:1a:ff:9f:8d:cb:f4:f5:4f:23:bf:00:a3:28:0a:
6a:95:76:5b:26:38:4a:08:86:15:67:9b:72:e7:dc:
c4:1e:a8:84:f5:20:f1:6d:8f:83:c0:8c:19:dd:0e:
08:82:f7:21:7c:2e:95:10:87:6c:a6:a4:68:fc:c8:
60:a2:87:2e:04:25:9d:85:89:90:44:74:d1:5e:7e:
7f:54:32:54:4c:8f:f4:c4:aa:6a:09:bc:a8:7e:91:
70:a2:5f:a2:82:aa:0d:9f:5d:5b:dd:7d:44:56:24:
1e:e3:9d:f4:38:57:3a:3e:b5:6c:1b:1b:db:c1:a2:
50:d9:5f:3d:8b:e7:28:b2:70:35:70:da:59:64:d4:
81:7a:e4:42:b9:69:e8:c7:2b:f5:9c:dd:de:e5:55:
6c:9b:6f:52:d9:e4:bf:ab:7e:eb:84:46:37:68:19:
ee:59:ca:d6:00:2b:75:52:2c:d5:c3:12:23:b2:b4:
4e:6f:e0:4d:5a:c2:20:40:ab:22:ed:0c:a8:4f:80:
02:1a:49:6c:04:e8:73:d9:0d:db:6e:f0:07:d3:a0:
25:41:a8:78:6f:4e:52:f6:a8:72:3e:32:61:29:15:
2b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
06:7C:33:53:9E:BE:86:2A:A6:73:3F:F2:39:40:B5:DF:84:D0:87:B3
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:01:e2:50:67:69:30:2d:b2:88:da:9e:04:3b:4c:39:92:92:
d3:28:46:3a:91:6e:17:fa:aa:f4:45:3c:ed:8d:70:e2:d2:e9:
da:a7:fe:d7:51:34:f6:2d:bb:c4:d3:f1:7b:5e:73:ba:b9:ec:
b8:ab:25:87:d4:cf:78:84:a5:8e:43:c8:b9:4b:ee:fe:0d:36:
2f:07:f3:bf:4c:fe:25:0b:72:e7:c5:9b:24:d8:57:4a:9d:1f:
b2:d9:c2:42:3b:96:e4:65:e4:5b:84:09:61:bc:3d:98:0b:ac:
6c:a0:be:3b:58:0c:4b:a8:ee:3c:a8:ed:5f:23:ba:42:6b:86:
ea:fd:24:f3:79:5a:8e:46:8f:ce:d8:9e:81:48:18:3c:c5:b7:
27:37:2e:3e:59:23:42:35:20:98:73:20:2e:4e:50:49:6d:a6:
90:af:72:2e:bf:9b:15:71:f4:a5:46:96:76:e7:71:16:21:17:
00:c5:25:9b:d6:15:a1:d9:0f:f3:0e:96:de:c5:a6:d7:b0:f4:
5b:a3:5b:70:d2:06:55:53:bc:93:19:9f:cd:d3:0a:c9:41:62:
b3:af:4f:2f:09:43:67:65:1a:d3:ef:58:ee:71:cf:d0:d3:a2:
f1:3d:b0:b8:e7:db:ad:16:58:81:16:a4:1d:5d:00:53:ac:81:
ba:53:64:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 10:21:23 2026 by rpki-client