Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
File: rKZqWTivVnqeKbT3bxFWB8K4qiA.mft (raw, json)
Hash identifier: zQb+DY+ZOeCcPRiaYptXYrg3udiYnHhjZi8wS7fXSso=
Subject key identifier: 80:42:91:33:8E:8A:41:ED:85:71:4F:79:25:28:28:59:EE:BC:1B:08
Authority key identifier: AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
Certificate issuer: /CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Certificate serial: 019E1F7BA49F82192BAFD9C3E2836F001A2F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
Manifest number: 1988
Signing time: Wed 13 May 2026 03:57:36 +0000
Manifest this update: Wed 13 May 2026 03:57:36 +0000
Manifest next update: Thu 14 May 2026 03:57:36 +0000
Files and hashes: 1: FwbsSA-LLYDwJveOiIwWRQL8O4A.roa (hash: LZ4xTrrdN0a7so3riKKQBkOHl1SW+eGzBvkpE5DQJok=)
2: NHs9ZRK5u4Vz_806JBenlDjXjBU.roa (hash: rjoieK7zDrudnJz7Uu7JO2e4y9SYMLDJUKtNat3BX60=)
3: SPPQs6sj1ChGjioRgdt4m0EK_DI.roa (hash: dA7acJP1FFj2uYgRIKSdY63Jcht0mQAVqYE4S/QoGHQ=)
4: WSrRlq7Ri2YWnxu3a0oSu_SbHNc.roa (hash: oH2OOUY0m2h2XMckORkIJyfMRHS1GmOvhfdWRNzcoyM=)
5: YndLVQuG6ILa2TtrEqSgZRjv-38.roa (hash: 3yixl2eqtgbcqaiXC4d6+VuAlMHZ4hZt8XexSDAH7qw=)
6: Z2r7taNlksaIA_BapGfcq-AzfPY.roa (hash: tSioYRJgqg/vsE95GOMs+XL7xqTRy7Mtz6dqflcuUTY=)
7: Z9v03Glll_6U7rPnPHeeMtOaRwo.roa (hash: MIONyPy9xxM9PP/Mww4JUQcmmXncwxAen4eKUZkPg6g=)
8: rKZqWTivVnqeKbT3bxFWB8K4qiA.crl (hash: mlC7k6NQJEzsrQOBxlMBsQlZ97xPuCODciWptxbgJrg=)
9: wgk7tbWmPW1ceRhgjBnAVe2XcSo.roa (hash: ArVzv6tRuWJhm3qMA99cKCCM7Y2OnnqGto+xwi0HB+I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 23:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:7b:a4:9f:82:19:2b:af:d9:c3:e2:83:6f:00:1a:2f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca66a5938af567a9e29b4f76f115607c2b8aa20
Validity
Not Before: May 13 03:57:36 2026 GMT
Not After : May 14 03:57:36 2026 GMT
Subject: CN=804291338e8a41ed85714f7925282859eebc1b08
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:d0:7d:81:78:24:23:d7:0b:02:fd:d6:b6:e5:
b0:ad:37:78:dc:62:fe:a0:0a:4c:95:17:71:ad:b8:
9e:d3:5f:b8:29:3d:67:a7:8b:1b:cc:b5:96:4f:22:
20:e5:b6:71:1b:8d:04:da:06:c6:91:d4:2f:ea:6a:
0e:07:65:84:51:01:b4:a7:d6:0e:63:db:fc:b7:f0:
dc:26:03:26:f2:7d:0f:82:30:a0:15:ee:5e:82:34:
62:c9:57:6d:73:e8:3c:a3:be:6b:91:9d:6f:47:3c:
cf:03:d2:e3:a1:64:ec:c7:27:fd:6b:67:33:12:7f:
42:c9:f2:91:21:89:3f:89:94:85:55:77:88:45:f5:
64:0a:d5:f5:fb:cb:ac:be:54:6a:97:2a:bb:89:79:
e1:6a:80:97:da:77:e5:54:59:af:62:a9:4d:d9:5d:
86:47:24:a9:e2:e1:7b:8a:5e:7f:58:e7:aa:87:26:
d5:23:c9:de:f5:fb:29:19:7b:12:60:53:ce:a1:ab:
a3:d5:84:93:57:78:43:89:09:21:ea:c5:5b:84:e0:
f0:1f:aa:33:1a:03:c6:b4:f6:7e:63:a3:14:6c:7e:
ea:9d:9e:37:4c:ce:54:86:2a:8d:f5:36:72:94:07:
c5:a8:cf:ee:ed:83:4f:a3:53:49:26:27:73:dc:78:
a0:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:42:91:33:8E:8A:41:ED:85:71:4F:79:25:28:28:59:EE:BC:1B:08
X509v3 Authority Key Identifier:
keyid:AC:A6:6A:59:38:AF:56:7A:9E:29:B4:F7:6F:11:56:07:C2:B8:AA:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKZqWTivVnqeKbT3bxFWB8K4qiA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/15089b-18d7-4ff0-9d28-b9b65402b928/1/rKZqWTivVnqeKbT3bxFWB8K4qiA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
31:c3:42:39:cd:a3:b3:cd:a1:db:a2:27:fe:2f:22:0a:50:ff:
48:7b:7c:9d:bc:e3:4e:63:0b:28:85:c0:e7:51:b2:a6:f1:9b:
ae:7a:4b:2e:86:e0:77:3b:38:31:31:bf:c0:75:39:6f:3c:8f:
8c:6f:d1:7f:fc:f5:64:8f:a4:50:c6:04:bc:6c:c4:ac:c5:56:
f8:aa:84:8d:b4:ae:5e:b8:c7:dd:1d:96:46:cf:85:b9:de:0c:
f3:08:10:f6:e8:90:c2:22:c8:92:4c:18:fd:aa:09:23:2c:bf:
de:22:03:2e:d2:da:4a:cc:38:a2:a1:32:5e:85:07:04:b2:6c:
7f:1e:e4:c2:8a:b9:c0:be:76:c0:55:9b:fa:bd:7e:ca:11:bd:
ab:c1:81:23:75:6c:25:c2:57:67:a0:6d:8f:e8:fa:c6:a6:5c:
7d:29:53:16:39:30:37:00:8c:0a:86:e1:56:c4:47:80:d5:34:
94:99:52:1f:4e:1e:14:94:57:4e:03:21:83:7d:8e:b9:33:b6:
f2:e6:b9:55:cc:f2:ed:2c:b4:6d:ec:0b:2a:e9:2f:f0:17:b5:
e7:aa:25:16:f3:da:a1:78:86:a3:fa:f5:2f:df:3f:7a:b8:61:
b0:45:98:3e:a4:c4:5b:69:b8:3c:af:4b:d0:82:46:e8:37:b0:
c3:be:76:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 09:25:14 2026 by rpki-client