Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
File: kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft (raw, json)
Hash identifier: axKkKEQQclkF6CGQC/XlHhDeaaRhvOi/zAs5DpKIn/A=
Subject key identifier: 84:85:3C:41:19:E1:E5:9B:4B:CB:1F:16:FB:AF:7F:54:EE:30:D5:F6
Authority key identifier: 90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
Certificate issuer: /CN=90ccd913a99bafd893e07ba968a67434e3df5420
Certificate serial: 019D273AEE6D9F0CB775D3817CE2AADB9DB3
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
Manifest number: 17DF
Signing time: Wed 25 Mar 2026 23:01:06 +0000
Manifest this update: Wed 25 Mar 2026 23:01:06 +0000
Manifest next update: Thu 26 Mar 2026 23:01:06 +0000
Files and hashes: 1: BnpXeG4g8YEnA7qMNOyzrkmbxe4.roa (hash: XfIOGzU1Xr7xtlffkFSqkAOYlDdi/uy4BUfSJ4jYq/U=)
2: kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl (hash: /vdEMDlLMOLDbbYpR+/ZYcMWZTHUJosqzmrJY2CzlIc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3a:ee:6d:9f:0c:b7:75:d3:81:7c:e2:aa:db:9d:b3
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90ccd913a99bafd893e07ba968a67434e3df5420
Validity
Not Before: Mar 25 23:01:06 2026 GMT
Not After : Mar 26 23:01:06 2026 GMT
Subject: CN=84853c4119e1e59b4bcb1f16fbaf7f54ee30d5f6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:f7:b4:a3:07:5e:4a:f1:0e:a9:f1:e6:c3:e0:
57:8f:63:60:57:a1:ff:0f:c8:a9:96:97:55:45:aa:
d8:66:3a:ad:cc:99:68:93:34:a7:c4:7b:7a:10:c4:
39:d3:e9:c5:c6:4d:1a:df:92:4d:6c:78:3b:fd:b2:
e3:c3:04:6a:14:b6:79:cd:df:d4:ed:f7:02:66:66:
79:b4:6b:2c:63:94:50:96:30:d3:6f:ff:71:0e:80:
d1:c8:e9:44:5e:5f:f9:96:06:94:c6:59:10:8a:b0:
6c:90:27:0b:d7:e8:db:14:e7:7e:f3:bc:fa:e2:5c:
16:0a:64:40:84:ca:6b:bd:e0:c2:e1:da:ac:10:d1:
ce:22:31:2f:6a:9b:31:19:81:59:0b:38:ac:4f:1e:
86:f6:53:43:18:1b:86:20:81:38:b8:e1:4e:68:a6:
1e:48:ba:bc:14:e1:31:19:65:cd:50:de:6f:c3:a2:
99:8e:50:76:4a:79:a9:e6:97:ea:bb:09:4c:4c:6c:
a4:5f:9d:9a:99:44:2c:29:25:72:3f:52:6b:f8:53:
9e:e9:9b:1c:82:57:21:2e:b6:61:ed:dc:b4:f0:42:
47:59:7e:61:18:2f:9b:ec:9e:9b:6a:f2:77:48:74:
ae:99:66:b0:78:bc:28:8a:49:16:2d:1b:1d:57:1d:
57:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
84:85:3C:41:19:E1:E5:9B:4B:CB:1F:16:FB:AF:7F:54:EE:30:D5:F6
X509v3 Authority Key Identifier:
keyid:90:CC:D9:13:A9:9B:AF:D8:93:E0:7B:A9:68:A6:74:34:E3:DF:54:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMzZE6mbr9iT4HupaKZ0NOPfVCA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/35/d3cb14-30ad-4213-815b-f6a513de2fea/1/kMzZE6mbr9iT4HupaKZ0NOPfVCA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:bb:cb:20:15:cc:a5:92:b8:7c:50:98:38:2d:e5:94:87:fa:
cd:64:77:ef:e3:0e:3b:54:4b:2f:4a:47:1e:ea:43:fe:31:09:
cc:f7:37:5c:f0:47:1d:82:26:f0:0e:26:5c:18:af:56:b7:d0:
d6:ba:ff:5f:21:ca:3a:11:35:f8:5a:3c:b6:b1:54:e9:28:ad:
bb:57:db:5e:e4:59:12:61:dd:0f:31:bf:1c:60:17:90:8c:ee:
a3:41:54:56:ad:6d:24:3a:e5:8a:5b:63:29:33:c7:6b:53:d4:
17:e6:b7:12:bf:cd:f5:0e:a3:0c:b2:6e:88:13:5d:31:03:85:
67:4c:b9:52:c8:73:58:7c:fe:ff:65:15:55:fc:65:3d:90:4e:
8f:78:06:b1:8a:b0:ec:8b:77:5a:9d:a3:9e:81:a1:b4:26:e2:
9c:9f:2c:70:c0:ea:10:cd:51:81:f8:a3:a6:85:3a:e7:44:7c:
19:e5:d3:cf:e8:6a:0a:6f:fa:7d:69:cc:87:37:9c:95:51:b6:
53:8f:3e:82:37:bf:8d:3a:88:4f:b4:20:8f:00:8d:16:a7:a0:
57:52:81:9a:54:dd:69:c4:24:1b:b0:11:b5:94:02:dc:77:08:
fe:79:5c:4e:be:d1:32:07:16:2e:db:a0:00:ac:d1:e6:4e:01:
68:07:13:0b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOu5tnwy3ddOBfOKq252zMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwY2NkOTEzYTk5YmFmZDg5M2UwN2JhOTY4YTY3NDM0ZTNk
ZjU0MjAwHhcNMjYwMzI1MjMwMTA2WhcNMjYwMzI2MjMwMTA2WjAzMTEwLwYDVQQD
Eyg4NDg1M2M0MTE5ZTFlNTliNGJjYjFmMTZmYmFmN2Y1NGVlMzBkNWY2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwfe0owdeSvEOqfHmw+BXj2NgV6H/
D8iplpdVRarYZjqtzJlokzSnxHt6EMQ50+nFxk0a35JNbHg7/bLjwwRqFLZ5zd/U
7fcCZmZ5tGssY5RQljDTb/9xDoDRyOlEXl/5lgaUxlkQirBskCcL1+jbFOd+87z6
4lwWCmRAhMprveDC4dqsENHOIjEvapsxGYFZCzisTx6G9lNDGBuGIIE4uOFOaKYe
SLq8FOExGWXNUN5vw6KZjlB2Snmp5pfquwlMTGykX52amUQsKSVyP1Jr+FOe6Zsc
glchLrZh7dy08EJHWX5hGC+b7J6bavJ3SHSumWaweLwoikkWLRsdVx1XVQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFISFPEEZ4eWbS8sfFvuvf1TuMNX2MB8GA1UdIwQY
MBaAFJDM2ROpm6/Yk+B7qWimdDTj31QgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWIt
ZjZhNTEzZGUyZmVhLzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8zNS9kM2NiMTQtMzBhZC00MjEzLTgxNWItZjZhNTEzZGUyZmVh
LzEva016WkU2bWJyOWlUNEh1cGFLWjBOT1BmVkNBLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmrvLIBXM
pZK4fFCYOC3llIf6zWR37+MOO1RLL0pHHupD/jEJzPc3XPBHHYIm8A4mXBivVrfQ
1rr/XyHKOhE1+Fo8trFU6Situ1fbXuRZEmHdDzG/HGAXkIzuo0FUVq1tJDrliltj
KTPHa1PUF+a3Er/N9Q6jDLJuiBNdMQOFZ0y5UshzWHz+/2UVVfxlPZBOj3gGsYqw
7It3Wp2jnoGhtCbinJ8scMDqEM1RgfijpoU650R8GeXTz+hqCm/6fWnMhzeclVG2
U48+gje/jTqIT7QgjwCNFqegV1KBmlTdacQkG7ARtZQC3HcI/nlcTr7RMgcWLtug
AKzR5k4BaAcTCw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:19 2026 by rpki-client