Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
File: ktf2mgS9nK1SOzn3ei3atEwpEZI.mft (raw, json)
Hash identifier: 9XkPnWO3TLvW5w15bziAzHKz+5z8HN8GbYpOhGnDqzM=
Subject key identifier: 3A:B5:02:32:83:E3:B0:6E:12:24:7D:BB:4F:9D:BF:DC:95:0E:35:DE
Authority key identifier: 92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
Certificate issuer: /CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Certificate serial: 019D2997083358EA66EAB1F95F9F68C1E739
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
Manifest number: 1819
Signing time: Thu 26 Mar 2026 10:00:57 +0000
Manifest this update: Thu 26 Mar 2026 10:00:57 +0000
Manifest next update: Fri 27 Mar 2026 10:00:57 +0000
Files and hashes: 1: fmRq58mpG0rKIM2ubHEkVCGj3lg.roa (hash: gms/i5htVsFqQUspRwp2t/v4bZzOX6eOsTh27/wJ/To=)
2: ktf2mgS9nK1SOzn3ei3atEwpEZI.crl (hash: Zp4+fu3O4dS/B/4/qwHVmhrzcLK8Bu6PSaAVId9OXR0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:08:33:58:ea:66:ea:b1:f9:5f:9f:68:c1:e7:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92d7f69a04bd9cad523b39f77a2ddab44c291192
Validity
Not Before: Mar 26 10:00:57 2026 GMT
Not After : Mar 27 10:00:57 2026 GMT
Subject: CN=3ab5023283e3b06e12247dbb4f9dbfdc950e35de
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:98:5c:29:55:0d:05:61:d7:dd:e7:1f:3d:d6:ac:
cd:36:b8:8b:5b:92:fc:15:c9:c3:0d:81:55:c1:fb:
d8:66:97:d6:60:99:b3:77:ed:21:69:2d:7c:79:0a:
8b:92:31:5d:81:9e:db:bf:17:2a:e3:9e:0e:2d:9f:
3a:8f:e3:b0:b8:d5:22:96:ec:3f:1e:cf:ad:54:c1:
d8:a5:39:79:19:63:0f:19:c3:20:17:bd:4c:10:a7:
66:21:fc:39:9d:82:5d:48:65:13:6b:4f:e1:75:85:
15:ae:91:97:4c:ad:a2:bc:f0:a1:18:36:9a:23:eb:
92:04:d1:22:a2:f4:80:eb:44:33:61:1c:c9:35:2f:
e8:94:fe:3a:b4:7b:1c:ef:74:e5:d9:c0:9e:57:b1:
bf:b3:e8:e9:8a:0f:49:90:da:54:f3:4f:2c:8d:a3:
1d:cd:2b:a9:c2:ac:f1:25:cd:6b:de:97:81:fa:2d:
01:b3:a4:15:69:08:a2:4e:d6:e8:2d:76:42:3a:a4:
a6:2e:2a:c3:ef:65:a3:6c:b1:ab:19:65:e6:a1:70:
e1:97:b5:09:13:84:5c:4e:ae:24:b6:da:b4:df:82:
6b:63:a6:b7:79:74:f1:0d:9b:63:4a:ce:85:06:eb:
c1:02:00:5f:7d:c3:81:8a:48:70:b3:58:82:1c:00:
50:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:B5:02:32:83:E3:B0:6E:12:24:7D:BB:4F:9D:BF:DC:95:0E:35:DE
X509v3 Authority Key Identifier:
keyid:92:D7:F6:9A:04:BD:9C:AD:52:3B:39:F7:7A:2D:DA:B4:4C:29:11:92
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ktf2mgS9nK1SOzn3ei3atEwpEZI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/37/50d855-cd81-481a-95ef-b84487f920e4/1/ktf2mgS9nK1SOzn3ei3atEwpEZI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c6:cf:d4:89:e4:78:ba:8e:21:ed:ab:3e:fd:5e:a2:c7:8c:37:
ec:49:96:d1:11:3f:ca:c5:8d:51:01:a0:31:97:fb:05:a0:bc:
da:f9:d1:91:66:d9:35:5a:9a:b5:ea:df:bc:fc:e8:b8:9c:de:
97:a7:ed:62:b2:7f:1f:c9:e2:b9:fa:f3:f6:85:ec:59:b6:07:
0f:25:59:1a:49:52:65:62:0c:d0:7a:0e:39:5f:ba:86:d0:ae:
09:7c:64:74:49:0e:3e:7c:d6:6f:58:fe:52:c7:b0:f6:0b:49:
68:4b:7b:b0:44:76:28:34:e3:32:c5:49:f9:9f:0d:80:04:20:
e0:e1:bd:2f:43:b5:58:53:79:a4:92:5c:8f:a5:12:8b:b2:1e:
7b:08:a6:f9:9b:ff:16:43:da:ca:8c:dd:3e:4e:bf:84:e1:b4:
41:e9:bb:07:aa:c9:36:cd:85:68:c4:a8:d9:c0:28:f0:85:ec:
13:d6:4a:28:69:ab:3d:1e:de:8d:38:6d:d9:0b:6c:cc:dc:61:
1c:36:8f:0c:68:79:0e:8a:28:6a:3d:7d:d4:80:ec:35:5c:29:
c0:cb:00:8b:f0:22:02:a7:e2:b2:92:fb:21:9d:69:6a:7e:d0:
a6:9a:a1:c7:35:e5:36:53:a4:4f:8b:c1:7c:98:83:6a:07:a9:
53:a4:e0:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 13:30:04 2026 by rpki-client