Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
File: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft (raw, json)
Hash identifier: unYhQmFAiL47Ws+oj6ThHKKJQIvYtrfm/KZ/GI/W/oY=
Subject key identifier: 9C:FC:2C:6F:E2:41:71:CF:86:FF:84:E7:A4:2B:DF:26:E2:02:5C:1E
Authority key identifier: 90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
Certificate issuer: /CN=90c3cae86555687324319d1226938c703ee4edc1
Certificate serial: 019D26CD64479FD30113E74DB5D5E1BA653D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
Manifest number: 08DE
Signing time: Wed 25 Mar 2026 21:01:27 +0000
Manifest this update: Wed 25 Mar 2026 21:01:27 +0000
Manifest next update: Thu 26 Mar 2026 21:01:27 +0000
Files and hashes: 1: Sa_vDBEAm82qmKkKwf2aI8quPD8.roa (hash: qBNhicMBIUuHH+gEIMRgRVoASaPTsbzdmeqUpjYn+jQ=)
2: kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl (hash: wJRG8H1XE4WQynyIM2j75soLMF0t7opHh6vUecj30Ks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 21:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:cd:64:47:9f:d3:01:13:e7:4d:b5:d5:e1:ba:65:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90c3cae86555687324319d1226938c703ee4edc1
Validity
Not Before: Mar 25 21:01:27 2026 GMT
Not After : Mar 26 21:01:27 2026 GMT
Subject: CN=9cfc2c6fe24171cf86ff84e7a42bdf26e2025c1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:c9:84:84:32:ac:4a:83:4d:1c:9a:ef:a9:f3:
bd:7a:14:f2:e5:0b:29:94:8a:fa:75:69:b2:66:f5:
49:49:ab:38:9d:9d:ed:0c:7d:52:df:64:46:c8:ea:
ef:3f:57:48:2c:b2:17:69:8b:82:a2:4d:a6:48:1a:
a7:a8:ad:28:77:7f:30:94:c1:b7:3e:f3:b3:4c:b0:
a0:63:73:f1:21:10:09:03:03:4d:9a:4e:80:12:45:
a3:c2:c4:1c:2a:3b:88:d4:7f:92:80:ac:77:59:6f:
ba:14:c9:e7:1a:1a:ef:f5:d5:09:04:2d:f0:34:e2:
39:2d:4e:45:d9:9e:72:a6:b2:95:d0:80:bd:91:83:
e9:9d:a8:bf:d6:df:18:ac:e4:d5:f4:a7:dc:03:58:
97:43:a7:77:cd:0e:1a:68:b3:2b:b1:e5:63:95:cb:
d5:29:25:f1:3c:19:1d:66:6e:b6:ad:be:e6:29:c7:
a1:d1:3c:28:53:93:9c:90:c8:98:b7:26:8b:78:25:
b6:df:3e:bd:bd:27:c8:4a:95:9d:c1:2e:29:0b:16:
e8:cf:db:df:7e:e2:b0:17:7e:d9:87:42:85:05:35:
2d:1f:e6:19:eb:ae:29:e8:9b:07:7e:1b:1f:76:80:
4e:0f:48:da:77:2c:b8:02:09:6b:cb:d9:2e:80:ed:
d4:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9C:FC:2C:6F:E2:41:71:CF:86:FF:84:E7:A4:2B:DF:26:E2:02:5C:1E
X509v3 Authority Key Identifier:
keyid:90:C3:CA:E8:65:55:68:73:24:31:9D:12:26:93:8C:70:3E:E4:ED:C1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3d/64db24-bc36-4ca1-ab02-b139b2a3fe49/1/kMPK6GVVaHMkMZ0SJpOMcD7k7cE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
26:32:8e:a6:2e:46:44:c2:32:cc:8e:cc:91:02:bf:ad:32:5d:
67:26:6d:0e:e6:84:3c:c1:0c:02:38:fc:63:01:69:57:2e:14:
2e:72:54:c2:6d:41:33:29:ec:11:c5:f1:91:9d:9e:a5:72:11:
86:c1:05:67:03:0e:7e:c4:86:45:6c:94:c6:50:35:ee:e4:b2:
ad:6b:85:2e:f9:75:fa:70:c8:26:20:af:da:a4:6b:23:4f:73:
7d:6d:25:e9:61:2c:40:d4:11:71:8b:31:65:fb:99:66:ca:c9:
79:48:92:af:a4:1d:1a:76:8e:5a:09:bf:69:62:4c:4e:9b:cf:
1d:2f:93:88:18:54:73:51:45:a6:24:c8:28:69:a6:67:4c:48:
d1:d6:7b:e5:29:62:e9:fe:59:68:a3:09:95:ac:54:dc:a6:14:
b1:e7:49:4a:92:8e:48:b0:ab:b0:7b:16:91:60:56:02:f6:5c:
ad:69:2b:81:37:88:b4:f4:32:b4:1d:cc:80:fd:96:d8:5f:c3:
28:52:5f:9f:c3:45:69:07:e2:69:09:00:33:0a:4e:e5:91:98:
bb:fc:97:20:14:12:2a:7b:49:02:e2:14:87:0b:f6:0c:bd:2a:
af:53:c3:bc:23:39:ab:53:c5:f0:a1:b6:59:ba:af:42:dd:c9:
76:9b:18:fc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:27:47 2026 by rpki-client