Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
File: kVVkGgex5FW3iSuS2A1gkSORsg0.mft (raw, json)
Hash identifier: WP3EZk3lziipLUWKD26C/FqpWvenjDREQCLeweYAPpE=
Subject key identifier: BF:F3:C5:9D:B6:57:16:7F:F4:00:71:31:22:D1:D0:CB:C4:A0:E4:03
Authority key identifier: 91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
Certificate issuer: /CN=9155641a07b1e455b7892b92d80d60912391b20d
Certificate serial: 019D25F127E310F928D0D10836CE7FBC0DFF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
Manifest number: 0893
Signing time: Wed 25 Mar 2026 17:00:54 +0000
Manifest this update: Wed 25 Mar 2026 17:00:54 +0000
Manifest next update: Thu 26 Mar 2026 17:00:54 +0000
Files and hashes: 1: PymsuRY-XU_JjC-s7g8jov_R8Hc.roa (hash: eIduQ26VHE0PdG7zgjOYFtz0rV5pDOwOAUDByNGlGR4=)
2: kVVkGgex5FW3iSuS2A1gkSORsg0.crl (hash: gxkoH1KQg6NxUQS+vgpBWqBrx/wKNRscDtB0KQSei1Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:f1:27:e3:10:f9:28:d0:d1:08:36:ce:7f:bc:0d:ff
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9155641a07b1e455b7892b92d80d60912391b20d
Validity
Not Before: Mar 25 17:00:54 2026 GMT
Not After : Mar 26 17:00:54 2026 GMT
Subject: CN=bff3c59db657167ff400713122d1d0cbc4a0e403
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:6e:e0:10:f2:90:24:76:da:bb:fd:fb:75:d7:
01:cb:a2:59:9c:5c:af:f1:07:a3:48:b4:a9:e1:81:
da:14:1f:d6:e4:0c:52:39:a7:75:d4:41:75:31:01:
ef:c3:f0:23:77:7a:3f:cd:48:f0:ee:f4:75:8d:c2:
36:fb:21:21:26:8a:3f:1e:10:c0:cb:8e:9a:6c:9a:
02:3b:26:09:6d:ae:0b:4e:db:a0:7d:12:32:52:d9:
c5:86:0b:9d:cd:47:ea:22:fe:f1:3c:92:9e:46:e1:
5f:dd:4a:c5:95:e8:9f:38:71:d6:ec:87:7c:90:b2:
20:c2:5f:84:14:5f:68:82:0d:97:d1:d8:ed:88:f6:
55:12:ab:8e:01:1c:b8:b9:59:d1:c6:21:af:fc:33:
d2:36:00:6d:c3:e6:26:64:50:91:c8:55:74:91:3f:
f4:ad:9b:2a:4f:f7:5d:b1:9f:df:9e:d7:4b:d7:35:
e5:b8:85:da:b4:48:21:e1:cf:71:d2:3a:bd:7e:7f:
1b:17:f1:84:06:9e:c2:01:38:72:31:3d:75:b5:23:
64:08:1f:7e:36:03:16:49:c1:7d:b2:d4:d7:6a:6e:
22:44:b5:3a:82:68:0d:b8:b8:e3:7b:22:84:92:fc:
fe:d9:14:7f:5a:92:e1:17:56:90:8d:98:81:09:08:
70:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:F3:C5:9D:B6:57:16:7F:F4:00:71:31:22:D1:D0:CB:C4:A0:E4:03
X509v3 Authority Key Identifier:
keyid:91:55:64:1A:07:B1:E4:55:B7:89:2B:92:D8:0D:60:91:23:91:B2:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kVVkGgex5FW3iSuS2A1gkSORsg0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/aa5d8b-3ec9-4176-83e1-bcbfb217bc8f/1/kVVkGgex5FW3iSuS2A1gkSORsg0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:4f:b1:c5:52:d1:3b:60:cd:47:e4:06:ba:f1:af:4a:e6:ac:
67:58:a7:5c:da:91:d9:7d:05:07:a3:b7:4a:7d:bb:ee:39:a0:
7a:ac:81:2e:74:0f:1c:45:c6:ef:ad:82:b8:21:ec:dc:4a:04:
e9:f2:43:3e:af:53:1c:a4:d9:cd:f7:76:7a:0a:a0:77:9e:3c:
82:f8:44:18:f1:a3:cf:dc:06:3b:0d:40:2b:2b:e3:a0:63:c5:
2f:94:9e:6b:8d:79:3d:6f:75:1e:72:80:fa:48:cc:b8:92:e0:
2b:f3:34:ca:ce:0e:cf:9b:12:79:00:57:2a:63:f1:a8:9a:7c:
25:85:97:86:88:be:cf:10:85:bd:4c:7c:ac:20:6d:cd:0d:4b:
bc:1b:64:5a:9d:05:af:9a:c9:11:dd:ad:22:76:c6:ab:50:c1:
89:60:ea:67:61:c4:0e:12:0c:eb:04:ee:3a:81:d1:c0:52:79:
cb:87:78:48:a0:cd:01:04:47:a8:a6:53:a3:f2:f4:76:b1:c7:
f6:9a:df:f4:4e:0e:cb:ba:be:e3:3b:c9:87:76:a3:75:6a:cc:
a2:01:c2:13:94:5e:e6:42:ab:79:d7:f1:1f:81:14:4e:25:70:
b1:81:ec:21:be:e8:ae:0d:70:93:b0:5d:8f:44:c7:34:84:a6:
ac:e2:ba:04
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:19:59 2026 by rpki-client