Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
File: kwNiKzxU5F9BZvMBeY-G27pHGAw.mft (raw, json)
Hash identifier: +7NUN4AO0kFr5ssDm4W+Big7LrBT60JzBFArRNI4E+8=
Subject key identifier: 98:CC:B9:98:AB:F9:AF:8C:32:6C:4E:0A:D6:8F:72:B0:42:A7:0C:A4
Authority key identifier: 93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
Certificate issuer: /CN=9303622b3c54e45f4166f301798f86dbba47180c
Certificate serial: 019D265F480047D7800707E4165A65999F84
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
Manifest number: 0A20
Signing time: Wed 25 Mar 2026 19:01:11 +0000
Manifest this update: Wed 25 Mar 2026 19:01:11 +0000
Manifest next update: Thu 26 Mar 2026 19:01:11 +0000
Files and hashes: 1: kwNiKzxU5F9BZvMBeY-G27pHGAw.crl (hash: 2eAUOCCbIQI12N2RcOfWANKPNDrz69S5yyhhNNiHoy8=)
2: oEI10F1yOzZXTlBBBvzIeX5OXog.roa (hash: QNwI0l8coi9XbWot/ryVzcBU4wEtxZkGadr7asLldw8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:48:00:47:d7:80:07:07:e4:16:5a:65:99:9f:84
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9303622b3c54e45f4166f301798f86dbba47180c
Validity
Not Before: Mar 25 19:01:11 2026 GMT
Not After : Mar 26 19:01:11 2026 GMT
Subject: CN=98ccb998abf9af8c326c4e0ad68f72b042a70ca4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:e9:a0:69:c7:20:70:a7:9a:56:91:ae:19:0d:
aa:3c:1f:45:44:51:19:25:af:bf:70:89:0d:7b:e5:
55:ce:34:1f:02:e2:66:50:3c:25:ba:c6:9f:60:5b:
47:bb:ac:d3:31:7f:d1:6c:43:b3:6f:5b:c2:45:33:
79:dc:6b:18:bb:79:1e:b0:bc:a7:91:19:b3:cd:ff:
69:35:2e:fc:67:03:48:88:46:b5:48:14:d4:30:4a:
63:8b:a0:4d:66:af:e7:c9:60:dc:3e:f6:7e:a3:fb:
b3:19:ef:c9:13:c6:da:93:67:79:3d:ed:3b:f7:c3:
19:92:42:48:ca:3e:77:44:47:19:a1:0c:4e:8f:2c:
64:c4:6a:15:fe:28:78:11:81:63:16:bf:ee:9c:c4:
cb:fd:39:46:94:9a:0b:03:af:0c:df:bb:31:a8:99:
a9:27:d6:76:1b:a0:df:2d:1e:2f:66:79:97:1e:9d:
37:2d:18:08:35:d4:69:53:28:01:bb:b4:58:1e:1b:
4d:a5:ed:48:b3:24:c9:33:1a:50:95:86:8b:09:8a:
0b:02:71:f2:7b:b5:3e:ea:ae:15:bb:ce:ed:e5:fb:
d5:c3:cf:9b:54:6f:c2:40:78:b5:d4:08:42:59:69:
31:21:e9:a4:bf:f5:22:a5:4b:a0:3b:69:dd:1f:79:
86:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:CC:B9:98:AB:F9:AF:8C:32:6C:4E:0A:D6:8F:72:B0:42:A7:0C:A4
X509v3 Authority Key Identifier:
keyid:93:03:62:2B:3C:54:E4:5F:41:66:F3:01:79:8F:86:DB:BA:47:18:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kwNiKzxU5F9BZvMBeY-G27pHGAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/077a50-45b6-4a38-9db9-950c7e73245c/1/kwNiKzxU5F9BZvMBeY-G27pHGAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
66:4e:d7:0f:4d:35:cf:97:39:13:81:ed:46:69:ef:ae:cc:64:
a5:17:63:cd:08:a9:d7:cd:85:44:70:8b:67:d3:70:6f:15:1b:
63:0b:8b:4d:d7:51:6b:d8:8f:7d:aa:d1:71:f2:a0:cd:c9:24:
80:04:f1:d9:f2:32:7a:ed:a1:28:25:08:39:9c:8d:49:29:ff:
cd:b1:e5:ec:c3:81:56:b3:20:fe:bf:26:b2:40:b6:1f:a3:f3:
c9:36:16:d5:fe:70:55:e2:24:b3:8c:4c:37:32:73:e9:d7:4b:
c5:6e:e3:7f:6c:d9:db:3e:bb:2a:f5:87:c4:38:49:9e:33:50:
b6:cd:e7:8c:98:d3:d7:4c:ac:de:3a:51:8e:5b:c7:f0:87:c5:
07:f4:1a:6b:cd:27:6c:2c:d7:e5:46:00:13:3a:9f:b0:0b:2c:
83:48:6b:75:4c:be:9e:3a:97:9b:38:58:de:7d:7d:3f:a0:78:
7e:10:48:27:d6:f5:21:2b:67:03:0b:76:08:91:6c:28:ea:ed:
3f:85:ec:f4:d4:00:96:02:fc:fa:c5:84:15:82:f3:cb:6e:45:
6c:73:dc:93:10:52:ec:a6:5b:d8:c2:b2:aa:78:41:27:2b:0c:
1a:ba:5d:48:ce:78:1e:57:ba:a2:43:9b:30:0a:2e:99:38:84:
41:d9:7f:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 02:22:14 2026 by rpki-client