Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
File: kAhyNvFhxccF73Pf6eXjmG5xJsg.mft (raw, json)
Hash identifier: CIJ1jlFwA215em5X9zVoBUaFHckOPS49Vsk9tXej/JQ=
Subject key identifier: F9:95:76:2E:A8:4C:EB:8A:19:98:DC:F7:12:61:6C:DF:C7:A6:59:F5
Authority key identifier: 90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
Certificate issuer: /CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Certificate serial: 019D2884A4C0FFB1ADB4CCEEB7316AC4B563
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
Manifest number: 0842
Signing time: Thu 26 Mar 2026 05:01:14 +0000
Manifest this update: Thu 26 Mar 2026 05:01:14 +0000
Manifest next update: Fri 27 Mar 2026 05:01:14 +0000
Files and hashes: 1: kAhyNvFhxccF73Pf6eXjmG5xJsg.crl (hash: oL5QSYExBJyZmf6rzlGvWm5ppBItpHqEXaV7nJZgi0A=)
2: tKebX1FWuux3IXuG2sUXIXIBJsw.roa (hash: +oj9FAD3Ulh0IuD5nAYshWSIbL3rR2EIAg3bpYOtpOI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:a4:c0:ff:b1:ad:b4:cc:ee:b7:31:6a:c4:b5:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90087236f161c5c705ef73dfe9e5e3986e7126c8
Validity
Not Before: Mar 26 05:01:14 2026 GMT
Not After : Mar 27 05:01:14 2026 GMT
Subject: CN=f995762ea84ceb8a1998dcf712616cdfc7a659f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:69:53:c6:fc:02:69:ab:16:27:a7:31:eb:96:
bd:76:20:a7:8a:da:03:23:ab:55:59:81:0f:f3:e3:
7f:ae:ae:3f:c3:a2:7f:f8:07:74:de:f7:73:90:7c:
78:83:fb:73:9f:0b:d6:d3:38:50:11:15:08:2e:cc:
c5:9e:49:d7:6b:d8:97:f1:68:30:45:f9:63:65:a1:
b2:46:86:6a:d9:71:f7:41:31:bd:ee:13:7e:d8:8a:
8e:ce:43:04:34:00:3e:24:3e:3e:a0:03:b7:1e:b0:
64:ae:e4:a5:f4:14:11:1a:65:50:47:88:43:23:dc:
b3:8b:cf:6c:cf:e3:23:af:42:60:37:c0:a2:b2:29:
5d:6d:67:ce:ac:74:f8:af:aa:e4:6a:15:2e:09:3b:
b0:f6:f6:3f:46:41:26:09:6b:69:0e:39:44:2b:34:
31:19:49:c5:93:24:fa:c2:af:9c:70:de:89:2e:6a:
c3:4b:3f:02:57:7f:b2:3c:16:19:a5:18:0c:bf:72:
5e:4d:bc:bc:6e:03:2e:19:39:ff:33:12:d6:7a:ee:
0b:4f:18:46:61:49:fd:83:1b:60:72:6e:3e:43:2a:
20:81:64:6a:82:97:f9:56:56:ba:f1:4d:97:19:69:
9b:92:24:f2:a1:9b:6b:15:be:dd:e0:dd:d7:de:6e:
3a:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F9:95:76:2E:A8:4C:EB:8A:19:98:DC:F7:12:61:6C:DF:C7:A6:59:F5
X509v3 Authority Key Identifier:
keyid:90:08:72:36:F1:61:C5:C7:05:EF:73:DF:E9:E5:E3:98:6E:71:26:C8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kAhyNvFhxccF73Pf6eXjmG5xJsg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/66/df833b-c87a-41fc-ba2e-e53c5ec5d402/1/kAhyNvFhxccF73Pf6eXjmG5xJsg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
23:16:58:73:15:01:e0:99:e4:cd:37:f0:ca:66:27:f4:e2:d7:
d1:aa:ef:f2:a2:c9:51:16:8b:36:46:cc:f9:cb:bd:96:e5:ba:
64:1a:69:63:b9:39:27:51:27:80:6f:9b:a5:29:2a:bf:26:de:
e1:da:35:f1:63:fb:44:7f:72:c0:df:5e:c6:3f:f8:17:3d:9e:
3d:04:16:f5:d2:44:31:be:9c:ce:6d:7c:64:ab:66:69:82:8a:
50:02:1f:f5:0f:74:37:54:32:e9:6c:f4:bb:01:60:c1:c5:b9:
6d:b8:a6:6b:55:bc:7b:d7:5a:88:97:5b:6d:5f:23:56:68:52:
f4:59:6a:9b:ad:fe:5e:c6:3e:38:11:40:02:e0:19:4b:d4:c2:
1e:83:96:66:52:9b:7a:d5:d5:bc:d9:46:e9:70:9a:d1:a8:66:
53:86:d6:4e:bc:10:be:b0:43:21:57:75:ea:f0:d3:e0:1b:b0:
db:04:48:f6:ef:21:68:c6:ed:f1:f0:a0:27:13:e2:d8:86:70:
17:90:4d:50:e0:03:5d:23:e1:43:d7:8d:e1:e1:37:a4:10:9d:
be:3d:bb:95:85:f0:ec:e6:03:32:58:c4:32:eb:05:0e:f4:04:
80:39:26:15:7b:e1:bf:94:45:18:ac:45:64:7a:d6:3d:df:5d:
7e:db:75:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 14:22:47 2026 by rpki-client