Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
File: kBZCwNRvjU5MI0wzr771pIOcaiI.mft (raw, json)
Hash identifier: tRwTo9RIcBznjGZll+Mx6Wdz4BLL80S8Uoj50lXVZ6w=
Subject key identifier: D4:1E:32:1D:D5:34:1D:4B:B1:9B:53:69:34:39:FC:54:C3:CD:77:84
Authority key identifier: 90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
Certificate issuer: /CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Certificate serial: 019D265FA4D288CE8CB955268DF61F547B9C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
Manifest number: C1
Signing time: Wed 25 Mar 2026 19:01:35 +0000
Manifest this update: Wed 25 Mar 2026 19:01:35 +0000
Manifest next update: Thu 26 Mar 2026 19:01:35 +0000
Files and hashes: 1: A9-wOdp_rVCM0ESzhr89kQtrxAk.roa (hash: EEXrwqrXm4OhbrVH1e+ftGoZf1df8IiOvwtrHVI9K44=)
2: kBZCwNRvjU5MI0wzr771pIOcaiI.crl (hash: q7GZG/SgGFIHEiZlwyxUbARQZZpQ4u6Pu/v/JWqI9b8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 19:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:a4:d2:88:ce:8c:b9:55:26:8d:f6:1f:54:7b:9c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=901642c0d46f8d4e4c234c33afbef5a4839c6a22
Validity
Not Before: Mar 25 19:01:35 2026 GMT
Not After : Mar 26 19:01:35 2026 GMT
Subject: CN=d41e321dd5341d4bb19b53693439fc54c3cd7784
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:2d:e0:5a:ac:99:41:bc:dd:1b:c3:58:9b:93:
3f:42:f5:d7:63:78:1d:00:f0:21:93:d7:f6:f7:e3:
e0:c1:07:53:e5:48:19:75:9e:8d:05:62:d7:11:1d:
3a:2a:1d:9f:e9:bf:67:97:99:ec:bf:79:86:84:bb:
19:02:4a:f3:55:9b:a3:5d:8c:1f:39:fa:dd:cb:6f:
79:38:43:cf:61:21:f7:bc:45:c7:1b:c6:1d:dd:75:
a4:1b:92:f2:0a:9d:c1:a7:79:ce:f7:a9:dd:45:f8:
bd:28:c1:c3:be:db:7a:6d:50:04:c5:89:0e:77:24:
0b:c5:52:26:d1:7d:dd:bf:94:96:1c:c2:82:5f:79:
f1:49:03:68:1f:ac:94:05:54:c4:bd:2d:22:2d:d5:
b7:54:55:29:b8:72:0e:5e:b7:e1:eb:2d:f4:66:a2:
b1:94:5f:d3:65:a0:8c:bf:7f:c6:4f:b1:a6:ec:f6:
d6:d1:b6:57:0f:0e:a9:41:c2:b4:1c:30:c0:62:f4:
85:a8:5b:b6:38:eb:19:20:0a:62:e5:48:a8:44:d8:
c3:55:26:5f:9d:1f:17:33:70:c4:5b:7a:35:20:80:
b9:ac:c5:66:ee:c2:ad:df:14:a8:eb:21:9e:90:30:
4c:59:54:58:1f:81:80:94:fb:d7:bf:61:b4:51:da:
75:27
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:1E:32:1D:D5:34:1D:4B:B1:9B:53:69:34:39:FC:54:C3:CD:77:84
X509v3 Authority Key Identifier:
keyid:90:16:42:C0:D4:6F:8D:4E:4C:23:4C:33:AF:BE:F5:A4:83:9C:6A:22
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kBZCwNRvjU5MI0wzr771pIOcaiI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6c/f16b51-5a22-4db4-b890-43125bf096b1/1/kBZCwNRvjU5MI0wzr771pIOcaiI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
87:c1:9e:59:78:51:76:c0:7c:58:3f:ef:00:14:98:30:4c:1e:
2a:06:cd:b4:8d:bd:fa:cc:1b:38:e9:28:cb:74:c8:43:08:fb:
d9:88:b8:7c:6c:0a:90:cd:55:c5:2d:92:d9:31:fb:cc:83:d1:
a9:7f:74:d6:40:27:c4:0b:83:b5:71:dd:65:f8:4d:d9:38:e9:
58:79:31:43:a0:e0:76:93:61:09:65:e2:0e:e9:36:21:9a:3d:
c6:b3:b4:0a:66:c8:54:07:3d:84:6a:5d:f5:34:e4:55:1f:61:
ca:7a:a6:24:02:06:7e:3a:1b:e4:5c:d7:0f:63:18:40:ab:2f:
59:da:17:76:cc:d1:cd:7d:b9:e9:70:9a:a0:2c:1c:f0:e1:df:
27:37:b1:bd:96:f1:27:49:8f:eb:0e:f7:e6:78:6b:ad:a2:0d:
54:aa:dc:82:60:00:b9:bd:be:4c:55:b6:8a:85:90:d9:b5:2f:
89:42:b7:a9:d1:bb:b8:44:ae:c1:2d:4b:15:25:c9:7e:3d:df:
d5:8e:52:6f:0d:b7:a4:dc:40:8a:fb:68:52:59:04:90:91:a6:
81:19:8f:94:fb:06:ed:1a:ac:7c:44:79:25:cf:e5:f9:05:c5:
1f:36:01:ee:dd:6e:38:42:d1:7e:a5:59:55:07:dc:48:52:28:
4e:a6:13:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 03:57:39 2026 by rpki-client