Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json)
Hash identifier: 2NOjrEk7GhAQW+mnq+aMx71XpAFdujo3KTimSEHaJ9Q=
Subject key identifier: 9D:9A:10:3A:A9:20:93:5C:DC:8E:7F:A8:98:E9:E5:4D:3B:07:B3:99
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 019E1DFE791B69290671FB89DEC5EFE38331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
Manifest number: 0D7B
Signing time: Tue 12 May 2026 21:01:16 +0000
Manifest this update: Tue 12 May 2026 21:01:16 +0000
Manifest next update: Wed 13 May 2026 21:01:16 +0000
Files and hashes: 1: SwQK8a0RuGojFMRd-1GGkonnT-U.roa (hash: 7GJC22Eus5d8mAhvDyq0PoK19aG3z12w1E45uuUpyP4=)
2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: ikJwNrUBwauBOoo/Yc94zZO90vob34s9bIOKQnsufB0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 21:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:fe:79:1b:69:29:06:71:fb:89:de:c5:ef:e3:83:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: May 12 21:01:16 2026 GMT
Not After : May 13 21:01:16 2026 GMT
Subject: CN=9d9a103aa920935cdc8e7fa898e9e54d3b07b399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:9e:c5:0b:cc:c7:e6:f1:dd:fd:e8:94:17:4c:
d5:88:fd:b1:e3:f5:19:ae:97:02:1c:2b:3a:69:17:
79:0f:8d:90:83:99:47:d9:4e:26:9c:96:2f:85:f3:
46:43:2a:e5:2b:5a:d0:9f:1f:e7:97:b4:8e:5e:f9:
0a:02:85:08:9b:01:60:55:73:af:d0:2c:2c:12:18:
7c:28:58:f3:28:d9:8d:09:7f:46:0e:dc:58:7b:00:
4d:2e:dc:a4:99:88:d0:7e:9c:f1:9a:16:8f:ac:f5:
19:bd:c3:d3:64:71:21:ee:47:08:63:74:ad:73:aa:
dc:13:b2:d4:2c:70:5d:97:f2:fe:90:06:22:11:3f:
4c:60:95:8f:52:8d:f5:9f:4c:eb:4f:9c:1d:25:e5:
7b:48:71:9b:4d:98:5c:14:d6:72:32:1f:82:b9:e0:
bd:5b:37:3d:38:05:61:48:5b:43:c7:04:39:cc:ba:
96:62:b9:09:7e:bb:da:e7:45:42:cb:f8:ed:8c:86:
ee:aa:29:61:a5:87:2a:c9:f4:5e:83:1e:f7:df:ee:
84:51:85:ed:c1:5b:b7:30:ff:16:ca:ac:15:b6:64:
2f:7a:8c:5e:9e:4a:e0:90:04:1a:b8:b3:c2:c9:ad:
eb:07:50:8b:0e:ed:33:5c:f5:39:52:3a:ee:55:5d:
41:09
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:9A:10:3A:A9:20:93:5C:DC:8E:7F:A8:98:E9:E5:4D:3B:07:B3:99
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:9b:c0:c1:d2:ad:2e:70:26:c8:06:6d:0b:6d:38:59:eb:52:
a3:2c:89:7f:18:d2:c8:1f:36:aa:56:d2:74:a5:ef:8c:29:a1:
dd:1a:8e:f5:fd:96:f6:d1:6f:ef:ab:23:91:c7:9a:dd:5a:f1:
70:c3:98:45:e9:a4:34:a3:aa:f6:ff:1d:d2:de:ee:da:1f:b8:
41:81:b0:68:10:d9:a1:ed:a9:77:29:a5:42:be:ad:2b:85:7d:
32:9b:28:0d:cb:ab:63:30:78:c1:cd:cc:f7:ee:f4:9a:37:9d:
04:48:4b:c6:f4:47:71:11:c0:e0:59:47:9a:40:a1:11:28:c7:
23:27:0a:84:47:9e:7f:65:d0:37:10:00:ef:bc:09:42:33:b5:
0f:44:10:c5:2e:f0:db:3a:a0:28:93:fe:29:3c:f1:69:ea:d9:
93:a9:3d:0a:a1:de:6e:0b:b9:7a:f0:b4:08:1f:a2:4a:10:2c:
b6:ea:46:c2:a0:4a:c3:56:85:90:21:af:1a:fa:2e:f0:b5:5c:
4d:5c:10:5b:f0:31:e1:a8:e5:13:76:8c:72:ba:2c:8d:9f:a4:
ce:a2:ed:97:51:1c:89:fb:0e:11:28:6b:37:53:92:4d:d0:16:
da:e8:0a:93:c8:61:32:48:58:1f:6b:a2:05:64:ee:13:ee:31:
b6:29:89:f2
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4d/nkbaSkGcfuJ3sXv44MxMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZGZmMzFkMWIwNDQ0ZDQyMDRkZTE1ODRkMDBkZGY5Njhk
MGIwMTIwHhcNMjYwNTEyMjEwMTE2WhcNMjYwNTEzMjEwMTE2WjAzMTEwLwYDVQQD
Eyg5ZDlhMTAzYWE5MjA5MzVjZGM4ZTdmYTg5OGU5ZTU0ZDNiMDdiMzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2p7FC8zH5vHd/eiUF0zViP2x4/UZ
rpcCHCs6aRd5D42Qg5lH2U4mnJYvhfNGQyrlK1rQnx/nl7SOXvkKAoUImwFgVXOv
0CwsEhh8KFjzKNmNCX9GDtxYewBNLtykmYjQfpzxmhaPrPUZvcPTZHEh7kcIY3St
c6rcE7LULHBdl/L+kAYiET9MYJWPUo31n0zrT5wdJeV7SHGbTZhcFNZyMh+CueC9
Wzc9OAVhSFtDxwQ5zLqWYrkJfrva50VCy/jtjIbuqilhpYcqyfRegx733+6EUYXt
wVu3MP8WyqwVtmQveoxenkrgkAQauLPCya3rB1CLDu0zXPU5UjruVV1BCQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJ2aEDqpIJNc3I5/qJjp5U07B7OZMB8GA1UdIwQY
MBaAFJDf8x0bBETUIE3hWE0A3flo0LASMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUt
OWYyMTRkMWJhOTM0LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC83MC85OWEzY2EtN2U1Yy00OGQ0LWI5NzUtOWYyMTRkMWJhOTM0
LzEva05fekhSc0VSTlFnVGVGWVRRRGQtV2pRc0JJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQJvAwdKt
LnAmyAZtC204WetSoyyJfxjSyB82qlbSdKXvjCmh3RqO9f2W9tFv76sjkcea3Vrx
cMOYRemkNKOq9v8d0t7u2h+4QYGwaBDZoe2pdymlQr6tK4V9MpsoDcurYzB4wc3M
9+70mjedBEhLxvRHcRHA4FlHmkChESjHIycKhEeef2XQNxAA77wJQjO1D0QQxS7w
2zqgKJP+KTzxaerZk6k9CqHebgu5evC0CB+iShAstupGwqBKw1aFkCGvGvou8LVc
TVwQW/Ax4ajlE3aMcrosjZ+kzqLtl1EcifsOEShrN1OSTdAW2ugKk8hhMkhYH2ui
BWTuE+4xtimJ8g==
-----END CERTIFICATE-----
Generated at Wed May 13 09:10:56 2026 by rpki-client