Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
File: kN_zHRsERNQgTeFYTQDd-WjQsBI.mft (raw, json)
Hash identifier: kI8LjnE791NovLXVigTmn7luYYwW3vsFrSftLog0QHI=
Subject key identifier: 38:66:5E:D1:B6:51:26:D1:5D:7B:81:45:16:8E:54:9D:9C:F4:82:32
Authority key identifier: 90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
Certificate issuer: /CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Certificate serial: 019D2C97FEF48B34263F700517FFFA4FEA28
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
Manifest number: 0CFE
Signing time: Fri 27 Mar 2026 00:00:51 +0000
Manifest this update: Fri 27 Mar 2026 00:00:51 +0000
Manifest next update: Sat 28 Mar 2026 00:00:51 +0000
Files and hashes: 1: SwQK8a0RuGojFMRd-1GGkonnT-U.roa (hash: 7GJC22Eus5d8mAhvDyq0PoK19aG3z12w1E45uuUpyP4=)
2: kN_zHRsERNQgTeFYTQDd-WjQsBI.crl (hash: 9R6A0DzcumfKp4vrf25FjHJfy+/ZXJ1Uq94VZaNpY7k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:97:fe:f4:8b:34:26:3f:70:05:17:ff:fa:4f:ea:28
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90dff31d1b0444d4204de1584d00ddf968d0b012
Validity
Not Before: Mar 27 00:00:51 2026 GMT
Not After : Mar 28 00:00:51 2026 GMT
Subject: CN=38665ed1b65126d15d7b8145168e549d9cf48232
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:ce:19:dd:31:5e:ce:00:9e:2a:07:33:d0:cc:
24:06:c9:f1:88:72:55:6c:89:69:96:f3:4a:60:17:
95:b7:79:c1:6d:25:c6:a1:48:4f:5b:83:71:c5:13:
16:27:2d:0d:6a:c7:f8:66:f3:69:d8:f0:ec:f9:88:
67:3b:3f:61:75:d2:28:86:af:7e:86:15:f7:de:96:
ab:95:17:32:9c:89:32:62:8d:89:4d:c5:21:43:d8:
09:ef:0b:bc:61:5c:f1:1e:c3:69:4e:14:0c:60:31:
ea:b8:0a:03:65:be:7b:3e:0f:0f:0f:1a:c4:49:2a:
bc:87:04:cd:b5:6f:da:b0:aa:9d:3f:ff:e4:f4:83:
40:35:1c:48:6d:5c:70:c6:1c:44:bc:c0:be:82:0a:
ee:d9:79:97:66:de:53:13:46:7f:a0:97:f9:35:d5:
2c:9a:0d:ad:4e:9b:5c:d4:21:2c:1a:4d:42:27:e4:
e7:18:d7:a1:76:ae:13:00:c6:6f:e7:92:53:ca:2f:
47:f6:14:3e:eb:44:83:95:2e:3b:36:f5:a7:a3:87:
5c:f8:0a:5c:ee:1d:58:de:25:5b:09:ce:c8:7d:09:
65:2c:71:98:cc:22:53:e8:45:a2:98:43:9b:cf:95:
c2:9a:d7:5a:84:61:2c:6c:8b:4c:60:66:d5:17:2b:
9e:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:66:5E:D1:B6:51:26:D1:5D:7B:81:45:16:8E:54:9D:9C:F4:82:32
X509v3 Authority Key Identifier:
keyid:90:DF:F3:1D:1B:04:44:D4:20:4D:E1:58:4D:00:DD:F9:68:D0:B0:12
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kN_zHRsERNQgTeFYTQDd-WjQsBI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/70/99a3ca-7e5c-48d4-b975-9f214d1ba934/1/kN_zHRsERNQgTeFYTQDd-WjQsBI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b0:99:47:f7:6d:f6:40:d7:01:5c:08:74:26:02:e3:d9:20:45:
2f:83:d1:dd:fc:1f:02:34:da:a5:65:f2:0d:58:ed:dd:9e:f6:
30:50:3f:57:81:b4:68:7c:51:56:94:86:6e:26:dc:08:82:f4:
81:f2:aa:04:35:88:ab:01:4b:0b:67:90:17:83:e2:f2:01:6f:
4c:76:74:23:0b:02:e9:cf:f2:d4:79:8c:44:2c:0a:c4:31:08:
81:db:8c:0a:2e:55:be:45:6e:d7:e2:7a:59:bb:90:82:0c:d7:
46:7a:46:e3:65:24:62:7c:5d:95:47:9b:17:5b:c8:8d:62:c7:
56:40:6f:1f:20:ec:ac:b7:d3:45:08:00:94:46:59:46:60:79:
fb:8a:f7:21:a5:fd:f0:09:b2:fa:c6:6f:88:09:12:e6:bf:e1:
d9:4c:8d:74:51:64:e2:71:0b:2f:81:8d:0f:ba:42:43:d2:6e:
52:e6:cc:07:d5:c3:e0:1c:68:37:c1:44:8c:9f:93:35:b0:35:
9c:75:73:3c:ab:32:be:46:fd:8a:6d:42:71:a1:7b:d5:8f:33:
02:07:39:8b:a2:50:ea:2e:36:60:d6:8b:40:70:a2:a5:bf:80:
67:57:a3:89:6b:51:84:c7:af:06:13:eb:f9:bc:1a:6f:be:ce:
ff:66:62:b7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 04:59:12 2026 by rpki-client