Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json)
Hash identifier: mR9e/cpdQecz0Ey8B7dyHjFxN9gEBiisyy2Q4Ze/gu8=
Subject key identifier: 23:A3:28:C3:DC:D6:A2:05:5F:09:A7:C6:78:80:13:37:49:A1:F6:98
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 019D299740C614308108F0E4858B85B5D429
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
Manifest number: 08A4
Signing time: Thu 26 Mar 2026 10:01:11 +0000
Manifest this update: Thu 26 Mar 2026 10:01:11 +0000
Manifest next update: Fri 27 Mar 2026 10:01:11 +0000
Files and hashes: 1: _E48T5Kk_YeYZLQhVAgd8hC7YsU.roa (hash: k0dJ8PeVcNyuxj67fWBRQ1gHRoWtlCyhQvB826alDbQ=)
2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: rUefvWr/RyYWE9AfzLegpPzqRVj5TaeT6NJEJc7h/QY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:97:40:c6:14:30:81:08:f0:e4:85:8b:85:b5:d4:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: Mar 26 10:01:11 2026 GMT
Not After : Mar 27 10:01:11 2026 GMT
Subject: CN=23a328c3dcd6a2055f09a7c67880133749a1f698
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:e3:33:bc:ab:f3:11:f5:57:58:5f:01:a5:ba:
7c:77:39:03:4d:3e:da:59:9e:7b:cf:31:59:de:03:
4d:e5:2b:12:59:22:e9:c1:f7:34:c5:8e:3d:d5:28:
f4:d2:f1:7c:82:15:73:b1:d1:8f:39:75:dd:a3:fc:
b0:99:78:64:d3:11:46:cc:73:ea:ea:f0:73:53:00:
7c:37:c1:26:06:a9:2b:d5:58:f6:6d:6a:f2:5b:2e:
6c:b4:2a:c3:f0:57:bb:54:82:6d:e6:85:95:03:95:
30:f4:6c:46:73:e3:48:b6:f9:b7:f8:81:5a:3c:0d:
7e:8c:cd:30:59:f7:88:e0:db:57:b5:86:0a:ea:67:
17:12:b1:8b:a6:21:6e:37:76:d8:8a:5c:cb:9b:b7:
cd:d3:93:17:ca:fe:02:0b:4c:d5:f7:ac:e8:02:d6:
ed:d5:ba:0c:f2:37:10:ce:60:1c:0d:d7:7d:48:3c:
ff:e5:5b:56:36:c0:86:85:d6:bc:4d:03:0b:d4:90:
88:d6:8e:ca:98:06:fb:59:ac:60:d7:ce:f4:67:8e:
02:5e:26:69:9c:08:47:e8:68:63:93:d8:dd:7b:da:
8b:45:d5:b0:3e:78:8d:d2:89:bf:ad:ad:55:56:08:
c1:83:fb:da:7a:3b:49:d1:fc:ce:58:62:e9:61:0c:
41:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:A3:28:C3:DC:D6:A2:05:5F:09:A7:C6:78:80:13:37:49:A1:F6:98
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
98:17:ca:4b:5d:01:48:e3:1d:0e:88:fa:94:aa:c0:85:a6:e8:
9e:ed:d7:3f:6f:af:dd:0f:5a:99:61:a0:b9:17:68:a5:a1:75:
3a:21:89:55:ac:88:29:e2:13:84:07:ad:8d:5b:9a:de:c5:65:
d3:f6:17:ef:c0:8d:b2:71:8a:ca:24:5d:21:7f:b5:df:fb:2b:
9d:a4:57:df:60:09:a0:fd:6c:40:1e:69:ca:8d:86:d6:77:65:
cb:a3:4d:13:58:28:e2:93:b6:f6:27:ed:a7:5b:ab:0b:00:e6:
01:f6:7b:c5:91:c2:70:54:96:a5:eb:b9:6a:97:37:63:da:93:
cf:e1:ef:23:5f:3d:82:ad:ca:b4:d3:a8:67:2e:10:a1:42:6f:
a7:98:94:cd:40:9a:7a:12:88:f0:40:c4:ee:e2:aa:ae:31:e0:
35:18:ec:ba:d8:ab:cf:78:f2:dd:00:3a:dd:af:ac:1f:1d:a4:
7d:77:3f:77:ba:9d:d6:54:3b:cf:b3:d7:8c:80:69:3f:d5:21:
60:23:c9:ee:26:c8:f8:18:9b:a4:cf:bf:b2:c3:2a:8f:ad:c8:
96:f0:94:c2:cf:af:b4:97:e0:df:c0:9f:fc:44:de:ac:7a:4e:
a0:c2:55:7d:c6:c4:04:2c:35:1a:48:69:90:70:a0:79:01:d3:
d2:91:1f:c6
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pl0DGFDCBCPDkhYuFtdQpMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxN2MzM2M3NTk2MTMxOGQ4ZWUzY2IxMzQ2NGE5MGQwMGFi
OGJkMmQwHhcNMjYwMzI2MTAwMTExWhcNMjYwMzI3MTAwMTExWjAzMTEwLwYDVQQD
EygyM2EzMjhjM2RjZDZhMjA1NWYwOWE3YzY3ODgwMTMzNzQ5YTFmNjk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OMzvKvzEfVXWF8Bpbp8dzkDTT7a
WZ57zzFZ3gNN5SsSWSLpwfc0xY491Sj00vF8ghVzsdGPOXXdo/ywmXhk0xFGzHPq
6vBzUwB8N8EmBqkr1Vj2bWryWy5stCrD8Fe7VIJt5oWVA5Uw9GxGc+NItvm3+IFa
PA1+jM0wWfeI4NtXtYYK6mcXErGLpiFuN3bYilzLm7fN05MXyv4CC0zV96zoAtbt
1boM8jcQzmAcDdd9SDz/5VtWNsCGhda8TQML1JCI1o7KmAb7Waxg1870Z44CXiZp
nAhH6Ghjk9jde9qLRdWwPniN0om/ra1VVgjBg/vaejtJ0fzOWGLpYQxBKQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCOjKMPc1qIFXwmnxniAEzdJofaYMB8GA1UdIwQY
MBaAFJF8M8dZYTGNjuPLE0ZKkNAKuL0tMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAt
YzM3NjFhNzVkMDQ3LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84Mi9hYzI3M2EtOWM4Yi00ZWY3LWE0MDAtYzM3NjFhNzVkMDQ3
LzEva1h3engxbGhNWTJPNDhzVFJrcVEwQXE0dlMwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmBfKS10B
SOMdDoj6lKrAhabonu3XP2+v3Q9amWGguRdopaF1OiGJVayIKeIThAetjVua3sVl
0/YX78CNsnGKyiRdIX+13/srnaRX32AJoP1sQB5pyo2G1ndly6NNE1go4pO29ift
p1urCwDmAfZ7xZHCcFSWpeu5apc3Y9qTz+HvI189gq3KtNOoZy4QoUJvp5iUzUCa
ehKI8EDE7uKqrjHgNRjsutirz3jy3QA63a+sHx2kfXc/d7qd1lQ7z7PXjIBpP9Uh
YCPJ7ibI+BibpM+/ssMqj63IlvCUws+vtJfg38Cf/ETerHpOoMJVfcbEBCw1Gkhp
kHCgeQHT0pEfxg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:36:54 2026 by rpki-client