Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
File: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft (raw, json)
Hash identifier: SkWdYbWyRpqDRakaXOuDxGNTYFxrPo5VQAYNZSKh1p0=
Subject key identifier: 5C:A9:81:39:67:01:53:C8:3B:25:54:01:3B:D2:F8:ED:27:9F:6A:46
Authority key identifier: 91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
Certificate issuer: /CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Certificate serial: 019D27A91D6557C354812B949B3CC786FFE6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
Manifest number: 08A3
Signing time: Thu 26 Mar 2026 01:01:27 +0000
Manifest this update: Thu 26 Mar 2026 01:01:27 +0000
Manifest next update: Fri 27 Mar 2026 01:01:27 +0000
Files and hashes: 1: _E48T5Kk_YeYZLQhVAgd8hC7YsU.roa (hash: k0dJ8PeVcNyuxj67fWBRQ1gHRoWtlCyhQvB826alDbQ=)
2: kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl (hash: Vg6oFVStGIMZRqE0rlGAjduVyF52rWlimvgSI6NJH3Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:a9:1d:65:57:c3:54:81:2b:94:9b:3c:c7:86:ff:e6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=917c33c75961318d8ee3cb13464a90d00ab8bd2d
Validity
Not Before: Mar 26 01:01:27 2026 GMT
Not After : Mar 27 01:01:27 2026 GMT
Subject: CN=5ca98139670153c83b2554013bd2f8ed279f6a46
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:22:c1:0f:99:12:39:70:7d:80:fa:fc:b4:aa:
a5:29:4d:51:bf:ad:d0:ab:d2:1a:96:c3:46:2a:8c:
ba:a4:89:c6:bb:7f:14:1a:c6:00:e7:62:e8:6f:72:
4d:5a:ec:fa:4f:39:bd:0d:3f:cc:13:d7:4d:98:07:
e5:94:25:1b:16:a5:a6:aa:70:73:15:a4:57:a4:7a:
e6:60:45:bf:8b:d6:65:28:19:2c:35:90:07:c5:9c:
7b:ae:bd:96:64:a7:67:2b:f1:c2:e1:64:47:23:fc:
18:06:fd:1d:94:ed:9f:18:fc:46:37:3c:61:e6:39:
c6:d0:78:fb:77:ce:5c:6e:d1:b8:51:c7:90:2b:e3:
e1:18:a0:4b:cf:fb:f3:00:cb:ff:7e:37:26:28:11:
7a:18:64:a1:b1:0f:c2:5f:53:e6:4d:95:c9:ef:f6:
22:36:79:f4:8b:77:15:66:78:bd:58:a3:60:24:75:
1a:b8:0a:4e:d7:fa:9f:6c:38:ce:38:8b:94:f3:b1:
59:b9:1d:84:dd:b2:24:e0:a5:3b:fa:fb:9c:41:5b:
dc:2f:f0:90:95:19:49:96:bb:d2:c3:08:11:67:95:
0c:5f:80:b8:7d:d4:5d:49:da:8e:60:56:e7:1c:40:
e5:49:6c:14:91:a8:53:35:1d:e6:22:68:32:60:7d:
46:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:A9:81:39:67:01:53:C8:3B:25:54:01:3B:D2:F8:ED:27:9F:6A:46
X509v3 Authority Key Identifier:
keyid:91:7C:33:C7:59:61:31:8D:8E:E3:CB:13:46:4A:90:D0:0A:B8:BD:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/82/ac273a-9c8b-4ef7-a400-c3761a75d047/1/kXwzx1lhMY2O48sTRkqQ0Aq4vS0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:fd:ee:ab:81:ef:dd:51:e6:87:64:70:79:b3:49:d1:51:28:
dd:49:67:c6:57:49:32:67:ec:d9:ba:43:8a:5f:4e:02:06:54:
02:23:10:77:a5:de:ca:ca:6e:7c:7d:58:1d:97:92:e2:bd:79:
5b:20:1b:67:2e:60:99:c5:4d:f0:d6:9e:c5:e0:d4:a8:81:de:
5e:04:8e:06:fa:1d:fa:b3:8f:aa:90:1f:66:bf:dd:74:fd:24:
45:8e:87:67:91:f9:5f:cb:75:a8:e1:81:d2:03:57:c4:4b:46:
ea:2e:3e:9f:27:b5:86:96:a6:ac:47:07:05:75:f0:42:bb:d5:
ce:3b:32:4c:3b:58:d0:91:a6:b1:25:b4:55:a9:df:31:94:4b:
e1:ff:cf:dd:c6:69:0e:62:57:cf:1e:8f:b9:0c:96:88:82:9d:
fe:1d:de:63:ed:d8:fa:77:fd:b9:c3:a8:0e:63:03:9c:9b:b7:
51:58:34:ee:62:77:3e:8e:3a:90:dd:e4:fc:3b:f2:62:00:f8:
73:b3:3e:9f:f9:b3:21:35:dd:51:0a:71:f4:07:fb:3f:64:b5:
29:0b:9a:71:21:c0:eb:6a:45:d9:8d:35:8f:e2:eb:3b:a2:95:
44:22:dc:b3:a0:2d:c1:29:c5:1e:96:da:3a:a0:77:8a:c9:03:
d1:3a:f1:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:58:29 2026 by rpki-client