Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
File: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft (raw, json)
Hash identifier: /FKns9UEKEjMfNc5zfhvdckpq5ZiPNUi/7IgxQWmDRQ=
Subject key identifier: 61:66:31:A7:75:3A:B4:58:B8:3E:BC:6F:B7:52:F8:FD:38:19:A0:D1
Authority key identifier: 90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
Certificate issuer: /CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Certificate serial: 019D25840D5EABB1889B75A7EFDD4D3157D4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
Manifest number: 1885
Signing time: Wed 25 Mar 2026 15:01:44 +0000
Manifest this update: Wed 25 Mar 2026 15:01:44 +0000
Manifest next update: Thu 26 Mar 2026 15:01:44 +0000
Files and hashes: 1: kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl (hash: tAjjB950QEqrmRYOYpXjJcP/k9+mAX8kolRdG4Zfhhw=)
2: qKzL_ME8UuHWQc0CLPTCLEEBp0E.roa (hash: Nj/emuAe0XidzndkLYnMG2PIERjSJH89bACx94cpGMg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:01:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:25:84:0d:5e:ab:b1:88:9b:75:a7:ef:dd:4d:31:57:d4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90b3a3a0d662d14da8404bd21dc489e63945624e
Validity
Not Before: Mar 25 15:01:44 2026 GMT
Not After : Mar 26 15:01:44 2026 GMT
Subject: CN=616631a7753ab458b83ebc6fb752f8fd3819a0d1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d0:63:f3:a6:54:01:22:5a:5d:44:b4:fc:72:
d7:4c:6a:e9:e7:93:c4:c2:51:4b:c8:14:ac:ee:47:
8f:e6:83:fe:19:ff:cf:89:03:3a:bb:18:0d:4b:e0:
de:0a:3e:bf:00:7b:57:83:93:20:0a:8f:b2:fb:ee:
27:25:8a:f0:31:65:f0:a7:42:e3:a5:f0:d8:de:11:
42:36:01:74:74:1e:95:f8:ca:8d:e8:ad:12:3b:c0:
25:6d:bb:55:d9:f8:d4:5c:fa:74:b8:16:eb:80:0b:
0a:9f:4e:c6:60:6f:bb:e0:ff:2b:e1:bf:46:be:b0:
84:1d:4e:e3:91:e7:6a:df:1e:ce:91:de:94:0c:cd:
a4:ae:ba:a2:5d:89:4d:75:67:66:f3:ce:72:be:bc:
f2:00:f7:a9:54:4a:bd:41:cd:2a:cf:4c:45:f4:fd:
b5:57:67:9a:8c:5d:54:69:71:de:c3:80:b6:f3:fb:
df:46:45:8f:6d:ee:4e:96:bb:f3:03:99:e7:bb:96:
96:f2:96:30:f9:cb:0b:bd:9b:36:83:f3:bc:2b:1a:
96:84:b5:f7:b9:17:20:05:a8:57:f6:ec:a3:65:8e:
73:c2:4f:dc:c4:b8:24:20:d5:3c:ea:62:d6:38:82:
31:dd:11:03:62:6c:79:df:98:ab:18:c3:61:05:6c:
a3:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
61:66:31:A7:75:3A:B4:58:B8:3E:BC:6F:B7:52:F8:FD:38:19:A0:D1
X509v3 Authority Key Identifier:
keyid:90:B3:A3:A0:D6:62:D1:4D:A8:40:4B:D2:1D:C4:89:E6:39:45:62:4E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/89/7fb4ea-5bbc-4c8c-8b5d-288cfd1c2a3d/1/kLOjoNZi0U2oQEvSHcSJ5jlFYk4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:2b:7d:51:e5:ec:46:a1:80:5f:f8:c4:51:41:a0:05:b7:14:
22:e2:a0:6c:73:d3:66:04:fa:18:78:24:94:c4:d5:a7:72:fd:
da:fa:98:2b:14:35:64:78:00:26:46:30:ce:1f:4c:2b:dd:85:
0e:8f:78:01:40:0e:58:45:83:8c:08:d0:34:62:59:76:e8:96:
f8:e7:45:c1:09:ea:68:c5:9a:37:da:dd:0c:b1:3e:f0:a6:48:
3e:53:7e:df:4b:af:1e:7f:9a:b1:1d:f0:be:cf:49:36:ac:ae:
63:47:c4:73:f7:d9:8c:8f:40:d3:9b:f9:ab:37:2b:2a:19:99:
76:56:7d:f9:22:44:73:23:7d:c5:96:e9:61:44:df:06:5f:cb:
23:dc:43:84:c3:cb:49:a9:c7:45:0d:62:2d:ad:08:47:cb:30:
e2:85:21:78:00:ce:f4:ef:2d:57:e2:5d:58:3f:44:b3:c4:97:
98:30:93:4e:8b:f4:ed:2e:8d:8c:9e:b5:e9:f5:ab:bd:0a:bc:
f9:cd:8f:b4:2e:1b:94:bf:3b:2a:67:fa:2b:ab:62:9f:b4:33:
c5:aa:62:f8:a8:37:d7:eb:04:b6:33:ca:64:b5:c1:c6:58:84:
f5:d4:d0:90:6a:32:df:91:31:68:66:81:53:0a:1c:1d:b0:49:
6f:a0:65:c3
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0lhA1eq7GIm3Wn791NMVfUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwYjNhM2EwZDY2MmQxNGRhODQwNGJkMjFkYzQ4OWU2Mzk0
NTYyNGUwHhcNMjYwMzI1MTUwMTQ0WhcNMjYwMzI2MTUwMTQ0WjAzMTEwLwYDVQQD
Eyg2MTY2MzFhNzc1M2FiNDU4YjgzZWJjNmZiNzUyZjhmZDM4MTlhMGQxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdBj86ZUASJaXUS0/HLXTGrp55PE
wlFLyBSs7keP5oP+Gf/PiQM6uxgNS+DeCj6/AHtXg5MgCo+y++4nJYrwMWXwp0Lj
pfDY3hFCNgF0dB6V+MqN6K0SO8AlbbtV2fjUXPp0uBbrgAsKn07GYG+74P8r4b9G
vrCEHU7jkedq3x7Okd6UDM2krrqiXYlNdWdm885yvrzyAPepVEq9Qc0qz0xF9P21
V2eajF1UaXHew4C28/vfRkWPbe5OlrvzA5nnu5aW8pYw+csLvZs2g/O8KxqWhLX3
uRcgBahX9uyjZY5zwk/cxLgkINU86mLWOIIx3REDYmx535irGMNhBWyjYwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGFmMad1OrRYuD68b7dS+P04GaDRMB8GA1UdIwQY
MBaAFJCzo6DWYtFNqEBL0h3EieY5RWJOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQt
Mjg4Y2ZkMWMyYTNkLzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84OS83ZmI0ZWEtNWJiYy00YzhjLThiNWQtMjg4Y2ZkMWMyYTNk
LzEva0xPam9OWmkwVTJvUUV2U0hjU0o1amxGWWs0LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYyt9UeXs
RqGAX/jEUUGgBbcUIuKgbHPTZgT6GHgklMTVp3L92vqYKxQ1ZHgAJkYwzh9MK92F
Do94AUAOWEWDjAjQNGJZduiW+OdFwQnqaMWaN9rdDLE+8KZIPlN+30uvHn+asR3w
vs9JNqyuY0fEc/fZjI9A05v5qzcrKhmZdlZ9+SJEcyN9xZbpYUTfBl/LI9xDhMPL
SanHRQ1iLa0IR8sw4oUheADO9O8tV+JdWD9Es8SXmDCTTov07S6NjJ616fWrvQq8
+c2PtC4blL87Kmf6K6tin7Qzxapi+Kg31+sEtjPKZLXBxliE9dTQkGoy35ExaGaB
UwocHbBJb6Blww==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:23:48 2026 by rpki-client