Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
File: knEFydH7BpBVSXH0ZMoh9KRcEGo.mft (raw, json)
Hash identifier: ABq1hx6cIZoXMSPIe0jEurJaxMdKQe3TlVlGkqiIqh0=
Subject key identifier: 26:EF:77:F8:3E:0E:5C:A9:89:72:91:19:15:15:8D:B3:5A:82:43:99
Authority key identifier: 92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
Certificate issuer: /CN=927105c9d1fb0690554971f464ca21f4a45c106a
Certificate serial: 019D28BB3C9CCF0A91895E349EE704EB3F57
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
Manifest number: 0F5E
Signing time: Thu 26 Mar 2026 06:00:52 +0000
Manifest this update: Thu 26 Mar 2026 06:00:52 +0000
Manifest next update: Fri 27 Mar 2026 06:00:52 +0000
Files and hashes: 1: YthcC5vfZaqX4lQHCzfAkYHmBn8.roa (hash: e1Wa1MDzLGWDE0S3sqNrMKZLPwUzO14S8dedZF4Jkxs=)
2: knEFydH7BpBVSXH0ZMoh9KRcEGo.crl (hash: glTxggeI/qUlpbu0LFVyvU8DT22XWu+sG7aI7mn0aVQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 06:00:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:bb:3c:9c:cf:0a:91:89:5e:34:9e:e7:04:eb:3f:57
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=927105c9d1fb0690554971f464ca21f4a45c106a
Validity
Not Before: Mar 26 06:00:52 2026 GMT
Not After : Mar 27 06:00:52 2026 GMT
Subject: CN=26ef77f83e0e5ca98972911915158db35a824399
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:d2:0f:87:9f:8e:12:3c:d5:bf:a9:ce:6c:6b:
d3:b1:6b:7a:7b:87:3d:fe:a1:d2:e6:59:9a:e9:d3:
c0:30:f3:6c:bf:44:db:e9:2b:64:fe:a8:bd:ad:bc:
40:dc:55:f8:ff:0f:bb:24:cb:23:a4:63:79:5d:47:
66:64:cd:3f:d2:ac:4c:2f:a4:75:1f:39:ce:54:a2:
a2:59:f3:a4:fe:e1:eb:dd:a3:42:31:5c:ed:7a:55:
2d:22:1d:29:df:80:4e:ad:6e:76:f3:2c:ee:98:14:
20:36:01:81:14:ae:9d:10:7a:35:ca:fd:a5:61:93:
29:d8:60:f7:70:8a:2c:9a:32:27:ce:b1:ed:c8:fa:
ef:03:9c:a1:17:9a:99:32:87:f2:96:fc:48:41:8d:
67:d0:88:dd:3b:6f:ad:1a:86:14:31:bf:f3:49:bc:
02:75:7b:a1:cc:98:13:49:d1:f0:bd:7d:81:5b:0e:
ae:e3:1b:a5:72:01:a1:ea:2a:d3:5c:f8:b0:ae:93:
d5:1e:78:37:ff:60:89:2d:77:e1:5f:33:8b:11:4a:
46:48:47:3e:c7:1e:a9:9f:21:44:48:65:d6:43:9c:
e0:7d:d9:78:08:9d:68:3f:e2:1a:03:a8:57:80:c4:
14:7a:7f:15:8c:0b:e7:6e:8f:5c:63:0f:3f:7c:8c:
d1:51
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
26:EF:77:F8:3E:0E:5C:A9:89:72:91:19:15:15:8D:B3:5A:82:43:99
X509v3 Authority Key Identifier:
keyid:92:71:05:C9:D1:FB:06:90:55:49:71:F4:64:CA:21:F4:A4:5C:10:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/knEFydH7BpBVSXH0ZMoh9KRcEGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/0c9d80-43a5-453a-ad25-4ee92ee1e0cd/1/knEFydH7BpBVSXH0ZMoh9KRcEGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:b4:24:92:ff:17:a4:54:9e:64:1a:bb:f7:e9:d7:57:46:d1:
ba:ba:36:ae:b8:f2:3c:82:de:da:95:11:08:c5:7a:4a:06:af:
6a:43:e1:da:70:f7:7b:58:7d:86:ab:65:28:f7:2c:50:d7:36:
6b:b0:41:63:dc:4b:5b:08:6e:f0:63:75:c2:98:ce:fd:36:dd:
a2:9c:3d:a7:5f:3d:77:ad:bc:bf:cc:39:f7:e7:ca:ac:e7:0f:
e1:ab:c7:33:db:01:a4:36:c4:aa:e4:c4:19:33:8a:b5:8a:7b:
e0:90:fd:43:a3:fd:bb:c4:25:2e:4c:22:4a:7c:6a:fd:be:b7:
3d:71:cd:3a:5e:1d:0c:0f:21:38:38:e4:8e:90:d1:9f:6b:56:
7f:94:5e:ed:4c:ab:29:53:2d:81:20:9b:2f:c1:f0:0d:52:27:
6d:e1:d1:93:bc:24:c1:4d:07:04:e0:b5:cf:69:90:c8:3f:16:
0d:a8:92:5c:cb:36:2b:f9:07:f0:43:37:60:72:ed:35:cd:df:
4f:88:08:b5:f3:7f:dd:bd:96:fe:1f:d0:df:c2:2b:78:a4:84:
29:09:8c:0d:6d:4a:a5:8f:29:a6:a5:31:7b:d6:e6:17:45:81:
54:44:44:44:cd:48:ff:3c:a3:23:27:d1:7a:3e:f2:50:c1:a0:
44:47:a7:90
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ouzyczwqRiV40nucE6z9XMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNzEwNWM5ZDFmYjA2OTA1NTQ5NzFmNDY0Y2EyMWY0YTQ1
YzEwNmEwHhcNMjYwMzI2MDYwMDUyWhcNMjYwMzI3MDYwMDUyWjAzMTEwLwYDVQQD
EygyNmVmNzdmODNlMGU1Y2E5ODk3MjkxMTkxNTE1OGRiMzVhODI0Mzk5MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo9IPh5+OEjzVv6nObGvTsWt6e4c9
/qHS5lma6dPAMPNsv0Tb6Stk/qi9rbxA3FX4/w+7JMsjpGN5XUdmZM0/0qxML6R1
HznOVKKiWfOk/uHr3aNCMVztelUtIh0p34BOrW528yzumBQgNgGBFK6dEHo1yv2l
YZMp2GD3cIosmjInzrHtyPrvA5yhF5qZMofylvxIQY1n0IjdO2+tGoYUMb/zSbwC
dXuhzJgTSdHwvX2BWw6u4xulcgGh6irTXPiwrpPVHng3/2CJLXfhXzOLEUpGSEc+
xx6pnyFESGXWQ5zgfdl4CJ1oP+IaA6hXgMQUen8VjAvnbo9cYw8/fIzRUQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFCbvd/g+DlypiXKRGRUVjbNagkOZMB8GA1UdIwQY
MBaAFJJxBcnR+waQVUlx9GTKIfSkXBBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUt
NGVlOTJlZTFlMGNkLzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85Zi8wYzlkODAtNDNhNS00NTNhLWFkMjUtNGVlOTJlZTFlMGNk
LzEva25FRnlkSDdCcEJWU1hIMFpNb2g5S1JjRUdvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfbQkkv8X
pFSeZBq79+nXV0bRuro2rrjyPILe2pURCMV6SgavakPh2nD3e1h9hqtlKPcsUNc2
a7BBY9xLWwhu8GN1wpjO/Tbdopw9p189d628v8w59+fKrOcP4avHM9sBpDbEquTE
GTOKtYp74JD9Q6P9u8QlLkwiSnxq/b63PXHNOl4dDA8hODjkjpDRn2tWf5Re7Uyr
KVMtgSCbL8HwDVInbeHRk7wkwU0HBOC1z2mQyD8WDaiSXMs2K/kH8EM3YHLtNc3f
T4gItfN/3b2W/h/Q38IreKSEKQmMDW1KpY8ppqUxe9bmF0WBVERERM1I/zyjIyfR
ej7yUMGgREenkA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:02:21 2026 by rpki-client