Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: VXJoLoIDuHTZcItonmY/NP8ViyYLgqTx1+kjGWlhP38=
Subject key identifier: F7:0C:C0:6E:C0:E9:F1:6E:A0:17:CD:75:94:E2:D2:B4:63:0A:5C:4B
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 019D2A3B78F383A9AE3A36652275F31F864C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 1887
Signing time: Thu 26 Mar 2026 13:00:33 +0000
Manifest this update: Thu 26 Mar 2026 13:00:33 +0000
Manifest next update: Fri 27 Mar 2026 13:00:33 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: SQkT4d2T/jUcOyumuPapws3U+IZLsIL7b7/v1kam4CY=)
2: dMl0CEajkrxcgLNcfpnLA8OuL7A.roa (hash: CYX2WX+QfrhOpGiBFy1DWZkIM2JKpSw/oiXkQ7UpKFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2a:3b:78:f3:83:a9:ae:3a:36:65:22:75:f3:1f:86:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: Mar 26 13:00:33 2026 GMT
Not After : Mar 27 13:00:33 2026 GMT
Subject: CN=f70cc06ec0e9f16ea017cd7594e2d2b4630a5c4b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:22:10:17:7d:3c:5e:40:4c:f4:96:5d:b5:93:
6f:42:25:7d:c2:1e:0b:55:42:07:ef:6f:5d:66:13:
e0:95:5a:f0:74:b3:bf:5b:e7:57:1f:b4:b6:cf:fc:
5e:0b:4d:4e:71:8f:d1:9b:a1:44:6c:a6:b1:d0:74:
e2:10:6a:b9:34:a2:37:b0:1b:6d:60:29:d0:0c:09:
f4:6c:6c:ae:f7:0e:73:db:d2:df:f1:d3:f8:f4:01:
af:93:18:2c:80:34:58:f4:65:38:2b:af:13:a7:e6:
59:b6:d1:1e:05:d7:6f:f2:23:f7:c0:9c:8e:f6:5d:
67:ca:f7:2c:8d:e8:a5:f8:ce:3e:dd:02:d6:af:86:
e6:f8:7b:e9:8c:05:cb:06:88:52:dc:49:8a:db:04:
ec:c9:08:71:aa:16:e5:3a:d7:a7:6e:6b:c6:27:35:
9e:e2:d1:86:65:35:2f:09:6d:82:dd:f4:7c:82:46:
ba:45:68:34:65:cb:1c:77:67:08:eb:37:df:ba:7d:
0c:87:be:72:97:ca:0d:a7:a6:0f:a4:cf:e5:90:74:
3b:2b:be:c4:67:2f:3b:b8:47:e1:20:cc:1e:fe:92:
8c:75:21:f1:75:f7:a3:b2:16:f9:f9:65:62:c9:c7:
35:fc:a7:3e:17:dc:03:2a:72:9c:6a:3f:76:53:d9:
1c:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F7:0C:C0:6E:C0:E9:F1:6E:A0:17:CD:75:94:E2:D2:B4:63:0A:5C:4B
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:3d:9e:37:31:25:f4:70:86:99:e7:5a:f3:02:b0:4a:08:bc:
2b:35:ef:cf:61:3b:83:7d:ed:e7:b2:cd:64:e0:34:e5:41:62:
1b:fe:c7:34:bd:f6:6f:0f:59:10:3e:12:14:5f:80:5f:3e:ac:
76:fe:bd:3b:73:cd:82:d5:ac:46:4c:a3:90:da:e9:42:5c:24:
b0:35:6c:ad:34:a6:d2:4a:29:f7:a0:79:f0:09:8f:b7:42:7a:
cc:0f:45:93:14:c1:aa:98:00:b3:29:19:40:1b:0c:e5:d3:2f:
1d:c4:8f:c1:cd:62:cc:79:b4:64:e9:1e:47:f7:1c:73:2f:1c:
8c:1c:10:11:73:5a:44:b6:f0:47:d4:d9:62:19:19:b4:7d:4d:
0b:b7:6c:86:58:95:af:ba:b6:c6:44:ff:5a:e7:8a:22:f2:57:
b5:c1:a7:11:2d:3e:ce:c8:0a:3d:48:3e:fc:c7:bb:0b:02:42:
1c:02:41:5b:08:05:da:ba:e4:80:f5:98:09:f3:fe:cb:c1:f2:
57:ba:80:a5:dc:64:f8:4e:18:33:94:23:47:60:02:e4:2b:e5:
e4:00:38:1d:e9:84:a6:90:cf:9e:a8:15:5f:64:80:2e:83:9a:
d1:92:85:c3:1c:0a:e6:08:77:5e:c1:fb:3e:de:b6:54:1a:95:
b8:39:b2:35
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0qO3jzg6muOjZlInXzH4ZMMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NDgyOTQ0NDNhZWQxNmQwNmI4NmFmMTRmNWE1ZjBhNTA4
Mzc3NGEwHhcNMjYwMzI2MTMwMDMzWhcNMjYwMzI3MTMwMDMzWjAzMTEwLwYDVQQD
EyhmNzBjYzA2ZWMwZTlmMTZlYTAxN2NkNzU5NGUyZDJiNDYzMGE1YzRiMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3CIQF308XkBM9JZdtZNvQiV9wh4L
VUIH729dZhPglVrwdLO/W+dXH7S2z/xeC01OcY/Rm6FEbKax0HTiEGq5NKI3sBtt
YCnQDAn0bGyu9w5z29Lf8dP49AGvkxgsgDRY9GU4K68Tp+ZZttEeBddv8iP3wJyO
9l1nyvcsjeil+M4+3QLWr4bm+HvpjAXLBohS3EmK2wTsyQhxqhblOtenbmvGJzWe
4tGGZTUvCW2C3fR8gka6RWg0Zcscd2cI6zffun0Mh75yl8oNp6YPpM/lkHQ7K77E
Zy87uEfhIMwe/pKMdSHxdfejshb5+WViycc1/Kc+F9wDKnKcaj92U9kcqQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPcMwG7A6fFuoBfNdZTi0rRjClxLMB8GA1UdIwQY
MBaAFNZIKURDrtFtBrhq8U9aXwpQg3dKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDkt
ZTU3Y2M4MWY1MjMzLzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDktZTU3Y2M4MWY1MjMz
LzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApj2eNzEl
9HCGmeda8wKwSgi8KzXvz2E7g33t57LNZOA05UFiG/7HNL32bw9ZED4SFF+AXz6s
dv69O3PNgtWsRkyjkNrpQlwksDVsrTSm0kop96B58AmPt0J6zA9FkxTBqpgAsykZ
QBsM5dMvHcSPwc1izHm0ZOkeR/cccy8cjBwQEXNaRLbwR9TZYhkZtH1NC7dshliV
r7q2xkT/WueKIvJXtcGnES0+zsgKPUg+/Me7CwJCHAJBWwgF2rrkgPWYCfP+y8Hy
V7qApdxk+E4YM5QjR2AC5Cvl5AA4HemEppDPnqgVX2SALoOa0ZKFwxwK5gh3XsH7
Pt62VBqVuDmyNQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 16:52:00 2026 by rpki-client