Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
File: KwFArTlBTE6rAqxVQitEFj7TSw8.mft (raw, json)
Hash identifier: z0yP56Xy62+k94kAmquyJLjKYXcjdqbCn3Og1YXc2YM=
Subject key identifier: F0:6C:57:F3:75:80:29:F7:E1:48:74:3D:97:A6:BE:45:8A:3E:6A:4C
Authority key identifier: 2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
Certificate issuer: /CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Certificate serial: 019D2696292DF38FBF40282FAFDDE5FA622C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
Manifest number: 05DD
Signing time: Wed 25 Mar 2026 20:01:08 +0000
Manifest this update: Wed 25 Mar 2026 20:01:08 +0000
Manifest next update: Thu 26 Mar 2026 20:01:08 +0000
Files and hashes: 1: KwFArTlBTE6rAqxVQitEFj7TSw8.crl (hash: 0piPdeuIIdzGCXZ/DmeOJk226krXa+Cgh+VsM/ytvPc=)
2: ir9SuLduq8J9bIwWBVKAyAFiwvk.roa (hash: LeNR5QQthmrMSFvWNxLjb0RXrLTd6w9z7OeC3M8gneo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:96:29:2d:f3:8f:bf:40:28:2f:af:dd:e5:fa:62:2c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b0140ad39414c4eab02ac55422b44163ed34b0f
Validity
Not Before: Mar 25 20:01:08 2026 GMT
Not After : Mar 26 20:01:08 2026 GMT
Subject: CN=f06c57f3758029f7e148743d97a6be458a3e6a4c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:07:62:aa:69:97:d1:a8:90:d8:51:4f:73:00:
d0:dc:9a:c0:f7:da:c6:1a:90:b1:a3:60:43:69:d1:
47:94:9c:a3:d3:62:6b:08:b0:55:56:6e:63:49:2e:
f5:22:2d:ad:87:36:24:01:50:3a:d3:82:a0:ce:98:
be:41:e1:d4:e0:c2:f3:89:e1:cf:e6:48:b5:80:c4:
20:5b:1d:92:47:5e:3d:60:bf:ca:f7:0b:fd:88:09:
f9:20:d0:22:93:fd:9d:fc:fa:ca:be:50:3d:32:91:
f3:8c:3c:2f:0f:ec:af:2f:54:ad:aa:53:c4:4f:ac:
af:b2:17:0a:d1:ec:c0:5b:83:e9:4a:f8:32:73:5d:
34:63:8d:f0:b4:ea:9b:bf:fa:27:35:69:9f:31:ad:
52:a8:39:81:c0:b6:31:bc:34:83:fa:59:a6:0e:b0:
71:7c:14:8d:e4:07:9e:e7:ca:91:e7:84:ba:f1:d8:
40:21:2c:ea:e6:0a:5d:c2:1e:84:56:ab:24:65:ed:
ff:f8:f2:e8:9e:f7:4b:6d:ad:df:e0:5b:9c:0f:51:
d4:ca:bb:df:6b:04:e3:84:40:05:ec:77:ac:d6:76:
61:12:c5:cc:44:a0:4d:81:63:aa:e5:aa:69:59:cb:
11:63:03:93:d4:ec:ac:9c:db:53:f4:49:9b:51:a2:
15:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:6C:57:F3:75:80:29:F7:E1:48:74:3D:97:A6:BE:45:8A:3E:6A:4C
X509v3 Authority Key Identifier:
keyid:2B:01:40:AD:39:41:4C:4E:AB:02:AC:55:42:2B:44:16:3E:D3:4B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KwFArTlBTE6rAqxVQitEFj7TSw8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a3/89c3e4-b613-49ec-ae25-2e75228f9261/1/KwFArTlBTE6rAqxVQitEFj7TSw8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:74:f8:03:8d:03:ae:2c:de:66:6c:f0:d7:a0:78:21:83:38:
5e:63:f0:b9:e1:79:b2:09:eb:7b:09:17:38:ca:89:a3:bd:f9:
c5:7f:82:e6:e6:0c:88:5c:96:1f:3e:79:6c:95:43:2f:3c:9b:
de:0b:59:95:f8:0a:2f:ee:75:53:44:8f:16:9a:ec:71:89:47:
3d:06:b7:06:15:b3:2d:37:fb:31:50:7a:de:a2:5b:39:f2:34:
22:d1:e8:f3:f2:6d:ca:10:c7:dc:5a:51:59:27:6d:f9:a2:0f:
b3:76:26:f0:49:c7:f0:01:4f:17:bf:bd:b3:a3:e6:07:cc:6b:
59:43:38:44:bf:74:b2:a1:ee:cf:a1:56:fa:e2:3c:d1:b3:77:
b9:50:a8:84:35:a3:dd:d1:61:9e:18:1f:c1:3f:61:13:29:83:
52:7e:70:7c:53:e0:97:08:8e:e3:ae:cf:4d:b9:e5:37:21:6b:
fa:ef:7a:e6:0a:d2:14:a7:5a:17:78:18:1c:7a:b7:cd:b3:18:
5a:6d:93:ba:01:48:da:f7:82:a2:91:66:23:23:22:06:ee:4a:
4c:b3:44:56:6a:b1:be:a1:18:f4:e0:a7:2b:0a:1e:e9:94:e0:
27:80:b9:d2:6b:78:74:bb:c4:08:69:43:b7:5a:ff:4d:00:48:
9a:83:d9:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 00:37:47 2026 by rpki-client