Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
File: kNWCLTx7v3q1QE3aiP2dqSE43iE.mft (raw, json)
Hash identifier: BGb61I5iIRF0YpjOsrPOII+Km/EepkUiw5+LWfggZdk=
Subject key identifier: D8:0E:D0:88:0B:1E:6C:B9:E4:DA:9B:CD:03:CB:74:FA:2C:1D:EB:58
Authority key identifier: 90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
Certificate issuer: /CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Certificate serial: 019D29CE8C67F62F5DC482A0BC66D060BD0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
Manifest number: 0945
Signing time: Thu 26 Mar 2026 11:01:35 +0000
Manifest this update: Thu 26 Mar 2026 11:01:35 +0000
Manifest next update: Fri 27 Mar 2026 11:01:35 +0000
Files and hashes: 1: kNWCLTx7v3q1QE3aiP2dqSE43iE.crl (hash: hjMvXR5jzsFJcfuu9UO/NOI4kXQt+a1qEtWuFtBPSzk=)
2: yJzTIcAhRcC6ZEzxWsi_CH0k6Sk.roa (hash: YVqSm3FfhpaemLgcMqrRSZQk3gYIEbjzjgNvnaJ9X18=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 09:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:29:ce:8c:67:f6:2f:5d:c4:82:a0:bc:66:d0:60:bd:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90d5822d3c7bbf7ab5404dda88fd9da92138de21
Validity
Not Before: Mar 26 11:01:35 2026 GMT
Not After : Mar 27 11:01:35 2026 GMT
Subject: CN=d80ed0880b1e6cb9e4da9bcd03cb74fa2c1deb58
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:7e:f2:25:46:19:0c:d5:58:ca:9b:a4:a3:ba:
fd:cf:92:f1:ce:94:db:40:50:c2:41:64:1c:77:22:
4d:31:ef:80:92:86:7e:2d:41:d6:6d:f8:23:a2:2f:
67:73:94:16:d8:7b:b3:5d:56:ba:7b:95:77:31:db:
6f:07:41:94:68:d1:24:4b:55:0f:55:b7:9f:a3:5f:
e5:60:7c:20:91:76:8b:ad:de:cd:3e:ea:a9:74:ef:
43:7e:b0:ad:40:8d:9f:57:c0:33:a4:76:23:67:56:
0b:5b:20:bd:fe:57:af:29:b8:ce:ed:fc:0b:78:70:
49:36:1d:ca:f5:af:07:99:95:52:5d:fe:a3:1f:8d:
95:93:fe:bf:cf:fa:08:e1:64:02:23:82:66:dc:79:
a4:f5:2e:9b:03:50:86:8d:49:1a:46:8c:ef:2f:18:
2a:0a:94:e6:3d:76:aa:72:d4:f3:26:32:be:a4:93:
eb:28:71:bb:c6:ec:b8:a1:95:f9:17:11:c5:87:de:
5c:bd:0a:af:ef:a5:f9:a7:34:34:92:07:7c:01:78:
82:5b:c2:28:28:e2:f4:f3:8c:e4:6f:94:50:c8:36:
23:44:1a:4e:5f:58:55:b5:ff:45:55:32:ac:41:e7:
2a:f7:b2:c9:89:35:7f:fc:77:bf:c9:8d:8a:05:c6:
f1:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:0E:D0:88:0B:1E:6C:B9:E4:DA:9B:CD:03:CB:74:FA:2C:1D:EB:58
X509v3 Authority Key Identifier:
keyid:90:D5:82:2D:3C:7B:BF:7A:B5:40:4D:DA:88:FD:9D:A9:21:38:DE:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kNWCLTx7v3q1QE3aiP2dqSE43iE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/b35c9a-8495-4169-8c50-3692f7841619/1/kNWCLTx7v3q1QE3aiP2dqSE43iE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
48:64:88:aa:60:ee:01:9e:1f:e6:bd:18:d7:19:71:cd:5b:bd:
c8:2f:a9:15:16:82:f2:23:00:a6:29:1e:3c:2e:60:5d:f5:8a:
fe:54:18:a2:05:32:86:51:4b:42:57:cd:9d:dd:d5:86:0e:94:
52:3b:e3:77:17:87:ad:9b:e5:7d:e8:83:2a:96:31:96:77:c2:
8e:a2:23:53:a9:f3:0b:70:88:91:d7:67:e8:8d:af:14:25:46:
ee:39:8f:4b:f9:33:47:b2:d3:2f:64:c7:e6:4f:64:3f:ef:85:
f3:fe:52:8e:94:60:cb:77:be:7f:91:5b:34:04:fe:cc:15:2c:
22:81:fe:85:82:1f:86:c8:17:6b:31:47:0c:89:53:10:c4:35:
23:76:c5:2a:a1:6b:25:44:03:bb:95:be:6d:25:a4:57:32:80:
24:f1:5c:a2:4a:3a:e4:e2:d7:3c:68:63:2b:ec:96:3c:b4:0d:
c3:ce:b2:f7:c4:0f:35:28:7e:fb:1a:fb:06:00:5c:49:23:32:
d8:e9:ff:7c:b5:32:0e:33:2d:fc:64:e9:16:d8:4c:2d:cd:8d:
ce:58:ee:04:a6:5f:ca:da:ef:00:2f:8c:a6:bc:34:79:b2:7c:
7f:0e:b2:40:cf:45:30:da:e7:36:27:29:f7:56:4f:a5:17:1e:
f0:19:bb:bd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0pzoxn9i9dxIKgvGbQYL0NMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkwZDU4MjJkM2M3YmJmN2FiNTQwNGRkYTg4ZmQ5ZGE5MjEz
OGRlMjEwHhcNMjYwMzI2MTEwMTM1WhcNMjYwMzI3MTEwMTM1WjAzMTEwLwYDVQQD
EyhkODBlZDA4ODBiMWU2Y2I5ZTRkYTliY2QwM2NiNzRmYTJjMWRlYjU4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoX7yJUYZDNVYypuko7r9z5LxzpTb
QFDCQWQcdyJNMe+AkoZ+LUHWbfgjoi9nc5QW2HuzXVa6e5V3MdtvB0GUaNEkS1UP
Vbefo1/lYHwgkXaLrd7NPuqpdO9DfrCtQI2fV8AzpHYjZ1YLWyC9/levKbjO7fwL
eHBJNh3K9a8HmZVSXf6jH42Vk/6/z/oI4WQCI4Jm3Hmk9S6bA1CGjUkaRozvLxgq
CpTmPXaqctTzJjK+pJPrKHG7xuy4oZX5FxHFh95cvQqv76X5pzQ0kgd8AXiCW8Io
KOL084zkb5RQyDYjRBpOX1hVtf9FVTKsQecq97LJiTV//He/yY2KBcbxiQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFNgO0IgLHmy55NqbzQPLdPosHetYMB8GA1UdIwQY
MBaAFJDVgi08e796tUBN2oj9nakhON4hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva05XQ0xUeDd2M3ExUUUzYWlQMmRxU0U0M2lFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS9iMzVjOWEtODQ5NS00MTY5LThjNTAt
MzY5MmY3ODQxNjE5LzEva05XQ0xUeDd2M3ExUUUzYWlQMmRxU0U0M2lFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hYS9iMzVjOWEtODQ5NS00MTY5LThjNTAtMzY5MmY3ODQxNjE5
LzEva05XQ0xUeDd2M3ExUUUzYWlQMmRxU0U0M2lFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASGSIqmDu
AZ4f5r0Y1xlxzVu9yC+pFRaC8iMApikePC5gXfWK/lQYogUyhlFLQlfNnd3Vhg6U
UjvjdxeHrZvlfeiDKpYxlnfCjqIjU6nzC3CIkddn6I2vFCVG7jmPS/kzR7LTL2TH
5k9kP++F8/5SjpRgy3e+f5FbNAT+zBUsIoH+hYIfhsgXazFHDIlTEMQ1I3bFKqFr
JUQDu5W+bSWkVzKAJPFcoko65OLXPGhjK+yWPLQNw86y98QPNSh++xr7BgBcSSMy
2On/fLUyDjMt/GTpFthMLc2NzljuBKZfytrvAC+Mprw0ebJ8fw6yQM9FMNrnNicp
91ZPpRce8Bm7vQ==
-----END CERTIFICATE-----
Generated at Thu Mar 26 18:09:25 2026 by rpki-client