Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
File: mkM22h63IW4g7ASn8DHrShtjG7M.mft (raw, json)
Hash identifier: 6pAzWQYPqDMgPs6gn8otw8VOfSR6rN3Ry9tiu1PpSGk=
Subject key identifier: 3E:E8:0E:75:F7:CA:C8:58:A4:31:EC:AC:C6:BE:02:24:B3:DE:30:C7
Authority key identifier: 9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
Certificate issuer: /CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Certificate serial: 019D2C2A80A80B6E21B225E058EFAF69E880
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
Manifest number: 1889
Signing time: Thu 26 Mar 2026 22:01:15 +0000
Manifest this update: Thu 26 Mar 2026 22:01:15 +0000
Manifest next update: Fri 27 Mar 2026 22:01:15 +0000
Files and hashes: 1: KGRZtAAx-sknvQQcwhztrA8NJos.roa (hash: uYCNY8bnQOpiSbQHGpcKZAraJm0QfOSnQkHdbbBpb7U=)
2: mkM22h63IW4g7ASn8DHrShtjG7M.crl (hash: +RcI1zAah7ySi7la0k1EvKL/7Sx0QrGr1RZMa/CKfbA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 20:56:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:2c:2a:80:a8:0b:6e:21:b2:25:e0:58:ef:af:69:e8:80
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4336da1eb7216e20ec04a7f031eb4a1b631bb3
Validity
Not Before: Mar 26 22:01:15 2026 GMT
Not After : Mar 27 22:01:15 2026 GMT
Subject: CN=3ee80e75f7cac858a431ecacc6be0224b3de30c7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:f8:91:9c:66:10:c8:40:10:ea:53:58:c8:2a:
ab:d7:76:f0:9e:59:89:0f:6f:f7:78:06:77:33:83:
fe:86:ac:34:a8:86:5f:8e:e2:20:85:c5:4a:a7:3f:
43:62:bb:06:9f:a4:5a:61:45:37:92:d1:90:a4:b0:
c1:d8:e9:b1:b0:e2:5b:47:0d:7f:9f:54:ec:2a:7a:
9d:56:1d:aa:db:a3:7e:0c:78:b8:3b:34:c9:53:86:
e7:d1:08:54:08:4f:67:65:da:cf:18:6d:0c:2a:51:
43:58:fd:bf:f3:8b:48:b7:e3:48:30:20:f4:40:15:
5d:bb:50:77:fe:08:cc:1b:5c:49:1a:95:0b:6f:82:
94:dc:ea:88:fc:8d:ff:f3:bf:ce:ec:06:b4:a4:13:
d8:cf:3b:28:81:2b:db:d2:7a:07:b7:06:03:60:ca:
f4:f8:2b:a4:ec:54:09:7f:8e:38:c5:22:6d:86:ee:
22:40:e7:0f:41:61:fe:25:e3:55:28:5e:23:a1:0e:
10:39:e3:0a:c0:89:4a:2b:a2:8e:23:cc:4e:b3:e6:
75:dd:f3:9d:8d:4c:d4:f7:e7:74:04:19:32:01:ac:
7b:52:18:14:0c:97:53:d0:e4:98:1d:5a:55:25:8f:
de:cc:22:26:12:b1:7e:ae:44:ed:9c:56:00:6a:78:
94:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:E8:0E:75:F7:CA:C8:58:A4:31:EC:AC:C6:BE:02:24:B3:DE:30:C7
X509v3 Authority Key Identifier:
keyid:9A:43:36:DA:1E:B7:21:6E:20:EC:04:A7:F0:31:EB:4A:1B:63:1B:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mkM22h63IW4g7ASn8DHrShtjG7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/a7e9b9-6bac-4538-a9e6-fa8806a024c4/1/mkM22h63IW4g7ASn8DHrShtjG7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7d:4e:83:b5:c4:21:dd:13:53:b1:e7:15:f2:0f:4f:d2:c4:f4:
c8:b4:2c:1e:d5:9b:72:20:4f:aa:7f:46:f0:24:9f:e3:b3:27:
3c:22:86:23:d5:f7:8c:ff:c3:85:ee:a9:05:08:28:15:c6:89:
4f:54:9c:36:47:00:97:20:e8:16:60:36:3b:4d:32:2b:36:8b:
15:09:9d:9f:83:21:7c:3a:fb:f3:a5:51:96:64:df:f4:ab:47:
2c:6f:0e:bb:ae:e5:49:c3:fa:32:8e:94:59:a3:28:d6:0e:b3:
1a:05:06:2f:fc:d1:a1:eb:5d:32:76:47:37:42:51:56:5c:c6:
e7:e2:81:a2:a0:59:00:50:87:20:01:04:34:ba:70:45:96:2e:
7f:31:52:6c:53:81:f0:dd:bf:62:af:bd:fe:8b:3d:4a:8a:a2:
5b:24:16:1b:fd:24:be:ff:6a:4d:60:65:e4:c6:3e:a1:80:45:
6e:75:81:b4:36:8d:a0:b4:a0:c0:b4:71:65:61:38:7c:8e:17:
a3:20:d9:6e:37:2c:76:e8:cb:31:58:2a:77:32:17:8f:d5:e1:
a9:db:d0:80:ed:90:1f:e5:b0:a5:b7:bb:13:85:5f:0c:19:e5:
f5:69:ed:27:f1:74:53:bc:e9:7c:37:a0:d5:d7:06:4f:d6:50:
68:aa:e2:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Mar 27 04:59:14 2026 by rpki-client