Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
File: kTOA6LhQRU2zgd3euawsyKL2JTE.mft (raw, json)
Hash identifier: r21Wmy3d8cfRAN6pyFkcAH9PGH+NNxbZoDBhfTVyhCw=
Subject key identifier: F4:4A:02:64:03:07:AF:19:50:88:EC:6D:18:36:6C:F8:6E:91:8D:A6
Authority key identifier: 91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
Certificate issuer: /CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Certificate serial: 019D265FA93FEA909F2EEAD7B22DB828EE39
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
Manifest number: 0781
Signing time: Wed 25 Mar 2026 19:01:36 +0000
Manifest this update: Wed 25 Mar 2026 19:01:36 +0000
Manifest next update: Thu 26 Mar 2026 19:01:36 +0000
Files and hashes: 1: kTOA6LhQRU2zgd3euawsyKL2JTE.crl (hash: xnBKPovaNBeyWf/FN4cUF5YkEU2L8dLdRWiXNgmbHwA=)
2: oWAA3712bfUBzXFDQ4qEFnRk4-8.roa (hash: IL/tQvQ5PPq+dUr5LLZdpWR+gfGz/0GU5klPWCUecLo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 15:17:46 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:26:5f:a9:3f:ea:90:9f:2e:ea:d7:b2:2d:b8:28:ee:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=913380e8b850454db381dddeb9ac2cc8a2f62531
Validity
Not Before: Mar 25 19:01:36 2026 GMT
Not After : Mar 26 19:01:36 2026 GMT
Subject: CN=f44a02640307af195088ec6d18366cf86e918da6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:ac:ef:9a:00:87:e3:f9:6e:d3:2e:82:26:1a:
c3:b9:81:90:c9:c3:c2:6d:90:94:d8:e7:3c:f0:e0:
39:fd:68:a8:0e:60:91:cd:89:35:87:7e:a2:d1:9a:
8a:e4:f9:bc:f5:07:3e:37:21:20:65:19:3e:f4:be:
14:e9:ad:ab:17:9d:55:15:6e:2d:ed:c6:ca:29:b0:
ec:91:b2:61:95:2f:94:ba:fe:3d:3c:0e:46:6d:f1:
ce:fd:55:10:8c:70:8c:75:be:86:b5:e2:80:28:37:
d5:d9:98:4b:30:c6:61:90:7f:6b:f5:23:26:ff:21:
be:b2:b3:f4:bd:9d:5b:73:75:dd:cf:98:21:2c:74:
2f:a3:2b:ca:29:e1:62:7f:a6:e5:c3:8b:63:a8:34:
04:82:e1:41:1b:73:13:a6:83:ea:68:37:2b:bf:55:
58:42:92:71:07:02:77:95:51:f1:77:41:f3:17:0e:
5b:9e:ac:d0:cb:94:45:83:ce:56:d4:e7:f5:ce:67:
6a:0f:a9:13:0c:0e:bc:38:36:3e:10:43:81:5c:ab:
66:f2:f3:bb:bc:4d:27:65:d9:66:ba:08:49:49:d7:
6d:9e:22:84:c9:ac:d6:eb:6e:91:13:03:dd:ee:ed:
9d:7a:c3:c3:24:ea:c2:21:e6:b6:c5:73:7c:30:dd:
fc:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:4A:02:64:03:07:AF:19:50:88:EC:6D:18:36:6C:F8:6E:91:8D:A6
X509v3 Authority Key Identifier:
keyid:91:33:80:E8:B8:50:45:4D:B3:81:DD:DE:B9:AC:2C:C8:A2:F6:25:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kTOA6LhQRU2zgd3euawsyKL2JTE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/8694b9-01d7-48b8-a882-94e700bd55f5/1/kTOA6LhQRU2zgd3euawsyKL2JTE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:29:99:87:16:05:8a:68:43:94:10:05:d8:11:a5:ba:06:3b:
9d:ce:5b:c1:da:9b:14:48:dc:83:26:b3:68:5c:23:a5:30:8b:
9d:78:1a:19:be:83:66:fd:e5:6f:2f:bc:20:15:a0:8b:a1:61:
42:50:87:bc:4d:a7:ec:13:18:85:07:f1:d1:bc:2a:cf:20:ad:
85:13:c6:e9:e4:b0:fa:f1:c8:4e:38:b4:39:47:b9:06:5c:a2:
ad:63:e9:c0:06:3e:3a:b2:37:3f:59:ed:15:ec:e5:2a:80:1e:
4f:8d:3f:c6:18:d3:75:c9:3b:6f:70:ef:44:4d:cd:67:99:0e:
8e:0b:08:02:b5:b6:4d:98:31:81:3e:2c:9f:72:e5:21:98:f7:
73:b8:6c:6b:48:87:a6:17:68:59:88:d3:92:b6:5b:24:53:36:
b2:f5:65:cd:bf:62:3a:09:9d:ca:75:8c:a0:52:7e:d1:6c:ce:
b5:5a:94:95:ef:ff:ce:83:ac:66:e9:b4:79:fa:ad:c6:d6:e7:
ba:9f:66:ba:5e:60:2a:0d:0f:69:73:dc:90:8e:99:c3:e6:26:
3c:9e:d1:55:38:a5:ab:70:55:39:b0:cd:75:5f:48:d8:fb:ec:
06:52:7f:99:79:3b:1e:89:10:d2:01:ae:d9:a8:13:9e:57:28:
3b:54:cc:8f
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0mX6k/6pCfLurXsi24KO45MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkxMzM4MGU4Yjg1MDQ1NGRiMzgxZGRkZWI5YWMyY2M4YTJm
NjI1MzEwHhcNMjYwMzI1MTkwMTM2WhcNMjYwMzI2MTkwMTM2WjAzMTEwLwYDVQQD
EyhmNDRhMDI2NDAzMDdhZjE5NTA4OGVjNmQxODM2NmNmODZlOTE4ZGE2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6zvmgCH4/lu0y6CJhrDuYGQycPC
bZCU2Oc88OA5/WioDmCRzYk1h36i0ZqK5Pm89Qc+NyEgZRk+9L4U6a2rF51VFW4t
7cbKKbDskbJhlS+Uuv49PA5GbfHO/VUQjHCMdb6GteKAKDfV2ZhLMMZhkH9r9SMm
/yG+srP0vZ1bc3Xdz5ghLHQvoyvKKeFif6blw4tjqDQEguFBG3MTpoPqaDcrv1VY
QpJxBwJ3lVHxd0HzFw5bnqzQy5RFg85W1Of1zmdqD6kTDA68ODY+EEOBXKtm8vO7
vE0nZdlmughJSddtniKEyazW626REwPd7u2desPDJOrCIea2xXN8MN38swIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPRKAmQDB68ZUIjsbRg2bPhukY2mMB8GA1UdIwQY
MBaAFJEzgOi4UEVNs4Hd3rmsLMii9iUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODIt
OTRlNzAwYmQ1NWY1LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9jMi84Njk0YjktMDFkNy00OGI4LWE4ODItOTRlNzAwYmQ1NWY1
LzEva1RPQTZMaFFSVTJ6Z2QzZXVhd3N5S0wySlRFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASimZhxYF
imhDlBAF2BGlugY7nc5bwdqbFEjcgyazaFwjpTCLnXgaGb6DZv3lby+8IBWgi6Fh
QlCHvE2n7BMYhQfx0bwqzyCthRPG6eSw+vHITji0OUe5BlyirWPpwAY+OrI3P1nt
FezlKoAeT40/xhjTdck7b3DvRE3NZ5kOjgsIArW2TZgxgT4sn3LlIZj3c7hsa0iH
phdoWYjTkrZbJFM2svVlzb9iOgmdynWMoFJ+0WzOtVqUle//zoOsZum0efqtxtbn
up9mul5gKg0PaXPckI6Zw+YmPJ7RVTilq3BVObDNdV9I2PvsBlJ/mXk7HokQ0gGu
2agTnlcoO1TMjw==
-----END CERTIFICATE-----
Generated at Thu Mar 26 02:11:34 2026 by rpki-client