Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
File: mk123S9GBosIca1FAKxuV3r-Rpw.mft (raw, json)
Hash identifier: eTdOhIsTisCJM+DZRQty872v1O0d4yINM6JjYjPprLE=
Subject key identifier: 8F:3F:75:75:4B:CB:70:76:5C:D1:FB:43:A2:16:C6:9E:DF:EB:9B:A4
Authority key identifier: 9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
Certificate issuer: /CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Certificate serial: 019D28F252F2D0F37E3A8E6237D0EEF27C56
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
Manifest number: 1892
Signing time: Thu 26 Mar 2026 07:01:02 +0000
Manifest this update: Thu 26 Mar 2026 07:01:02 +0000
Manifest next update: Fri 27 Mar 2026 07:01:02 +0000
Files and hashes: 1: SYtSh6MgqpX8fZ4WHojx0wxmwAU.roa (hash: qfAbswAstxuSdJu35mimEN1jiqsDnLeGp+g0coBMNag=)
2: YIp8U7durT_VOWJi51t_EhaEZmc.roa (hash: uqZNroUU2FsZFyQ6iEi3c3DU2XeoL0O/vrop/BVrvjs=)
3: mk123S9GBosIca1FAKxuV3r-Rpw.crl (hash: DzHDwPd8Uj/TEtwqQOuIhcW0FiKmVufQxC2MpubxY1Y=)
4: pEE9oryUWOVeetd5uFrgO_cdrpE.roa (hash: jDaM82TLaH8oaB0vSE3Avb/s35Fb5rQ5AgRFhpcBjks=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:f2:52:f2:d0:f3:7e:3a:8e:62:37:d0:ee:f2:7c:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9a4d76dd2f46068b0871ad4500ac6e577afe469c
Validity
Not Before: Mar 26 07:01:02 2026 GMT
Not After : Mar 27 07:01:02 2026 GMT
Subject: CN=8f3f75754bcb70765cd1fb43a216c69edfeb9ba4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:c2:74:fc:e1:09:ee:06:72:5b:c0:12:7e:bf:
01:19:fd:99:7c:2d:62:7b:c5:3d:2b:c3:0e:35:5f:
10:6f:4a:b7:d6:e8:63:b2:09:8a:eb:dc:d6:ea:a6:
58:57:2f:ef:e9:10:6c:28:1c:a1:34:59:b9:24:58:
f9:20:21:72:f9:d6:83:ba:40:03:df:32:7d:04:ee:
98:05:37:cc:be:f7:ed:38:2d:1a:b3:0b:30:8c:11:
d0:10:95:3f:dc:ce:21:44:b2:d4:00:fe:23:80:05:
e8:d0:ba:e6:f4:a8:e7:51:33:46:25:1f:92:49:20:
4c:e5:5d:76:3d:44:34:d9:f0:47:d9:0e:d3:03:56:
44:de:6f:74:21:55:d7:e6:1c:be:dd:a9:2e:eb:31:
43:67:29:c4:5c:5b:90:66:c3:95:ce:5d:72:ae:c7:
1a:66:ac:2e:b8:9b:f5:9c:af:6d:40:0c:68:65:1f:
46:76:2f:67:a6:fd:9e:79:ca:d1:9b:62:7f:30:40:
a9:bc:1a:d1:48:3d:5d:41:fd:8d:b9:e7:09:dd:e9:
00:e2:ba:c1:54:27:d7:ce:53:dd:dd:1f:75:5d:7c:
38:71:67:b4:10:40:7f:e1:aa:13:7f:f3:69:de:0d:
21:1e:5d:9e:e4:2e:ce:0b:09:43:de:2c:f1:e1:bc:
1e:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:3F:75:75:4B:CB:70:76:5C:D1:FB:43:A2:16:C6:9E:DF:EB:9B:A4
X509v3 Authority Key Identifier:
keyid:9A:4D:76:DD:2F:46:06:8B:08:71:AD:45:00:AC:6E:57:7A:FE:46:9C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mk123S9GBosIca1FAKxuV3r-Rpw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/ed7c8a-3952-4401-9dd4-44692dbccb32/1/mk123S9GBosIca1FAKxuV3r-Rpw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3d:c4:39:f4:17:80:2b:5b:f5:9e:8d:89:ea:2a:3c:38:c5:7b:
1a:df:d1:ba:ab:90:17:9a:4b:65:ff:45:a7:a4:6b:2f:9a:f4:
08:b0:0d:5b:2f:f9:2f:30:dd:e0:b3:96:22:16:c7:65:70:99:
3b:b7:a5:97:ca:50:2e:3f:d2:5f:22:38:1b:57:56:56:9a:cb:
35:b1:4d:40:2b:2c:3f:8e:8b:54:d5:66:90:23:94:44:1e:73:
db:81:94:06:9c:8b:b6:58:4e:3b:64:f0:bc:d1:79:66:a2:f0:
32:f2:f0:fb:19:66:32:76:09:1f:39:b4:72:26:d1:83:58:71:
61:9e:31:27:43:27:a8:45:77:58:d3:cc:0d:28:0c:6c:ec:77:
1c:3e:74:37:d3:2c:2c:f6:fd:03:69:aa:62:dc:1c:b3:91:85:
d4:ab:a7:d7:5b:6f:c1:aa:50:e3:81:d2:ef:25:8c:46:73:e2:
7c:fa:bc:91:8d:6a:91:c5:d6:72:ab:61:1b:22:36:0a:ad:8a:
c0:1e:0c:c3:99:66:5a:35:46:bf:b1:c4:0c:ed:17:50:a4:4c:
f3:9f:76:60:24:bd:03:f9:f9:9a:60:c5:ad:34:13:b7:1e:9f:
30:ba:77:68:f5:df:2d:8d:a4:b7:51:b1:6c:5f:b2:6a:5b:81:
0e:02:d8:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 11:52:50 2026 by rpki-client