Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: edqs1QB5g/1Bg0i8ww2kXPcVlB7JulabZCUcVk8otXY=
Subject key identifier: 9F:B8:97:E5:9D:F7:CC:FA:21:DB:B1:42:83:83:B9:5E:5B:BD:F2:AB
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 019D389BFB08794B06331E4E59442A3A1533
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0C9D
Signing time: Sun 29 Mar 2026 08:00:39 +0000
Manifest this update: Sun 29 Mar 2026 08:00:39 +0000
Manifest next update: Mon 30 Mar 2026 08:00:39 +0000
Files and hashes: 1: cBSRB4O0rt965GGsn8A2s4pg_DA.roa (hash: uu3le68VCrwbgy10AnjrGBO0DA+D/b5MUJEn6iEvayk=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: mzi5FQZYXwa/rPTgouoq68o9ECLB5DI+5EO09wPq1mo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:fb:08:79:4b:06:33:1e:4e:59:44:2a:3a:15:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Mar 29 08:00:39 2026 GMT
Not After : Mar 30 08:00:39 2026 GMT
Subject: CN=9fb897e59df7ccfa21dbb1428383b95e5bbdf2ab
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:96:a8:a8:29:54:6a:e7:e8:52:d2:55:9c:c5:
4b:20:2e:63:52:11:7b:35:e8:3d:17:75:27:17:b5:
31:3d:a0:7f:21:37:23:c7:f1:17:4a:00:e9:2d:5d:
67:fa:58:8e:fe:f3:03:35:c7:d5:f7:18:f7:9c:59:
d8:18:52:9c:fb:1c:3d:cd:3b:e1:35:02:88:9a:48:
0d:3f:98:4a:4c:14:f5:ef:ba:fc:21:d5:70:94:79:
b4:b1:7c:62:a4:c7:b3:09:0d:e7:f9:58:01:c9:02:
45:a3:0f:70:fc:8e:85:68:fe:c9:79:17:ce:c5:83:
17:8c:fe:e9:b8:af:1b:b2:d4:96:97:6a:83:48:6d:
a2:ce:fe:fd:70:97:05:f3:50:e3:07:38:87:04:bf:
a2:c1:b0:f2:59:93:5d:32:15:7f:fa:6c:2e:2b:21:
14:80:e6:61:a1:6a:33:b2:d7:a5:88:ab:6f:a6:17:
11:42:13:af:84:bf:19:cf:8b:a1:6d:76:d6:31:e3:
70:89:81:75:a7:98:da:bb:d2:43:9e:06:98:2f:bb:
6c:5b:48:72:a2:33:c8:4c:3a:1c:3d:c9:60:1d:34:
da:56:48:d4:d8:73:89:69:78:eb:1c:7a:64:25:c4:
d9:71:bf:1c:bf:68:11:0c:1d:7a:66:51:e0:61:5b:
76:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B8:97:E5:9D:F7:CC:FA:21:DB:B1:42:83:83:B9:5E:5B:BD:F2:AB
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a6:90:be:8e:cf:e5:ff:84:d5:c5:33:dc:7d:16:7c:6e:8a:23:
7e:b1:ee:b7:45:3e:b5:87:31:83:39:58:89:79:71:46:1c:66:
be:79:a1:c2:9b:ab:26:fe:7c:e5:18:ac:ea:c7:01:ea:1f:35:
b3:72:3a:77:49:c0:6f:ae:98:52:ed:1d:85:5d:9a:12:e2:a6:
c7:1a:7d:53:95:ef:3a:fa:6c:df:89:7f:2b:19:2b:ab:04:ae:
fd:58:89:21:b6:ff:39:bc:84:32:55:30:4d:22:5c:41:db:50:
06:27:d5:05:bd:4a:09:54:98:a9:c9:ab:23:11:0e:d2:15:6c:
d4:60:67:d2:87:1a:65:45:15:85:82:68:2b:75:76:c5:16:57:
bd:62:e4:4f:84:40:be:d6:2e:4b:71:1e:24:aa:63:5d:1b:10:
61:c7:95:0a:7c:53:0d:0b:a7:36:87:18:fc:c5:56:c1:36:27:
9b:74:58:5b:34:06:7c:63:0b:1c:37:e7:7e:de:7d:b0:a7:6a:
48:b9:e2:f1:be:73:72:6a:47:3f:7f:23:01:af:f1:86:ae:45:
d1:26:11:88:64:4a:45:e0:3d:09:0a:8c:65:90:d2:1b:77:08:
70:c1:60:05:63:ad:c6:d7:17:fb:bb:55:c5:52:37:95:21:e4:
63:d6:6d:63
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:30:59 2026 by rpki-client