Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: F7qVRx4/Lxmhl8pGB8a8zi1ovZf6Pf1T1ygTeZQZrdc=
Subject key identifier: 86:AC:E0:36:38:B1:D3:4E:87:24:33:12:BD:5D:8F:92:E5:65:19:15
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 019F122EB7778DEA96D05FE88F1B8D64B670
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 0CA2
Signing time: Mon 29 Jun 2026 07:01:19 +0000
Manifest this update: Mon 29 Jun 2026 07:01:19 +0000
Manifest next update: Tue 30 Jun 2026 07:01:19 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: eVE1NosBuL0FNoiGmafHpswx9s+jFasXuu2PbcPv0Fo=)
2: _umM-ifUYAXN-TkvPlavvAf1aBQ.roa (hash: sCjPYzBH4hvw7Ts2Tsttu/QAIcVSkFxZGEGfyMRDD0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 07:01:19 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:2e:b7:77:8d:ea:96:d0:5f:e8:8f:1b:8d:64:b6:70
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Jun 29 07:01:19 2026 GMT
Not After : Jun 30 07:01:19 2026 GMT
Subject: CN=86ace03638b1d34e87243312bd5d8f92e5651915
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:22:d9:6b:80:45:11:f8:58:a6:23:5e:9d:db:
54:26:47:04:85:66:7f:49:43:89:69:08:02:f2:cd:
8c:1d:cc:61:01:06:eb:61:54:00:26:f8:06:1a:71:
ed:60:67:32:25:fe:2e:2e:73:31:64:0e:6a:a1:8b:
a7:0f:d9:ee:26:93:2b:b7:4a:63:02:25:7f:f5:ae:
71:93:81:ac:a6:e4:60:df:7f:1b:5b:eb:11:d9:e9:
dd:11:11:77:5c:0d:e2:f3:88:df:e9:21:fd:b0:e9:
e3:6a:e9:92:86:90:ad:e2:0d:26:91:63:a6:22:f7:
4c:99:84:c5:62:d8:2d:1b:91:f7:25:b7:cf:e1:d2:
e2:cf:e1:97:f5:64:07:9a:3e:80:96:79:53:22:e0:
a2:df:21:ad:07:bc:03:78:da:be:56:5f:56:88:34:
42:eb:b2:e5:2c:24:12:85:9e:16:bf:13:ee:bb:d0:
a8:a6:7d:62:cf:48:c3:b0:21:09:df:e0:e6:2a:b3:
19:1f:9a:4b:35:79:66:61:7c:4d:0a:d9:ce:0d:72:
68:a2:c4:42:bb:2b:92:1f:d8:8b:b9:9a:89:c8:81:
bc:e5:4d:a9:0f:36:c6:ea:c5:96:aa:fa:85:f9:c8:
48:0f:f3:7c:38:67:07:af:53:38:f5:a1:b0:97:8e:
37:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:AC:E0:36:38:B1:D3:4E:87:24:33:12:BD:5D:8F:92:E5:65:19:15
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6f:c3:1d:3f:3c:d8:1c:84:22:8c:b4:c4:83:c6:e4:2d:0f:c9:
26:de:ea:90:39:d4:d1:35:af:df:e9:de:e7:76:74:93:f9:42:
38:1f:24:bd:eb:a5:f5:22:1f:72:a2:e4:35:a9:6b:d2:71:56:
21:b2:1d:f8:16:5e:78:5a:58:ec:c0:27:a0:cf:1a:38:f7:dd:
33:81:3f:1b:a7:60:c2:d0:a0:bb:df:f7:49:96:b3:aa:30:69:
9d:85:71:a5:8f:99:1c:8b:4c:ba:bd:d9:26:e2:cc:62:92:03:
f7:97:d7:bd:a7:e7:eb:2c:44:c3:b4:41:aa:27:c8:c8:fc:1d:
d0:ca:06:ac:8a:76:00:41:cf:0d:fe:38:3a:aa:8e:63:ad:b6:
ef:d5:cb:20:a0:3a:3c:05:38:3d:18:83:be:20:7d:96:18:e4:
40:23:2a:7f:21:a7:cd:ee:bd:9a:30:1c:3a:8f:d7:65:98:14:
c3:28:fa:83:78:db:13:7f:c6:b7:51:4d:11:67:8e:15:91:d7:
42:23:d4:61:17:31:0d:8a:03:2e:09:27:09:a7:a3:f2:c6:d5:
96:da:4d:3b:37:1a:a7:cb:ce:2b:25:51:14:7c:6c:82:bf:73:
62:8e:3f:03:03:82:e2:e3:d6:35:02:6e:e2:19:21:39:d1:09:
b0:b3:48:5a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 17:33:49 2026 by rpki-client