Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: Dto3iuR+upWPODVM7yF0LlVc4Mc/QBxR9MJ8HQ8lKEk=
Subject key identifier: FF:52:BD:65:F4:6C:1C:92:A4:1B:B4:D8:89:87:10:9E:94:00:A3:2D
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 019D390A030164681320022B60C86D803DBD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 0BAD
Signing time: Sun 29 Mar 2026 10:00:50 +0000
Manifest this update: Sun 29 Mar 2026 10:00:50 +0000
Manifest next update: Mon 30 Mar 2026 10:00:50 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: hrum+QhTdMgarXgcK+rw3X2oqjCViPYivYI1spKS/fc=)
2: _umM-ifUYAXN-TkvPlavvAf1aBQ.roa (hash: sCjPYzBH4hvw7Ts2Tsttu/QAIcVSkFxZGEGfyMRDD0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:39:0a:03:01:64:68:13:20:02:2b:60:c8:6d:80:3d:bd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: Mar 29 10:00:50 2026 GMT
Not After : Mar 30 10:00:50 2026 GMT
Subject: CN=ff52bd65f46c1c92a41bb4d88987109e9400a32d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:dd:cd:d7:2a:9d:28:f7:6a:5c:94:69:81:13:
66:0a:a0:7c:ce:1e:ff:47:8a:47:09:d3:d6:0d:89:
29:be:08:20:78:d2:33:07:db:8c:40:a0:d6:56:9a:
ec:55:31:15:de:db:87:11:b5:b1:bf:2f:e3:91:6f:
bf:df:b8:36:80:eb:95:35:41:6d:08:4a:e9:b7:fc:
18:6b:71:6b:a6:cb:e3:6f:f9:a5:b1:b6:1d:9b:6b:
90:24:1e:88:32:21:11:9a:db:53:4d:c5:e2:1c:4d:
33:5c:a2:c3:e2:0a:d6:2a:4d:d3:df:80:4b:7b:d0:
80:b5:27:15:94:c0:5e:4d:f5:e8:fe:dd:52:81:fe:
95:b8:d5:c4:f9:d1:7d:66:67:82:26:54:83:1d:85:
03:05:be:8a:26:22:ee:29:6e:67:a9:2f:ce:5f:58:
3b:eb:f8:e2:94:26:94:0a:a6:24:0c:6f:c4:33:24:
74:95:20:44:f4:00:82:ab:57:2f:8d:da:ff:db:4e:
4a:b7:46:f0:5d:97:44:77:8e:85:6b:ee:fd:b0:0a:
b4:a2:36:6f:fe:48:ca:9b:00:70:31:08:ee:29:0c:
00:28:a0:6a:06:2d:b7:a8:57:99:3c:12:1d:0d:23:
25:7d:1f:18:49:bd:36:8b:67:ef:6e:f2:d6:f3:ff:
8c:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:52:BD:65:F4:6C:1C:92:A4:1B:B4:D8:89:87:10:9E:94:00:A3:2D
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
34:61:63:91:8b:2b:c7:f7:33:9e:15:90:6e:79:8b:e0:6c:9d:
73:ca:c6:16:e3:c8:a9:95:a0:30:02:d3:ef:ce:84:f6:b8:86:
80:87:83:af:cc:ee:e8:99:a5:40:30:20:ff:cb:ac:67:37:dd:
d9:1c:90:26:d5:a1:de:50:e7:1d:c0:07:76:11:12:07:84:7d:
3f:ab:04:05:90:62:b8:d1:6d:92:b7:8a:16:4b:f1:e1:ca:a1:
04:53:f6:1b:a3:3c:bb:c4:5d:62:f9:b6:a2:3d:ef:ad:bb:7a:
51:43:e0:13:a7:9f:92:08:23:cb:6b:51:ba:f3:65:65:84:83:
f0:b2:23:01:cf:f8:2b:25:d5:b3:23:58:63:f2:79:78:09:ae:
3e:9d:6e:89:84:f3:a1:94:7a:79:60:79:9a:84:31:c8:05:73:
cc:0a:81:f0:27:27:ef:8a:6d:89:b1:44:9d:39:e2:27:19:60:
e0:24:4c:a7:69:0d:53:09:c8:73:21:fa:3a:3f:ba:f0:c4:5d:
19:19:e9:a7:a1:ed:15:f9:2f:2f:70:7f:f1:71:31:5a:2c:c1:
69:62:ce:dc:56:60:6a:27:e8:e6:3c:39:9d:13:6d:75:05:78:
bb:ee:08:d6:07:c9:54:9e:69:f0:aa:8a:e1:92:ca:42:25:d4:
55:b7:f5:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:01 2026 by rpki-client