Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
File: KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft (raw, json)
Hash identifier: AdmxagPqqBsakThw7jrz4nTKPEdnrkVoAoUC6TAlPWs=
Subject key identifier: 05:24:61:9C:A3:4F:CC:2F:BE:6C:C4:1B:F9:85:2D:02:20:31:BC:CD
Authority key identifier: 28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
Certificate issuer: /CN=2860f15d278379483aaa0613cbf592e72cc81e48
Certificate serial: 019E2A6FF218E055854DB9DA0909D743F245
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
Manifest number: 0C2A
Signing time: Fri 15 May 2026 07:00:39 +0000
Manifest this update: Fri 15 May 2026 07:00:39 +0000
Manifest next update: Sat 16 May 2026 07:00:39 +0000
Files and hashes: 1: KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl (hash: 4MVzeJbfYrn9+XX5j3yv7sNww+JPpwEKX9J3XSg3Wnw=)
2: _umM-ifUYAXN-TkvPlavvAf1aBQ.roa (hash: sCjPYzBH4hvw7Ts2Tsttu/QAIcVSkFxZGEGfyMRDD0Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 16 May 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:2a:6f:f2:18:e0:55:85:4d:b9:da:09:09:d7:43:f2:45
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2860f15d278379483aaa0613cbf592e72cc81e48
Validity
Not Before: May 15 07:00:39 2026 GMT
Not After : May 16 07:00:39 2026 GMT
Subject: CN=0524619ca34fcc2fbe6cc41bf9852d022031bccd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:75:ca:36:13:e0:c7:22:d5:dd:17:0b:ec:64:
7f:23:82:16:fc:ee:19:4f:ac:1e:0b:15:6b:14:cc:
f6:3c:1e:f1:b1:2a:da:9f:49:de:c0:f3:a4:a7:ae:
e6:ce:7c:af:66:e1:23:63:09:7c:f8:64:af:8b:73:
93:e9:6b:81:25:3c:bd:a6:7a:76:2b:fc:33:e7:b7:
92:d4:c2:b2:8e:d7:29:cc:bc:6d:d0:e6:62:30:f5:
8c:67:91:28:0d:40:2e:8e:45:ad:47:29:e5:b9:3a:
af:23:2a:d5:3d:6d:1b:07:41:34:6e:d2:42:8a:76:
60:2b:53:86:bf:c5:00:a4:b2:52:20:1a:86:52:8d:
33:29:55:c8:7b:8e:bc:cb:7c:65:fc:92:76:11:3d:
e7:a3:18:52:8a:0e:96:d6:42:66:76:c2:99:c4:af:
1e:92:be:38:2b:9b:27:92:a9:58:f9:51:5e:fa:10:
02:26:4f:d4:76:50:73:24:71:57:71:f2:c9:f8:96:
99:a8:16:86:83:e1:d0:1b:d8:4c:d7:c3:3c:9d:20:
bd:20:c6:48:e7:28:45:b5:e6:59:df:5c:49:11:98:
97:3a:80:50:7f:d5:75:d3:d9:c5:dd:95:58:8d:4a:
60:b1:fb:07:eb:e2:b9:9e:8a:f7:4e:cc:20:e6:13:
6b:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:24:61:9C:A3:4F:CC:2F:BE:6C:C4:1B:F9:85:2D:02:20:31:BC:CD
X509v3 Authority Key Identifier:
keyid:28:60:F1:5D:27:83:79:48:3A:AA:06:13:CB:F5:92:E7:2C:C8:1E:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KGDxXSeDeUg6qgYTy_WS5yzIHkg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/1d1b72-8bcf-4500-9125-321c14dd4639/1/KGDxXSeDeUg6qgYTy_WS5yzIHkg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
93:68:4a:f9:26:9d:ba:6c:66:0b:56:cc:8e:a9:46:f5:3a:08:
bd:a1:07:c2:00:48:98:83:88:54:3a:b3:97:c3:7d:82:b1:6c:
ba:6b:b6:7c:78:c4:8b:0d:8b:22:e2:cf:38:85:e9:3a:26:b1:
c7:a6:82:43:ed:81:20:50:e5:1a:11:75:64:cb:d2:4b:b6:62:
0c:24:43:51:ab:de:1b:fc:46:c1:2c:59:21:e3:63:7f:4f:26:
b6:48:32:75:f7:b1:1c:75:b2:e8:9d:93:0a:d5:d1:2f:95:40:
aa:f7:36:13:d9:a5:84:56:e1:b0:a6:9a:55:7f:69:41:34:16:
de:d3:35:32:34:05:b2:14:65:05:bc:2f:11:f4:a2:ee:2c:2d:
f9:e0:b9:f3:b4:d5:64:5c:a5:58:4a:06:1d:93:a5:f8:c8:72:
ad:9e:2a:53:bd:92:b8:06:63:e7:99:53:95:3b:0f:d3:27:08:
e0:15:d7:bd:18:78:93:e1:1a:6e:02:2f:0a:5a:cf:4c:93:70:
92:40:65:33:07:92:e7:24:a0:dc:da:1b:15:ac:0a:e1:0c:6e:
47:b4:3d:70:e5:ea:d1:08:65:cc:75:9b:7d:b6:9b:2c:72:e3:
30:ba:c2:bd:d9:9c:96:62:a5:f9:ff:d0:cf:c2:a4:10:a8:a0:
39:f5:c2:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 15 11:18:12 2026 by rpki-client