Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: zZQ0BBN3ZbkU4wtA8mYSy2Im4N9R15Wq53bxTP2LjfE=
Subject key identifier: 38:F8:C9:2B:F6:28:A7:DA:75:E2:50:BF:C3:BD:A4:9C:6F:12:24:FA
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 019D38668E713A4F5C1A32ED3D464BE51D66
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 112C
Signing time: Sun 29 Mar 2026 07:02:18 +0000
Manifest this update: Sun 29 Mar 2026 07:02:18 +0000
Manifest next update: Mon 30 Mar 2026 07:02:18 +0000
Files and hashes: 1: T9aoETtBOnAVOsZczCvbKoC8bLo.roa (hash: VbBc2wBHX0IMIYgXxrNNTjAei7gPUDMqr5TSGjCiTRo=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: Nop0/39In/WVv8WJtxlDajzar9UY4bGBZj4uLyimwFE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:66:8e:71:3a:4f:5c:1a:32:ed:3d:46:4b:e5:1d:66
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Mar 29 07:02:18 2026 GMT
Not After : Mar 30 07:02:18 2026 GMT
Subject: CN=38f8c92bf628a7da75e250bfc3bda49c6f1224fa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:92:33:ac:87:2e:25:91:e6:61:f2:f9:e4:b7:
50:1f:56:0d:62:c1:8f:c1:da:63:21:b7:e5:ea:b6:
c9:3a:4a:0d:83:c1:d5:a8:d0:60:64:27:38:4d:86:
0d:c0:a2:1c:a7:87:fc:a5:10:95:ba:65:14:93:51:
d7:63:bb:45:59:fa:ff:47:9a:6b:ab:83:d1:f8:6d:
fc:51:db:71:8b:b0:ab:8d:4c:13:d2:e5:30:0c:38:
e3:f1:c0:0a:42:d4:f3:6b:c3:c1:f2:c6:a8:1a:86:
16:56:9e:06:2d:61:5d:2d:3b:f0:f4:cf:e7:fe:e4:
23:83:21:02:db:08:4a:b3:a2:a9:1b:c0:13:41:88:
1f:a3:e0:da:90:52:2f:fd:60:c4:2a:90:61:34:d8:
4e:e2:92:4c:db:6d:f5:5e:8d:f2:5b:4c:9e:6a:92:
55:54:62:c4:c5:70:b0:92:8b:ca:34:1b:cb:ba:5e:
fc:3a:fe:c5:9b:56:e6:ec:4e:6f:43:96:5d:64:e0:
30:fd:8f:0f:49:96:ef:74:e8:6f:10:0f:58:08:b3:
21:96:47:59:de:77:2f:59:2e:ea:e5:f0:3c:97:26:
5a:05:36:4e:4c:dd:aa:08:31:9e:cc:50:ad:cb:7c:
d5:b7:3d:2b:29:8f:56:98:07:66:33:f0:e9:db:00:
5a:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:F8:C9:2B:F6:28:A7:DA:75:E2:50:BF:C3:BD:A4:9C:6F:12:24:FA
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5a:c4:28:a8:07:f8:10:e4:36:c8:0d:16:a8:32:0e:c2:97:0b:
f4:30:6a:f3:81:39:be:b1:20:06:9f:d7:fb:8b:24:ac:4d:0c:
59:35:fc:a3:4c:94:fe:4f:0b:e6:03:4b:ae:25:b1:f8:1e:fb:
3e:71:8a:64:c0:a7:0e:7b:10:a7:21:cc:92:d1:1e:b9:ed:17:
91:86:53:4a:5d:4f:51:77:f4:8f:61:0c:7f:71:3a:2a:04:08:
83:95:61:00:09:b5:74:22:a9:9c:eb:e0:8c:02:b2:65:0b:73:
9f:63:77:fb:aa:57:d9:93:8a:44:97:3d:af:9f:5a:88:15:d1:
e8:09:0d:25:91:6c:ca:af:d5:73:6a:a4:79:f6:41:99:8c:3e:
50:3e:a9:f0:bf:a2:f2:c2:49:71:cc:86:66:44:41:eb:37:58:
64:30:0b:a2:0b:da:95:e0:4d:71:5b:76:db:5b:78:b7:f2:0e:
40:76:8f:86:50:c0:fb:ea:1f:66:60:1e:1b:db:c7:ed:c9:0a:
28:bb:3a:5c:04:44:ed:d7:47:1c:47:db:f8:7e:ab:d1:04:7b:
3a:b3:5a:c3:5c:91:49:47:0c:c7:8d:4b:8d:3d:35:6e:70:a9:
7b:89:74:de:6f:41:60:69:dc:13:9a:21:03:11:07:13:07:8c:
99:cc:da:45
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ04Zo5xOk9cGjLtPUZL5R1mMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMDIwMzZhNDNkYWQwNmI2YzJjYzY0YmRlNzY3ODcwNjc2
Zjg3YjMwHhcNMjYwMzI5MDcwMjE4WhcNMjYwMzMwMDcwMjE4WjAzMTEwLwYDVQQD
EygzOGY4YzkyYmY2MjhhN2RhNzVlMjUwYmZjM2JkYTQ5YzZmMTIyNGZhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZIzrIcuJZHmYfL55LdQH1YNYsGP
wdpjIbfl6rbJOkoNg8HVqNBgZCc4TYYNwKIcp4f8pRCVumUUk1HXY7tFWfr/R5pr
q4PR+G38Udtxi7CrjUwT0uUwDDjj8cAKQtTza8PB8saoGoYWVp4GLWFdLTvw9M/n
/uQjgyEC2whKs6KpG8ATQYgfo+DakFIv/WDEKpBhNNhO4pJM2231Xo3yW0yeapJV
VGLExXCwkovKNBvLul78Ov7Fm1bm7E5vQ5ZdZOAw/Y8PSZbvdOhvEA9YCLMhlkdZ
3ncvWS7q5fA8lyZaBTZOTN2qCDGezFCty3zVtz0rKY9WmAdmM/Dp2wBaswIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFDj4ySv2KKfadeJQv8O9pJxvEiT6MB8GA1UdIwQY
MBaAFJICA2pD2tBrbCzGS952eHBnb4ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAt
NzNkY2VkMzk3MDdmLzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAtNzNkY2VkMzk3MDdm
LzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWsQoqAf4
EOQ2yA0WqDIOwpcL9DBq84E5vrEgBp/X+4skrE0MWTX8o0yU/k8L5gNLriWx+B77
PnGKZMCnDnsQpyHMktEeue0XkYZTSl1PUXf0j2EMf3E6KgQIg5VhAAm1dCKpnOvg
jAKyZQtzn2N3+6pX2ZOKRJc9r59aiBXR6AkNJZFsyq/Vc2qkefZBmYw+UD6p8L+i
8sJJccyGZkRB6zdYZDALogvaleBNcVt221t4t/IOQHaPhlDA++ofZmAeG9vH7ckK
KLs6XARE7ddHHEfb+H6r0QR7OrNaw1yRSUcMx41LjT01bnCpe4l03m9BYGncE5oh
AxEHEweMmczaRQ==
-----END CERTIFICATE-----
Generated at Sun Mar 29 12:46:00 2026 by rpki-client