Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: FnwL559G0dXzWfIUBzTVHE0ON5R+0Z1m6/SSHGk9PFQ=
Subject key identifier: B2:03:50:E0:CA:E4:9D:FE:D7:C9:98:11:D4:E9:B5:09:27:04:DB:53
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 019EBD34E051B2233BDCAE831B7160A729A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 0EC7
Signing time: Fri 12 Jun 2026 19:00:19 +0000
Manifest this update: Fri 12 Jun 2026 19:00:19 +0000
Manifest next update: Sat 13 Jun 2026 19:00:19 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: nIeFsFifyJWAQeoDZt2uritVnaFfLjk1SK36bg3t4S0=)
2: jY0MoOJ3PtdveQuCsZ0fuBIhTjY.roa (hash: vqPVQAGkx6I5WnNS9zEmXw+PjdH2vmfPnggrjPunD0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:34:e0:51:b2:23:3b:dc:ae:83:1b:71:60:a7:29:a7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Jun 12 19:00:19 2026 GMT
Not After : Jun 13 19:00:19 2026 GMT
Subject: CN=b20350e0cae49dfed7c99811d4e9b5092704db53
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:cc:b1:78:5f:87:f0:7f:59:1f:0b:b9:4d:c5:
6c:3e:66:05:3d:74:24:eb:dc:e1:12:3c:ae:c7:42:
46:ec:13:a0:13:28:67:4f:69:b4:4f:a9:39:67:8d:
17:4d:21:79:40:0d:9d:56:cd:cc:94:f1:b2:56:cd:
5d:88:06:ba:64:6e:0c:18:5a:13:c6:e2:cd:83:98:
2e:a3:df:71:91:4d:8b:2c:f1:c5:12:dd:32:0f:a7:
78:d4:ba:9e:32:c9:72:d3:4d:a2:15:69:98:d1:c8:
82:c1:1a:f2:e9:0f:f6:49:b1:61:bb:5e:2a:b5:82:
aa:1d:6a:ef:09:7c:45:0a:8a:99:44:48:9c:09:b4:
54:a6:3c:7f:5d:6e:8e:b7:84:3f:1c:fa:e6:6a:e0:
cf:33:05:87:c5:d5:c6:dc:08:80:20:6a:34:ff:34:
bb:ee:28:14:d6:a2:6d:fc:a6:12:87:7d:b7:7a:d2:
df:d7:98:c7:55:21:a6:da:1e:9f:52:0e:87:23:db:
a5:58:70:3d:17:2f:da:03:35:b9:ea:3a:d5:7c:ff:
58:81:93:12:a5:c7:96:6f:4c:c5:cb:69:bb:7f:38:
f8:38:3d:2a:d7:37:5b:8b:2b:ae:b8:12:e1:c1:9c:
77:2c:d5:99:27:57:ea:33:9e:60:a0:f4:cd:cd:06:
95:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:03:50:E0:CA:E4:9D:FE:D7:C9:98:11:D4:E9:B5:09:27:04:DB:53
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
62:a5:19:ea:aa:6f:dc:3a:f6:2d:a0:72:ee:dd:7b:12:79:85:
6c:e4:9b:48:b9:8e:83:40:79:f0:6b:98:f0:97:a4:6e:49:84:
c7:0f:56:f2:77:99:ce:f5:1f:45:76:ce:ed:52:c3:c3:e9:52:
90:b6:ac:63:a1:8e:14:54:8d:af:b5:19:db:cb:2b:54:90:0a:
7b:57:e5:91:a9:16:6a:13:e1:3f:b6:98:3d:b9:d7:c3:17:96:
80:4e:f1:69:c0:99:0d:26:b8:76:68:6c:d5:b5:be:7c:da:7c:
bd:39:63:fe:b7:cc:7e:04:76:e0:65:9d:7e:85:4b:3e:b2:21:
b7:56:6d:a9:8f:6c:fd:81:32:43:81:e6:42:60:06:0d:4b:ed:
04:67:d5:11:a9:cb:bb:2f:7f:20:4c:97:e1:db:40:e3:14:47:
69:6e:d5:c0:2a:53:e9:a5:0e:6e:da:22:0e:24:dc:1b:0c:f6:
ee:e7:c5:14:53:cf:eb:d6:d6:ea:91:f2:9c:12:a0:6e:1b:00:
85:5e:10:fd:33:5c:b5:33:bf:69:b9:c8:8b:ad:e6:79:89:d6:
13:1c:f2:88:bd:33:b4:9d:46:89:63:36:3c:59:ed:af:7b:d6:
13:b4:fd:3c:f0:30:02:ac:81:b2:38:8c:9d:03:0c:fc:00:8b:
dc:d8:04:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 02:15:00 2026 by rpki-client