Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: Q19SuGbvlE3MOzBTucxDkdrwEGZm7JAzeRS/TZ6hgVI=
Subject key identifier: B8:95:D0:C6:71:7C:79:FA:FF:FC:62:B1:C2:8F:B0:C8:23:F9:6E:9B
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 019CAC475B917CF983BEE6457D423B578CD2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 02:01:23 +0000
Manifest this update: Mon 02 Mar 2026 02:01:23 +0000
Manifest next update: Tue 03 Mar 2026 02:01:23 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: XJwpP0HBowZELEPp7OojopCSG07IRXa63/mraf+xvp4=)
2: rAXOeYyJicjxp8FzJx__Y7hlvEM.roa (hash: shr4TV48j/I82nbVkR38hVjMhfoyIR4wttCVbDSd4eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:47:5b:91:7c:f9:83:be:e6:45:7d:42:3b:57:8c:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Mar 2 02:01:23 2026 GMT
Not After : Mar 3 02:01:23 2026 GMT
Subject: CN=b895d0c6717c79fafffc62b1c28fb0c823f96e9b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:b3:e1:80:b3:82:7a:82:16:81:a6:21:8c:69:
67:d0:3e:99:ca:33:11:45:4d:c0:61:05:a8:12:12:
b9:28:18:6a:31:ef:48:1b:52:2d:da:02:8b:fa:f4:
83:77:52:98:42:65:a9:b5:f3:cd:a4:04:58:e0:cb:
ee:a4:1c:45:63:9b:68:85:43:17:bf:2e:d1:09:14:
3a:6a:ff:64:cb:9c:9b:7b:06:ef:90:64:b3:a0:4d:
77:21:0d:dd:19:14:ab:19:33:5e:d4:28:32:b8:a0:
27:16:9f:4a:37:3d:84:bb:7f:7b:ad:8f:f3:bc:88:
10:36:45:46:f1:a7:07:73:81:45:f1:05:87:48:bc:
6b:5d:b6:47:13:66:92:f0:c8:d5:e2:02:f4:37:83:
c5:3b:44:d3:ff:ec:54:8f:fe:0a:e1:7b:f9:14:47:
df:7d:25:6e:dc:b4:96:7b:aa:e9:a7:0c:72:9c:d0:
ca:bd:49:5e:d4:4a:38:bf:09:6e:c6:c7:b4:29:e3:
48:96:57:82:a3:67:da:f9:a7:10:0b:dc:42:bf:dd:
67:8a:17:0c:95:60:9c:60:2c:9c:b4:55:2d:d7:db:
ed:bc:88:69:67:d3:05:a4:53:fa:fe:2d:51:b1:05:
76:1b:41:f1:1c:79:c5:10:92:57:8c:60:3d:9e:b9:
52:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:95:D0:C6:71:7C:79:FA:FF:FC:62:B1:C2:8F:B0:C8:23:F9:6E:9B
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b1:c7:49:1c:b7:9a:67:64:0b:31:6e:5b:04:8d:d0:c8:42:3e:
39:16:49:c5:f2:12:6a:f5:b0:33:79:0d:8e:e5:09:01:dd:f7:
b6:94:eb:1b:c0:ce:d5:18:e2:77:05:62:59:7f:dc:78:cc:ba:
39:25:92:12:18:8a:26:b0:b9:5d:c7:e3:0e:57:3c:2e:15:21:
48:e8:f4:63:e9:9d:e6:a7:c5:5f:61:3b:8b:cf:2a:61:b7:90:
7e:37:22:89:9e:17:3f:e7:b0:19:8f:5e:b3:10:55:9b:37:26:
ca:b9:a0:d6:87:50:5e:16:0a:48:3f:f8:d1:ea:93:dc:b2:f3:
c5:58:ab:89:98:b9:97:4a:85:01:c3:48:55:53:6f:b1:9f:bc:
86:c4:61:48:52:f8:46:ec:d7:9a:3d:78:ee:7c:f2:ae:39:ed:
3e:c3:32:c2:2f:6d:78:37:7f:89:e0:0c:fd:0f:51:85:64:f6:
3b:d4:87:10:d1:f1:65:4d:40:28:37:0f:af:80:11:2c:d2:79:
ba:07:85:53:bc:e7:69:52:75:d0:70:ee:f1:09:84:82:00:01:
30:6c:32:f4:49:09:85:80:e1:66:62:59:9a:be:a3:d6:26:bf:
04:32:18:51:ce:b9:a3:30:64:17:1d:1a:69:47:bd:fd:da:ce:
51:12:aa:7d
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysR1uRfPmDvuZFfUI7V4zSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4YzIyMDJhNDQzNTM3ZmI4ZmIyODA1NjdhMTc0ODVmMTIz
MGM0MTEwHhcNMjYwMzAyMDIwMTIzWhcNMjYwMzAzMDIwMTIzWjAzMTEwLwYDVQQD
EyhiODk1ZDBjNjcxN2M3OWZhZmZmYzYyYjFjMjhmYjBjODIzZjk2ZTliMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwbPhgLOCeoIWgaYhjGln0D6ZyjMR
RU3AYQWoEhK5KBhqMe9IG1It2gKL+vSDd1KYQmWptfPNpARY4MvupBxFY5tohUMX
vy7RCRQ6av9ky5ybewbvkGSzoE13IQ3dGRSrGTNe1CgyuKAnFp9KNz2Eu397rY/z
vIgQNkVG8acHc4FF8QWHSLxrXbZHE2aS8MjV4gL0N4PFO0TT/+xUj/4K4Xv5FEff
fSVu3LSWe6rppwxynNDKvUle1Eo4vwluxse0KeNIlleCo2fa+acQC9xCv91nihcM
lWCcYCyctFUt19vtvIhpZ9MFpFP6/i1RsQV2G0HxHHnFEJJXjGA9nrlSIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLiV0MZxfHn6//xiscKPsMgj+W6bMB8GA1UdIwQY
MBaAFCjCICpENTf7j7KAVnoXSF8SMMQRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS01JZ0trUTFOX3VQc29CV2VoZElYeEl3eEJFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOC9hMmNlNjQtMzNhZi00NWZlLTkwZWIt
ODlkMjYxMWE5NWRiLzEvS01JZ0trUTFOX3VQc29CV2VoZElYeEl3eEJFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wOC9hMmNlNjQtMzNhZi00NWZlLTkwZWItODlkMjYxMWE5NWRi
LzEvS01JZ0trUTFOX3VQc29CV2VoZElYeEl3eEJFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAscdJHLea
Z2QLMW5bBI3QyEI+ORZJxfISavWwM3kNjuUJAd33tpTrG8DO1RjidwViWX/ceMy6
OSWSEhiKJrC5XcfjDlc8LhUhSOj0Y+md5qfFX2E7i88qYbeQfjciiZ4XP+ewGY9e
sxBVmzcmyrmg1odQXhYKSD/40eqT3LLzxViriZi5l0qFAcNIVVNvsZ+8hsRhSFL4
RuzXmj147nzyrjntPsMywi9teDd/ieAM/Q9RhWT2O9SHENHxZU1AKDcPr4ARLNJ5
ugeFU7znaVJ10HDu8QmEggABMGwy9EkJhYDhZmJZmr6j1ia/BDIYUc65ozBkFx0a
aUe9/drOURKqfQ==
-----END CERTIFICATE-----
Generated at Mon Mar 2 10:39:42 2026 by rpki-client