Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
File: KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft (raw, json)
Hash identifier: 6tWn/9OZANYmWr56QvmYHv6VphESa//XlcfFI8HSj0o=
Subject key identifier: 7F:EE:72:8B:92:57:21:EF:05:6C:D5:A9:16:BE:68:63:63:94:18:52
Authority key identifier: 28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
Certificate issuer: /CN=28c2202a443537fb8fb280567a17485f1230c411
Certificate serial: 019D99CFE52004C110E1D78C3F564661244E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
Manifest number: 18C5
Signing time: Fri 17 Apr 2026 05:00:31 +0000
Manifest this update: Fri 17 Apr 2026 05:00:31 +0000
Manifest next update: Sat 18 Apr 2026 05:00:31 +0000
Files and hashes: 1: KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl (hash: cy5lcgVYijp+9tIzPraqnfuDBkF9XDOjCaUeY4i3EzA=)
2: rAXOeYyJicjxp8FzJx__Y7hlvEM.roa (hash: shr4TV48j/I82nbVkR38hVjMhfoyIR4wttCVbDSd4eg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:cf:e5:20:04:c1:10:e1:d7:8c:3f:56:46:61:24:4e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28c2202a443537fb8fb280567a17485f1230c411
Validity
Not Before: Apr 17 05:00:31 2026 GMT
Not After : Apr 18 05:00:31 2026 GMT
Subject: CN=7fee728b925721ef056cd5a916be686363941852
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7a:f8:75:16:83:5e:30:cb:84:b5:76:a8:31:
ba:be:46:3d:ed:37:8d:1b:52:d6:f7:73:dd:6f:d8:
3c:c9:ca:fc:87:db:52:5c:4f:80:ff:a4:04:1e:d8:
ef:b0:5b:e7:a4:ef:27:d7:92:b3:59:a5:8a:7c:e3:
d2:ca:c5:bf:1d:04:db:fe:a9:87:91:96:99:b1:09:
65:90:11:07:00:63:6a:74:54:48:dc:9f:23:1a:1e:
6b:27:c7:86:e9:4d:3b:70:fd:52:66:18:53:bc:4a:
51:8e:76:c0:8f:25:5d:0a:82:3a:3c:aa:f3:e7:b0:
25:75:b1:a2:e2:b7:0f:ae:94:21:72:6d:b2:fd:81:
54:53:62:99:87:f8:bd:e3:bd:c4:e4:23:34:5b:77:
e7:1d:42:d6:02:63:2c:b8:0a:ad:b6:0b:50:88:57:
40:d0:3a:fd:ea:e8:b6:e0:fe:00:5a:a3:7f:a7:99:
f5:09:68:0e:5e:49:d9:05:2e:a0:1f:70:a1:9b:6e:
48:eb:94:d3:c5:4d:f8:98:6a:48:35:26:5b:44:5c:
57:a3:70:db:85:7b:90:79:a9:06:47:84:ae:42:01:
a9:de:3f:e8:42:b1:11:f0:17:4f:6c:d9:a0:c3:8b:
38:38:48:e9:1b:51:89:f3:b0:8d:2e:da:70:13:8c:
a2:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:EE:72:8B:92:57:21:EF:05:6C:D5:A9:16:BE:68:63:63:94:18:52
X509v3 Authority Key Identifier:
keyid:28:C2:20:2A:44:35:37:FB:8F:B2:80:56:7A:17:48:5F:12:30:C4:11
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KMIgKkQ1N_uPsoBWehdIXxIwxBE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/08/a2ce64-33af-45fe-90eb-89d2611a95db/1/KMIgKkQ1N_uPsoBWehdIXxIwxBE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:0e:bc:79:ae:47:81:bf:69:f5:75:83:21:95:e7:58:f8:3f:
21:3f:87:da:80:8e:b4:80:ac:f8:7b:66:9e:0f:c7:15:80:76:
64:2d:0e:25:b5:b9:78:ef:c5:87:a2:a1:12:ef:a5:f7:6d:0d:
f2:d2:3a:8d:89:0c:05:34:4e:9c:20:9a:d1:c7:83:b0:ce:3b:
ee:f1:11:bd:88:6c:d7:23:ad:65:78:88:4e:0d:33:4f:a6:8e:
91:7f:20:b7:bb:5f:bb:9d:f9:04:e5:75:a9:81:99:bb:59:97:
02:b5:af:07:66:4f:28:df:72:15:2a:21:65:3e:bc:b1:cc:e5:
c1:02:ef:45:e1:1d:dc:e8:f8:cd:b1:0f:c3:06:04:60:d3:cf:
8c:f2:a2:a1:0c:48:d8:cb:86:ae:61:67:30:45:b5:50:96:fc:
04:98:f4:46:6e:c8:a6:d1:61:97:4c:e4:83:d9:7e:4c:cb:4e:
20:dd:4b:ca:ab:0d:2b:75:55:6f:3f:78:40:d8:48:55:87:81:
1a:cf:1b:c5:ed:83:77:0e:75:5b:80:21:ad:17:05:ee:66:63:
00:c9:79:3d:1f:d7:af:37:6b:18:ef:2f:bc:b6:bb:35:85:80:
7b:fe:69:b2:8c:91:36:29:f3:d3:20:42:f6:73:77:29:4f:98:
3c:d8:ce:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 07:27:17 2026 by rpki-client