Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
File: KgzEYwHIsf1GOSkwGPulNlOiZbI.mft (raw, json)
Hash identifier: JmaHe8GCPUnzaBdB5lRsPijDoc/mGWUDoeN0jwkbrgc=
Subject key identifier: 1A:33:CE:88:61:8B:7D:30:CD:7E:FB:EA:73:37:C3:08:E1:20:4D:4D
Authority key identifier: 2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
Certificate issuer: /CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Certificate serial: 019CABD9C9E14C203A548056F29D18E536F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 00:01:42 +0000
Manifest this update: Mon 02 Mar 2026 00:01:42 +0000
Manifest next update: Tue 03 Mar 2026 00:01:42 +0000
Files and hashes: 1: Dol_Yn1EUI6Y4JETRI7DtbG1wTY.roa (hash: oEleDgSfi1/0GdFoPLAt8sQUnHsmQoFm+KbSbKM7DK8=)
2: KgzEYwHIsf1GOSkwGPulNlOiZbI.crl (hash: IUZ+95cV34xeYpXzJZwj5uOBBbRGl6U7hY8GyzZ8c5E=)
3: gK2Rq9Zs-Y9rHAKXi0YVfwz0vlI.roa (hash: soCJxr1Be9fMlxT+zXNdcRqutbnVfTkKZ0DnRO9Wh6M=)
4: kUwG0iZuxyNBHJJd8N9jQGPedHQ.roa (hash: hPe1XR077zP9VhoNA1k11ZvtiSoFyhO3Q2vyCxM6cZg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d9:c9:e1:4c:20:3a:54:80:56:f2:9d:18:e5:36:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0cc46301c8b1fd4639293018fba53653a265b2
Validity
Not Before: Mar 2 00:01:42 2026 GMT
Not After : Mar 3 00:01:42 2026 GMT
Subject: CN=1a33ce88618b7d30cd7efbea7337c308e1204d4d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:dd:9e:dd:32:75:c9:04:0a:40:1a:3a:2c:bc:
d0:90:02:30:a6:1a:35:14:56:f7:dc:bd:d3:b3:2e:
fd:65:9d:2e:6d:e5:ce:5d:8b:e6:c5:2f:de:0f:a3:
fc:35:ef:d9:39:aa:fb:1f:2f:b8:f3:6d:00:3d:2f:
7c:3a:3d:9e:61:bf:8f:53:66:8e:7d:00:f9:46:69:
89:b1:63:f9:a0:58:11:5a:d7:ff:98:9c:e0:9b:3e:
e7:08:94:ab:53:04:3f:92:f2:6e:fa:67:89:e8:a9:
29:8e:b2:82:8a:2a:ce:f1:40:f1:cd:ba:84:16:11:
7e:1a:98:6d:ca:b0:0c:cc:37:18:5b:5d:e7:fe:77:
85:b4:bb:b1:ba:99:1f:59:bd:07:2b:42:2e:b6:86:
67:3d:e5:0c:0f:0f:4a:d3:5a:1c:a8:41:25:ec:4c:
20:3d:be:f8:e9:82:06:71:ce:d0:82:16:34:dc:1d:
2e:02:b4:e4:b2:4a:ef:69:3b:98:42:84:4a:31:e8:
db:82:a3:03:ac:a1:59:17:1f:4d:4a:d2:a7:61:e2:
13:56:04:7c:95:d7:d8:40:f3:94:a6:36:eb:24:b9:
ec:44:46:10:08:82:cf:12:52:55:bd:59:e2:1e:6d:
b8:a5:98:aa:27:31:f0:ac:f7:3c:76:3e:62:4a:92:
e2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:33:CE:88:61:8B:7D:30:CD:7E:FB:EA:73:37:C3:08:E1:20:4D:4D
X509v3 Authority Key Identifier:
keyid:2A:0C:C4:63:01:C8:B1:FD:46:39:29:30:18:FB:A5:36:53:A2:65:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgzEYwHIsf1GOSkwGPulNlOiZbI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/2862d1-2cc9-4565-86c2-2bb5597a2435/1/KgzEYwHIsf1GOSkwGPulNlOiZbI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
15:c5:86:46:16:4f:50:f4:cc:18:63:17:2f:27:9f:2a:8c:40:
95:37:1e:0e:85:38:2f:48:bf:a3:af:d4:5b:30:7e:4d:4d:87:
af:25:e2:c5:9c:8d:ed:19:74:8c:1b:71:3e:a9:d3:5a:1f:9a:
46:22:b9:7d:7a:d0:61:56:61:e7:f8:21:42:b0:e4:f8:f1:ce:
e0:cd:d9:7d:8b:c1:ad:4b:2f:f0:f7:68:f3:7f:c2:b7:f2:c6:
62:65:86:3c:0e:c5:5c:8e:b5:60:ec:e3:ba:42:50:81:21:c1:
aa:9b:78:0f:5a:06:31:ca:9e:3d:e4:d0:24:02:f4:b8:fc:a4:
66:c3:f7:d2:0d:c9:84:a5:d2:f1:5a:e7:67:ae:c2:c8:aa:09:
de:f0:a5:b7:23:94:b0:c6:10:25:5e:08:c0:1d:7d:ed:26:4a:
7d:7a:a0:28:a6:08:dd:63:ef:4d:87:26:2b:47:ca:59:43:54:
2d:f6:fd:1b:c5:bc:0b:37:71:87:75:8d:3e:ea:ce:e0:e7:57:
f1:2b:29:a5:cd:bf:f7:a3:2c:fb:d7:6a:41:d4:e9:fa:b4:70:
54:cd:39:36:6d:99:2c:8b:ac:9c:0a:e8:f1:ee:33:3e:60:6c:
f0:2d:48:52:8e:b5:b8:fe:54:ea:34:cf:04:7b:0e:c4:b4:77:
f4:58:2a:ca
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyr2cnhTCA6VIBW8p0Y5TbyMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMGNjNDYzMDFjOGIxZmQ0NjM5MjkzMDE4ZmJhNTM2NTNh
MjY1YjIwHhcNMjYwMzAyMDAwMTQyWhcNMjYwMzAzMDAwMTQyWjAzMTEwLwYDVQQD
EygxYTMzY2U4ODYxOGI3ZDMwY2Q3ZWZiZWE3MzM3YzMwOGUxMjA0ZDRkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3N2e3TJ1yQQKQBo6LLzQkAIwpho1
FFb33L3Tsy79ZZ0ubeXOXYvmxS/eD6P8Ne/ZOar7Hy+4820APS98Oj2eYb+PU2aO
fQD5RmmJsWP5oFgRWtf/mJzgmz7nCJSrUwQ/kvJu+meJ6KkpjrKCiirO8UDxzbqE
FhF+GphtyrAMzDcYW13n/neFtLuxupkfWb0HK0IutoZnPeUMDw9K01ocqEEl7Ewg
Pb746YIGcc7QghY03B0uArTkskrvaTuYQoRKMejbgqMDrKFZFx9NStKnYeITVgR8
ldfYQPOUpjbrJLnsREYQCILPElJVvVniHm24pZiqJzHwrPc8dj5iSpLiEQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBozzohhi30wzX776nM3wwjhIE1NMB8GA1UdIwQY
MBaAFCoMxGMByLH9RjkpMBj7pTZTomWyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8yODYyZDEtMmNjOS00NTY1LTg2YzIt
MmJiNTU5N2EyNDM1LzEvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8yODYyZDEtMmNjOS00NTY1LTg2YzItMmJiNTU5N2EyNDM1
LzEvS2d6RVl3SElzZjFHT1Nrd0dQdWxObE9pWmJJLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFcWGRhZP
UPTMGGMXLyefKoxAlTceDoU4L0i/o6/UWzB+TU2HryXixZyN7Rl0jBtxPqnTWh+a
RiK5fXrQYVZh5/ghQrDk+PHO4M3ZfYvBrUsv8Pdo83/Ct/LGYmWGPA7FXI61YOzj
ukJQgSHBqpt4D1oGMcqePeTQJAL0uPykZsP30g3JhKXS8VrnZ67CyKoJ3vCltyOU
sMYQJV4IwB197SZKfXqgKKYI3WPvTYcmK0fKWUNULfb9G8W8Czdxh3WNPurO4OdX
8Ssppc2/96Ms+9dqQdTp+rRwVM05Nm2ZLIusnAro8e4zPmBs8C1IUo61uP5U6jTP
BHsOxLR39Fgqyg==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:06:13 2026 by rpki-client