Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: T8N7tKdqzDkOGwT/q+qbcDjhvz+VjlFhHXAtDSF4MWg=
Subject key identifier: F4:45:AF:47:C7:42:98:E4:0D:CA:1D:60:D8:5C:E2:D2:5E:74:0A:D6
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 019CAB6B7D017C98A1A01F7686B120FE19D2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 1290
Signing time: Sun 01 Mar 2026 22:01:14 +0000
Manifest this update: Sun 01 Mar 2026 22:01:14 +0000
Manifest next update: Mon 02 Mar 2026 22:01:14 +0000
Files and hashes: 1: 6Rn-wxtOzItHCQZfTf_aB44eX3w.roa (hash: CLsXfryDKRJpVOl8XMFhcPTYQSBV9e1dqAwQW92Ka+4=)
2: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: jNb7lVcNIv4h3kxHuGd1rjJHgTImDDtwu3R2FbZcSIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 15:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:7d:01:7c:98:a1:a0:1f:76:86:b1:20:fe:19:d2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Mar 1 22:01:14 2026 GMT
Not After : Mar 2 22:01:14 2026 GMT
Subject: CN=f445af47c74298e40dca1d60d85ce2d25e740ad6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:6c:e8:93:c2:83:c5:b6:64:d5:83:4b:e6:3d:
f6:21:96:37:77:d7:87:5e:cc:40:66:b7:fa:9d:bb:
e6:10:4b:df:a6:67:4e:66:f7:bc:83:a3:13:34:23:
ed:0e:75:51:b5:0a:f7:00:01:67:a8:24:1b:09:9c:
1b:fe:65:0b:75:c4:90:27:25:f5:62:9d:1a:f9:47:
4f:27:c4:ad:ef:be:28:83:fd:4c:13:e3:dc:67:49:
ec:5f:e5:2b:a5:af:76:29:0b:bb:00:8a:18:80:ba:
e7:a4:23:12:f6:61:c2:64:a1:f6:25:e5:77:fc:d5:
30:2a:da:60:3e:ac:ce:77:35:de:f7:c7:54:70:57:
82:28:d9:95:94:b9:95:c0:1a:ad:73:22:47:e2:16:
b8:cb:5b:62:69:05:0b:f0:c8:fd:fd:0d:75:9e:ef:
13:69:20:3c:09:15:98:6f:ff:9a:21:40:a5:8c:df:
5d:c9:88:e0:5d:84:7a:33:fa:08:dd:f4:59:20:f8:
da:13:6b:6d:d1:ed:af:86:81:b2:79:ac:68:4d:4a:
fa:4b:91:1a:ac:92:89:99:5e:bd:4d:4e:32:fe:ca:
c2:13:78:50:1b:d0:3c:4c:f6:03:cf:52:dd:74:97:
cf:0d:8c:e6:73:47:96:02:39:cb:f6:91:ec:fc:3d:
4e:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F4:45:AF:47:C7:42:98:E4:0D:CA:1D:60:D8:5C:E2:D2:5E:74:0A:D6
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:1b:0f:18:36:34:bf:07:c3:b7:a6:cf:bc:8b:18:6f:22:d4:
89:67:dc:e6:59:37:74:8e:8b:2c:73:cb:85:f1:ff:11:38:b7:
4d:0d:cf:3b:b4:c4:1b:cc:ad:b5:99:6b:fa:7c:a4:3d:a6:b6:
7f:59:4e:8a:75:31:df:af:f6:54:23:38:d6:aa:b0:6b:98:33:
9b:20:b7:87:12:d7:78:4d:47:9e:0e:e4:3d:84:12:cb:99:88:
b7:d8:78:0f:52:5d:e6:90:fc:5f:b7:4f:22:64:f9:68:0e:5a:
5a:ec:1d:51:ed:68:79:c6:f4:21:aa:d6:89:fe:2a:af:aa:8d:
a0:d1:1d:49:01:7d:34:ac:b9:f9:53:bd:48:7d:8a:e1:df:55:
6b:ea:71:39:47:2b:07:2a:e4:96:a5:55:ad:be:b1:e6:85:40:
ee:ad:01:41:bf:e7:d3:7b:3d:6f:d9:ee:ea:27:83:93:f0:7f:
3d:cd:4f:36:b3:00:b7:5a:bf:35:a4:0c:dd:7f:fd:21:0f:f0:
36:37:c4:45:b7:f6:dd:92:b8:f8:63:44:a6:0b:e2:f2:38:c0:
2e:e9:b9:f3:1f:45:77:98:d2:02:bb:99:13:8a:59:38:45:56:
d4:21:04:2b:1c:bf:90:f6:5c:9f:ef:d3:e7:b6:70:71:f3:a0:
31:01:0e:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra30BfJihoB92hrEg/hnSMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDI4Zjk4MWMyMGFhNjUyYWE4NWUwMDhiZDI2MmY3YmMxZjg1
NmMzNTgwHhcNMjYwMzAxMjIwMTE0WhcNMjYwMzAyMjIwMTE0WjAzMTEwLwYDVQQD
EyhmNDQ1YWY0N2M3NDI5OGU0MGRjYTFkNjBkODVjZTJkMjVlNzQwYWQ2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8Gzok8KDxbZk1YNL5j32IZY3d9eH
XsxAZrf6nbvmEEvfpmdOZve8g6MTNCPtDnVRtQr3AAFnqCQbCZwb/mULdcSQJyX1
Yp0a+UdPJ8St774og/1ME+PcZ0nsX+Urpa92KQu7AIoYgLrnpCMS9mHCZKH2JeV3
/NUwKtpgPqzOdzXe98dUcFeCKNmVlLmVwBqtcyJH4ha4y1tiaQUL8Mj9/Q11nu8T
aSA8CRWYb/+aIUCljN9dyYjgXYR6M/oI3fRZIPjaE2tt0e2vhoGyeaxoTUr6S5Ea
rJKJmV69TU4y/srCE3hQG9A8TPYDz1LddJfPDYzmc0eWAjnL9pHs/D1OYQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPRFr0fHQpjkDcodYNhc4tJedArWMB8GA1UdIwQY
MBaAFCj5gcIKplKqheAIvSYve8H4VsNYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS8zNTJmOWEtNGZkZS00ODRhLWI5MjMt
Yzg3ZmJiZDAzZTg2LzEvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMS8zNTJmOWEtNGZkZS00ODRhLWI5MjMtYzg3ZmJiZDAzZTg2
LzEvS1BtQndncW1VcXFGNEFpOUppOTd3ZmhXdzFnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjhsPGDY0
vwfDt6bPvIsYbyLUiWfc5lk3dI6LLHPLhfH/ETi3TQ3PO7TEG8yttZlr+nykPaa2
f1lOinUx36/2VCM41qqwa5gzmyC3hxLXeE1Hng7kPYQSy5mIt9h4D1Jd5pD8X7dP
ImT5aA5aWuwdUe1oecb0IarWif4qr6qNoNEdSQF9NKy5+VO9SH2K4d9Va+pxOUcr
ByrklqVVrb6x5oVA7q0BQb/n03s9b9nu6ieDk/B/Pc1PNrMAt1q/NaQM3X/9IQ/w
NjfERbf23ZK4+GNEpgvi8jjALum58x9Fd5jSAruZE4pZOEVW1CEEKxy/kPZcn+/T
57ZwcfOgMQEOEA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 00:52:49 2026 by rpki-client