Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
File: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft (raw, json)
Hash identifier: PA27q35lBmpPhgdQloLDGirkVwa7oVSMLEJ2Ozzy1BU=
Subject key identifier: 3F:D8:C7:5D:9F:3F:BD:F8:D7:C1:CA:C8:79:68:B0:3B:14:51:37:14
Authority key identifier: 28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
Certificate issuer: /CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Certificate serial: 019D98F5388C3CF98A8B408360D581504500
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
Manifest number: 130B
Signing time: Fri 17 Apr 2026 01:01:40 +0000
Manifest this update: Fri 17 Apr 2026 01:01:40 +0000
Manifest next update: Sat 18 Apr 2026 01:01:40 +0000
Files and hashes: 1: 6Rn-wxtOzItHCQZfTf_aB44eX3w.roa (hash: CLsXfryDKRJpVOl8XMFhcPTYQSBV9e1dqAwQW92Ka+4=)
2: KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl (hash: fx6/H9CzXOUOecUcFQYRi7YlPDhOXy9oTTCwUpf3CYc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 01:01:40 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f5:38:8c:3c:f9:8a:8b:40:83:60:d5:81:50:45:00
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=28f981c20aa652aa85e008bd262f7bc1f856c358
Validity
Not Before: Apr 17 01:01:40 2026 GMT
Not After : Apr 18 01:01:40 2026 GMT
Subject: CN=3fd8c75d9f3fbdf8d7c1cac87968b03b14513714
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:f5:9a:92:01:47:72:bf:06:5b:27:23:24:3a:
72:4a:9b:4d:96:21:05:2c:c2:aa:04:79:d6:ec:b9:
35:0d:6e:d6:a9:63:7d:a1:74:77:e5:9f:4f:29:27:
a8:24:34:80:bb:a2:3e:b2:5f:91:81:59:8e:55:66:
61:c6:e9:c9:51:2c:f9:ac:b0:90:b8:89:02:65:1c:
30:ca:12:b4:6e:79:55:42:06:de:e6:bb:a9:20:df:
e4:46:9b:46:74:6e:05:49:ea:ae:31:3d:58:a4:d2:
48:de:1a:39:84:9b:8f:70:59:13:95:45:fd:31:c9:
97:2b:10:3d:1e:bd:f4:ad:44:e8:3a:71:3e:9b:04:
64:b7:9c:35:05:5c:24:d6:16:02:1e:00:9e:26:0a:
0a:9d:5d:e4:7e:e3:98:64:64:f1:eb:31:6f:3a:86:
50:8e:cc:0c:87:f5:78:a8:0a:02:82:79:41:4e:57:
c0:f3:a8:8f:6a:d0:e4:e2:c0:e1:ce:d3:bc:41:d8:
14:97:14:ce:e1:19:45:2b:5a:a5:92:10:b4:df:89:
93:9f:15:10:77:a8:b7:8d:84:b4:95:34:fa:46:40:
64:d9:a4:c2:6c:5a:83:a1:2e:19:bc:6a:85:b1:63:
00:e5:1e:2e:e3:65:86:56:2d:94:eb:a0:c5:49:36:
32:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:D8:C7:5D:9F:3F:BD:F8:D7:C1:CA:C8:79:68:B0:3B:14:51:37:14
X509v3 Authority Key Identifier:
keyid:28:F9:81:C2:0A:A6:52:AA:85:E0:08:BD:26:2F:7B:C1:F8:56:C3:58
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/352f9a-4fde-484a-b923-c87fbbd03e86/1/KPmBwgqmUqqF4Ai9Ji97wfhWw1g.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:6b:5b:dd:01:53:32:9b:fb:36:73:7b:8b:3a:5b:03:e0:9c:
ad:0c:f3:40:a1:a8:bf:5d:e8:ed:2c:3a:e2:a2:13:b6:70:0c:
cd:a9:30:63:d0:95:be:63:d8:a5:ca:7d:ff:b7:d3:39:be:ea:
9d:cd:10:a6:26:90:f0:9d:4a:72:7b:d4:4f:98:02:0c:91:82:
ad:d3:b2:03:86:15:9d:0c:c5:ad:77:eb:e9:75:35:0c:dc:27:
a3:3e:92:56:1d:2c:6c:52:1a:b8:60:9a:e7:c7:23:88:b8:bd:
28:6f:e0:0c:a3:fb:cc:42:d1:19:7d:72:ab:21:a4:c9:bb:b0:
f2:cf:5a:89:ed:d4:3e:57:5e:a6:c5:38:33:cc:79:95:10:90:
30:a3:11:f1:e1:b4:68:bc:8a:2b:08:01:7a:79:97:6b:5d:e4:
f5:e6:55:bf:1a:8d:26:ad:75:07:40:ad:0c:af:97:64:4b:2b:
77:53:31:fe:e1:92:0b:5b:61:7c:63:f7:62:d8:77:11:d5:42:
94:b2:ac:7a:8e:67:c5:33:a6:28:13:0d:d3:fd:5d:22:f1:ba:
66:7f:78:de:42:62:99:c4:2a:67:71:49:bc:a6:01:11:c2:8d:
ff:54:90:f6:df:f9:15:7e:08:2f:f8:c5:a8:36:73:c4:8d:7d:
d1:76:f8:91
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:51:06 2026 by rpki-client