Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: +qT3rpXL2NkXPhkyvd7ZTxnY6c+AXlHTUQq6fjUmjjI=
Subject key identifier: 05:40:E9:3C:A8:27:D8:38:21:20:E6:35:BE:34:23:AD:17:6A:1E:B0
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 019D992B36C643F5C829ACD7822A2B3037B8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0CCF
Signing time: Fri 17 Apr 2026 02:00:39 +0000
Manifest this update: Fri 17 Apr 2026 02:00:39 +0000
Manifest next update: Sat 18 Apr 2026 02:00:39 +0000
Files and hashes: 1: cBSRB4O0rt965GGsn8A2s4pg_DA.roa (hash: uu3le68VCrwbgy10AnjrGBO0DA+D/b5MUJEn6iEvayk=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: MQvKw6PPNsz2dKZIlMKuH9PJJHOVrxuOT8N0+rCqUlM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 02:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:99:2b:36:c6:43:f5:c8:29:ac:d7:82:2a:2b:30:37:b8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Apr 17 02:00:39 2026 GMT
Not After : Apr 18 02:00:39 2026 GMT
Subject: CN=0540e93ca827d8382120e635be3423ad176a1eb0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:5f:f3:b7:eb:d1:b7:a2:ac:ab:cf:87:fe:8f:
3d:f7:2c:c9:4d:07:1e:84:16:5a:91:5b:d5:6e:32:
e1:8a:9b:8b:c9:52:d8:6d:ea:05:52:1d:a5:26:e8:
28:62:51:3c:10:86:c6:57:83:31:88:79:a5:d7:a1:
86:27:8c:6c:f0:c9:48:25:1f:73:b4:f9:17:bc:16:
48:50:32:68:2c:73:4c:76:54:88:3a:ce:bf:e8:79:
47:13:57:4c:20:cd:4d:65:94:1f:62:e6:1c:0a:be:
6f:4c:61:8a:02:b3:aa:7b:2d:fb:4f:33:05:0a:aa:
ff:99:26:7c:6d:82:04:35:c1:bb:3e:ea:af:0f:d9:
71:05:66:db:11:f2:25:37:e8:a6:f9:10:ce:24:f5:
72:df:50:80:5c:d3:96:bb:8d:43:a6:a3:b3:cd:b7:
df:8f:9b:95:c6:1a:ca:47:ad:a1:2b:71:94:4f:2f:
bb:d4:e2:ab:63:d1:23:0c:96:6a:95:c6:94:fd:67:
a6:0a:05:39:86:ac:da:09:63:53:07:5a:37:0e:e5:
21:6e:d1:d0:e1:ed:e0:16:29:18:af:5e:ee:93:a6:
b1:39:0c:bc:4e:f0:4e:dd:36:32:58:cd:94:7b:d7:
5d:fd:90:c6:86:11:2e:83:16:49:3b:87:b8:97:bd:
68:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:40:E9:3C:A8:27:D8:38:21:20:E6:35:BE:34:23:AD:17:6A:1E:B0
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:9a:1f:f4:45:f9:18:5e:81:93:63:09:59:63:d1:59:0b:bb:
ff:7f:bb:d0:27:b0:1f:ac:d9:00:0c:ec:a4:7e:2e:4a:d5:07:
d5:4c:2b:82:49:d4:ba:51:3e:11:ef:c7:e8:02:b5:61:7b:ab:
6f:b9:f9:9a:69:70:8d:bd:5d:47:8c:11:35:f8:db:a5:03:d4:
29:4d:16:be:7e:cd:60:ad:8b:92:d0:40:56:fa:b2:ae:68:95:
3f:42:4a:27:d7:72:10:64:fe:40:9a:73:75:9b:d6:cc:95:00:
fd:15:e4:5e:92:9c:e3:49:c7:2a:e7:4e:de:21:0a:52:f3:0b:
cb:d5:11:4d:34:37:d5:17:ef:ac:45:2e:7e:22:6d:d3:58:d5:
b4:13:13:88:9f:0c:62:83:c3:ab:5a:cb:4b:8f:f8:cd:25:d3:
49:97:c3:7e:ae:df:c5:50:d0:73:68:ee:75:3c:31:76:93:d0:
6f:43:af:dc:78:e4:85:f4:09:1b:e3:ee:14:08:1e:c3:ca:ce:
55:35:ab:b2:a1:7d:46:67:be:22:8c:e7:68:a6:1a:d8:e7:3a:
a8:8a:fd:34:83:2a:07:a8:ba:b7:a0:19:a5:2d:dc:45:25:35:
4f:5d:91:5b:e1:51:cf:96:7f:fd:eb:d0:ac:e0:de:b6:1a:b9:
f6:d1:08:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 10:43:13 2026 by rpki-client