Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: pyo1j9dTqxfjlgaQPgk7kjbKt7jCjvPD0ZX836W7Y5k=
Subject key identifier: 30:DE:29:4B:33:F3:5E:F3:5F:49:1E:1F:78:8F:9F:60:2F:86:A2:48
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 019CABA1E08A91DA0D78358CAFBC1BDC158B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0C54
Signing time: Sun 01 Mar 2026 23:00:38 +0000
Manifest this update: Sun 01 Mar 2026 23:00:38 +0000
Manifest next update: Mon 02 Mar 2026 23:00:38 +0000
Files and hashes: 1: cBSRB4O0rt965GGsn8A2s4pg_DA.roa (hash: uu3le68VCrwbgy10AnjrGBO0DA+D/b5MUJEn6iEvayk=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: uOj4K4NPynXbKgowHPBfS+muIey0f53EGrT6Bp448ac=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:a1:e0:8a:91:da:0d:78:35:8c:af:bc:1b:dc:15:8b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Mar 1 23:00:38 2026 GMT
Not After : Mar 2 23:00:38 2026 GMT
Subject: CN=30de294b33f35ef35f491e1f788f9f602f86a248
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:8a:b0:f8:ab:73:29:1c:df:0e:84:1d:02:a5:
29:02:b5:0e:a2:4a:f7:67:28:dd:7c:c5:55:a7:a4:
85:26:4d:9c:02:e2:ce:b6:6f:fb:b3:26:c4:9a:62:
57:db:0a:d7:ab:93:21:e0:62:be:0f:92:6b:c3:b9:
26:49:e3:c6:b3:3a:b1:97:9e:90:3b:58:1a:87:32:
c8:c8:aa:03:b2:55:3e:66:5d:e5:5f:b3:ec:95:14:
ae:8f:3c:7d:24:40:65:84:bf:2d:a5:3a:6d:d5:45:
37:1d:cf:48:07:dd:04:2c:7e:80:f6:d1:a7:0a:b6:
97:47:e4:25:1b:74:4d:e3:4a:96:d0:a6:53:f3:70:
8a:c8:15:7d:aa:3f:b7:b1:3b:61:aa:57:23:d6:bb:
ae:bc:bc:f4:40:f3:70:b9:da:fd:34:a0:81:c9:9e:
8c:56:67:c7:ef:83:38:bc:19:e0:57:f9:e3:8e:58:
5c:99:34:e5:59:0c:56:9a:1b:59:31:3c:03:c0:31:
fb:c2:31:2c:61:83:51:d4:eb:ce:0e:c9:a0:7d:34:
8c:33:d2:70:5a:d9:74:5c:57:8b:4a:f9:56:ee:c1:
2a:79:0f:e7:e4:c3:20:4f:47:18:d8:47:23:0e:5a:
17:bf:62:7b:56:93:3b:c0:c7:be:3c:45:f6:3a:02:
b5:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:DE:29:4B:33:F3:5E:F3:5F:49:1E:1F:78:8F:9F:60:2F:86:A2:48
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:8d:83:7f:20:e9:1f:43:ae:15:6f:7c:76:6d:e5:b9:a3:40:
72:83:ef:4f:ac:b6:24:8c:14:ec:e9:43:fd:d0:7a:72:95:1a:
68:a0:3e:da:bb:70:81:c9:7a:2b:c4:e7:b8:87:24:11:b9:23:
87:b9:02:cb:c7:15:3d:49:cd:e9:23:cb:f2:1a:65:fa:60:32:
61:37:d7:9e:a5:35:e0:b3:55:2a:22:58:71:59:20:85:f6:3b:
02:62:ad:97:50:45:dd:3d:25:f5:fc:25:0c:30:c1:16:70:77:
d1:9f:f9:af:72:be:4a:56:8c:36:6b:b5:1b:fa:19:03:a3:ba:
90:7f:f0:dd:ac:b6:96:13:16:79:e0:4a:f3:02:97:b4:e9:a0:
43:2b:84:50:b6:9d:0d:32:23:38:ad:cd:98:79:0d:f4:b6:04:
d4:5d:5b:fc:a5:11:cd:ba:da:f0:f6:c9:eb:23:ba:7d:b2:92:
68:bd:06:28:3b:bb:1d:16:02:7a:7c:df:ab:18:56:09:66:85:
97:b3:dd:4c:7c:e9:ca:c8:7e:2b:2e:d3:25:ac:e6:0b:73:5a:
a0:fd:76:ed:95:7e:e0:ab:3e:2b:40:31:bd:7a:28:19:61:54:
3c:17:ec:0d:81:7d:73:8b:44:9f:6e:ce:f4:5d:b4:a8:51:dc:
b6:21:41:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 03:27:54 2026 by rpki-client