Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: 0SGzI9R8Kx5GkbxybjA+DsnAPmk+kd0T8bI3U0EqC1o=
Subject key identifier: 29:72:9A:DC:83:51:58:1F:42:94:C1:96:A7:7E:A1:12:EE:77:FC:A2
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 019CAB6BC9435697C2FBF89A8DD3C09EDF9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 10E3
Signing time: Sun 01 Mar 2026 22:01:33 +0000
Manifest this update: Sun 01 Mar 2026 22:01:33 +0000
Manifest next update: Mon 02 Mar 2026 22:01:33 +0000
Files and hashes: 1: T9aoETtBOnAVOsZczCvbKoC8bLo.roa (hash: VbBc2wBHX0IMIYgXxrNNTjAei7gPUDMqr5TSGjCiTRo=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: 4hBmfoFEyozLvKSH6omY4CDoEy3URoUtXDkIFCoBVBs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 22:01:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:6b:c9:43:56:97:c2:fb:f8:9a:8d:d3:c0:9e:df:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Mar 1 22:01:33 2026 GMT
Not After : Mar 2 22:01:33 2026 GMT
Subject: CN=29729adc8351581f4294c196a77ea112ee77fca2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:6b:8c:d1:02:d4:8d:8c:d9:97:fa:37:eb:2e:
fa:80:72:c7:f1:fc:93:ed:77:b1:e4:6c:84:23:23:
a6:d4:7c:b0:6c:a5:15:04:57:0d:9d:5f:06:c2:75:
5e:fe:8a:0a:cf:e7:0d:2c:2a:7e:da:23:d4:f4:55:
3d:90:e7:3b:29:76:20:33:a4:6b:17:c0:9e:e5:6a:
d6:da:dd:10:47:84:e9:89:90:b8:83:b6:58:a6:aa:
ef:5e:d9:60:22:15:88:01:b7:57:9d:9c:bb:4a:e9:
b5:3b:ac:e0:94:05:db:d2:a8:4c:3a:01:3b:26:88:
d1:7d:54:ff:df:0d:73:51:33:d9:c5:68:76:68:03:
92:8d:4c:1e:f3:ae:08:12:d1:0c:af:98:23:bb:21:
56:b8:04:73:78:33:59:06:0d:80:4a:97:b2:1e:74:
bf:62:37:99:09:fc:af:78:65:b0:65:4d:0f:34:7e:
63:58:e1:47:dd:78:d8:10:29:72:39:27:e9:0d:5c:
ee:88:da:0f:53:5a:bf:53:58:89:7b:5c:a0:b5:99:
5f:74:97:c4:73:22:48:0d:21:f2:42:bd:a6:76:e6:
16:20:52:b7:a9:9a:99:83:d0:17:ac:e3:77:70:b5:
98:b0:ac:8c:fd:d2:a5:b7:e9:6a:fc:64:3c:12:3f:
2b:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
29:72:9A:DC:83:51:58:1F:42:94:C1:96:A7:7E:A1:12:EE:77:FC:A2
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:1a:a3:f1:2f:1e:68:41:99:42:27:9a:d9:4d:19:b1:d1:e7:
2d:fb:d7:a3:04:d2:bf:f1:c2:6c:e9:00:9c:a4:1e:c3:95:a9:
e9:c4:b3:71:f4:5e:c7:12:07:24:9e:a3:cf:5f:84:a2:82:b8:
9f:94:7b:29:3a:91:74:cc:c0:7c:10:68:f4:fd:46:f6:8d:c8:
f9:8d:52:15:ce:83:b2:dc:04:74:da:38:ed:e1:e5:11:2f:6b:
29:06:2b:05:18:55:f1:ab:a7:b2:2e:a0:4a:ee:64:ef:87:b8:
25:8d:d5:f9:e5:f2:c4:48:7a:52:bc:83:9f:f2:b4:72:ac:58:
89:dd:f4:c1:91:48:bb:9d:57:a5:95:65:7f:5e:a5:02:bd:2e:
8c:23:7a:47:00:74:f2:af:e3:89:56:29:91:be:34:1c:c0:d3:
f2:fd:ac:f3:1c:6a:f4:e1:02:bd:fa:ac:95:1a:09:4c:ca:06:
e7:9d:ca:99:2d:ee:ad:2a:9f:c2:ac:dc:b5:fb:ff:49:b7:c2:
3d:0f:c3:1a:d6:89:65:60:06:24:57:42:2f:bd:3f:2b:1a:4f:
f2:72:df:d9:2b:dc:90:e1:04:dd:e0:70:ff:7b:c8:f4:b0:f6:
cb:f2:ce:07:63:d5:f7:ef:b6:aa:2c:8d:bf:fb:18:ed:ea:08:
ca:7c:f2:00
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyra8lDVpfC+/iajdPAnt+fMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMDIwMzZhNDNkYWQwNmI2YzJjYzY0YmRlNzY3ODcwNjc2
Zjg3YjMwHhcNMjYwMzAxMjIwMTMzWhcNMjYwMzAyMjIwMTMzWjAzMTEwLwYDVQQD
EygyOTcyOWFkYzgzNTE1ODFmNDI5NGMxOTZhNzdlYTExMmVlNzdmY2EyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumuM0QLUjYzZl/o36y76gHLH8fyT
7Xex5GyEIyOm1HywbKUVBFcNnV8GwnVe/ooKz+cNLCp+2iPU9FU9kOc7KXYgM6Rr
F8Ce5WrW2t0QR4TpiZC4g7ZYpqrvXtlgIhWIAbdXnZy7Sum1O6zglAXb0qhMOgE7
JojRfVT/3w1zUTPZxWh2aAOSjUwe864IEtEMr5gjuyFWuARzeDNZBg2ASpeyHnS/
YjeZCfyveGWwZU0PNH5jWOFH3XjYEClyOSfpDVzuiNoPU1q/U1iJe1ygtZlfdJfE
cyJIDSHyQr2mduYWIFK3qZqZg9AXrON3cLWYsKyM/dKlt+lq/GQ8Ej8rQwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFClymtyDUVgfQpTBlqd+oRLud/yiMB8GA1UdIwQY
MBaAFJICA2pD2tBrbCzGS952eHBnb4ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAt
NzNkY2VkMzk3MDdmLzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAtNzNkY2VkMzk3MDdm
LzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlRqj8S8e
aEGZQiea2U0ZsdHnLfvXowTSv/HCbOkAnKQew5Wp6cSzcfRexxIHJJ6jz1+EooK4
n5R7KTqRdMzAfBBo9P1G9o3I+Y1SFc6DstwEdNo47eHlES9rKQYrBRhV8aunsi6g
Su5k74e4JY3V+eXyxEh6UryDn/K0cqxYid30wZFIu51XpZVlf16lAr0ujCN6RwB0
8q/jiVYpkb40HMDT8v2s8xxq9OECvfqslRoJTMoG553KmS3urSqfwqzctfv/SbfC
PQ/DGtaJZWAGJFdCL70/KxpP8nLf2SvckOEE3eBw/3vI9LD2y/LOB2PV9++2qiyN
v/sY7eoIynzyAA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 06:32:54 2026 by rpki-client