Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
File: kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft (raw, json)
Hash identifier: ZDEsQWwwHhjj7vO0hu3XkB0UQh87sZT52HGS8qv96R0=
Subject key identifier: 17:11:2E:8D:FC:D5:CA:14:ED:21:2E:3F:18:F5:CE:B5:3B:73:79:5F
Authority key identifier: 92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
Certificate issuer: /CN=9202036a43dad06b6c2cc64bde767870676f87b3
Certificate serial: 019D9AE292CB2DF1DF9F72B6BF6DC7B33305
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
Manifest number: 115F
Signing time: Fri 17 Apr 2026 10:00:33 +0000
Manifest this update: Fri 17 Apr 2026 10:00:33 +0000
Manifest next update: Sat 18 Apr 2026 10:00:33 +0000
Files and hashes: 1: T9aoETtBOnAVOsZczCvbKoC8bLo.roa (hash: VbBc2wBHX0IMIYgXxrNNTjAei7gPUDMqr5TSGjCiTRo=)
2: kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl (hash: 2+4JDKQSJZsJ/UknkTjSo4gMGDjc6Ix4+si9QdHJ0T4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:e2:92:cb:2d:f1:df:9f:72:b6:bf:6d:c7:b3:33:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9202036a43dad06b6c2cc64bde767870676f87b3
Validity
Not Before: Apr 17 10:00:33 2026 GMT
Not After : Apr 18 10:00:33 2026 GMT
Subject: CN=17112e8dfcd5ca14ed212e3f18f5ceb53b73795f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:a6:5d:e6:a9:db:a3:f0:f0:73:44:14:6a:27:
f4:3e:65:38:aa:33:fb:7c:f5:86:c7:77:d0:aa:90:
c1:ef:f4:c5:66:f5:57:3e:38:56:84:a6:cb:05:5f:
82:cb:f2:dd:98:d4:be:56:c6:b4:5d:c7:9f:6f:58:
34:8f:8f:e5:f0:19:12:dc:d7:97:ac:16:90:7c:07:
61:44:0d:b5:6f:11:95:1b:f1:6b:0f:29:3a:0f:aa:
d6:8a:73:89:a7:a2:5b:cd:8c:cc:f6:b9:9f:43:bf:
75:3a:c9:90:eb:80:22:5b:71:cc:0c:3e:c4:c6:40:
b2:49:ed:11:fa:88:90:05:3e:6a:1c:ec:ba:fe:07:
aa:e8:8a:15:03:cc:60:0c:4f:9b:72:4c:dc:00:ec:
0f:92:0f:7b:93:e0:b7:88:af:61:c7:b3:49:41:9a:
0d:9c:ac:1a:a7:dc:1c:44:af:26:be:bb:92:9e:ef:
6f:2c:5d:7e:45:0e:ea:63:16:85:f3:79:ac:b6:dd:
d0:99:cf:6c:ad:64:ed:1a:a1:50:c4:2b:b7:47:89:
11:78:d3:b5:f5:c7:50:f1:34:b4:6f:61:62:91:4e:
df:04:db:fb:d8:b7:bc:1f:7d:ad:46:63:75:e5:f4:
b8:07:16:5e:95:8e:73:fc:5c:c5:21:ed:23:bd:09:
a6:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
17:11:2E:8D:FC:D5:CA:14:ED:21:2E:3F:18:F5:CE:B5:3B:73:79:5F
X509v3 Authority Key Identifier:
keyid:92:02:03:6A:43:DA:D0:6B:6C:2C:C6:4B:DE:76:78:70:67:6F:87:B3
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kgIDakPa0GtsLMZL3nZ4cGdvh7M.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/027688-d39c-484a-a450-73dced39707f/1/kgIDakPa0GtsLMZL3nZ4cGdvh7M.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
57:9a:e8:99:8d:a6:20:ec:49:6c:f5:16:61:d5:71:7f:5d:8c:
25:44:aa:5d:30:0d:28:36:73:34:0a:6a:0d:2f:94:b4:a8:b4:
79:3c:51:14:35:eb:5e:43:72:33:de:12:25:a5:18:ee:2a:98:
0d:6c:89:6a:8d:12:df:80:38:ee:1b:5d:63:3f:7b:ce:75:c7:
0f:96:88:8e:b8:24:37:4c:ec:d4:92:c2:51:18:f5:ed:fc:84:
cc:0c:ee:c6:a6:a5:82:b0:52:0e:79:20:63:c9:64:28:af:12:
fe:ca:ea:f3:4c:97:a4:c6:a9:f0:a1:55:8d:b2:7f:39:b2:1c:
b7:ee:4b:d8:3e:90:f8:1e:3a:a1:0a:06:bb:12:62:3a:5d:dd:
d2:bf:48:5a:cb:b9:27:bc:32:a5:aa:3e:88:30:70:8f:69:05:
e4:58:f1:a8:07:e3:05:3c:a5:9b:26:0d:71:a2:28:27:ee:b4:
d1:17:0a:8b:91:f8:f3:7c:06:05:e1:72:8d:82:12:fc:28:a9:
4d:ec:b0:e5:84:72:f7:6a:8a:b0:72:80:7f:e7:bd:bc:7e:59:
13:cf:30:7e:89:35:38:f8:33:fa:91:20:04:e9:92:ce:e7:46:
be:e3:52:8c:78:a7:2c:4d:9b:cd:37:8f:a4:14:f0:96:79:d7:
f5:45:67:fd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ2a4pLLLfHfn3K2v23HszMFMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyMDIwMzZhNDNkYWQwNmI2YzJjYzY0YmRlNzY3ODcwNjc2
Zjg3YjMwHhcNMjYwNDE3MTAwMDMzWhcNMjYwNDE4MTAwMDMzWjAzMTEwLwYDVQQD
EygxNzExMmU4ZGZjZDVjYTE0ZWQyMTJlM2YxOGY1Y2ViNTNiNzM3OTVmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKZd5qnbo/Dwc0QUaif0PmU4qjP7
fPWGx3fQqpDB7/TFZvVXPjhWhKbLBV+Cy/LdmNS+Vsa0Xcefb1g0j4/l8BkS3NeX
rBaQfAdhRA21bxGVG/FrDyk6D6rWinOJp6JbzYzM9rmfQ791OsmQ64AiW3HMDD7E
xkCySe0R+oiQBT5qHOy6/geq6IoVA8xgDE+bckzcAOwPkg97k+C3iK9hx7NJQZoN
nKwap9wcRK8mvruSnu9vLF1+RQ7qYxaF83mstt3Qmc9srWTtGqFQxCu3R4kReNO1
9cdQ8TS0b2FikU7fBNv72Le8H32tRmN15fS4BxZelY5z/FzFIe0jvQmmLwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFBcRLo381coU7SEuPxj1zrU7c3lfMB8GA1UdIwQY
MBaAFJICA2pD2tBrbCzGS952eHBnb4ezMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAt
NzNkY2VkMzk3MDdmLzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9lNy8wMjc2ODgtZDM5Yy00ODRhLWE0NTAtNzNkY2VkMzk3MDdm
LzEva2dJRGFrUGEwR3RzTE1aTDNuWjRjR2R2aDdNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV5romY2m
IOxJbPUWYdVxf12MJUSqXTANKDZzNApqDS+UtKi0eTxRFDXrXkNyM94SJaUY7iqY
DWyJao0S34A47htdYz97znXHD5aIjrgkN0zs1JLCURj17fyEzAzuxqalgrBSDnkg
Y8lkKK8S/srq80yXpMap8KFVjbJ/ObIct+5L2D6Q+B46oQoGuxJiOl3d0r9IWsu5
J7wypao+iDBwj2kF5FjxqAfjBTylmyYNcaIoJ+600RcKi5H483wGBeFyjYIS/Cip
Teyw5YRy92qKsHKAf+e9vH5ZE88wfok1OPgz+pEgBOmSzudGvuNSjHinLE2bzTeP
pBTwlnnX9UVn/Q==
-----END CERTIFICATE-----
Generated at Fri Apr 17 17:07:39 2026 by rpki-client