Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: JwMqYtB4RUCnrPBuhB3ykP1Wt2aZB9254TjrvN5XPVk=
Subject key identifier: C4:82:2F:B7:D9:03:77:C1:CA:42:FE:F8:B7:7E:0B:78:A6:48:AB:0D
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 019DA340E2157A8D876D91A53B703322B8CE
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 0E35
Signing time: Sun 19 Apr 2026 01:00:31 +0000
Manifest this update: Sun 19 Apr 2026 01:00:31 +0000
Manifest next update: Mon 20 Apr 2026 01:00:31 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: VSrkZLUrQ1Dh2UAwIqPhGSicVUNCMq8cDJTJi1L7lYw=)
2: jY0MoOJ3PtdveQuCsZ0fuBIhTjY.roa (hash: vqPVQAGkx6I5WnNS9zEmXw+PjdH2vmfPnggrjPunD0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Apr 2026 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:a3:40:e2:15:7a:8d:87:6d:91:a5:3b:70:33:22:b8:ce
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Apr 19 01:00:31 2026 GMT
Not After : Apr 20 01:00:31 2026 GMT
Subject: CN=c4822fb7d90377c1ca42fef8b77e0b78a648ab0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:7a:b9:80:a5:67:91:d6:2a:1d:77:df:9b:82:
f6:fe:0c:da:4c:22:64:6c:65:33:0f:b0:dc:6b:ce:
dc:c3:0c:d9:27:ce:30:f3:c7:42:c8:4c:92:fd:91:
2d:be:dd:dc:d5:53:d1:4b:d0:e9:3e:52:0e:37:5d:
b9:f8:bf:86:56:ea:c3:7f:5b:5a:04:fd:3d:66:57:
c5:32:b0:ff:ce:ea:2e:3e:a3:cb:77:d4:5c:92:cf:
1f:cf:19:0e:1a:17:f9:30:c2:f4:5a:2a:f0:00:dc:
39:af:b7:05:a8:3b:e1:b8:29:61:74:f0:1e:1b:03:
d7:32:32:3c:7b:3f:5c:c9:4d:66:f3:e4:dd:f7:00:
1b:a0:1c:52:20:cb:64:b1:5a:4b:27:a4:0f:7b:a8:
2e:58:54:a3:42:e8:7f:1e:20:a2:6d:86:9b:b4:f1:
04:cb:e0:8c:f1:a3:83:41:5a:7f:ef:29:41:cf:f7:
cb:c9:9a:da:67:68:87:fe:f8:d7:43:fb:62:80:18:
8c:bd:fa:f9:c1:f4:12:0f:77:b9:70:b6:80:a6:2a:
dd:7e:57:ba:b9:9e:fd:50:7a:b4:f9:15:2d:ae:7b:
8d:f4:b5:02:77:61:7c:1a:28:54:2c:85:39:d5:88:
83:68:30:95:9a:94:bc:2f:ba:70:6b:90:cf:a8:e5:
04:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C4:82:2F:B7:D9:03:77:C1:CA:42:FE:F8:B7:7E:0B:78:A6:48:AB:0D
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:e0:85:33:cc:29:50:89:a3:bb:ce:ef:be:16:ad:b5:9f:56:
45:33:9d:66:f5:a4:8f:36:ac:8f:38:c6:4b:b7:7e:23:69:96:
f0:df:10:b6:b6:1e:57:44:45:57:4c:05:5a:3b:9b:63:ed:4e:
17:2f:62:ba:98:ee:21:0e:38:11:29:3d:ef:ed:02:7b:88:2b:
9b:34:92:cc:75:21:50:ae:bd:59:ea:d6:b4:ed:32:fe:e3:47:
4d:2e:b8:9e:9c:86:2d:95:d3:8c:74:ea:60:1f:cb:ba:6f:92:
04:bc:30:71:2a:68:4e:91:ee:5e:82:f3:fc:f0:ab:27:81:3c:
7b:81:2b:ed:60:62:72:c5:60:e4:50:f0:cf:60:b0:5e:af:8b:
b7:12:81:43:10:3d:03:d6:37:aa:5e:a2:59:2d:4a:1c:91:80:
e0:7c:89:ef:9d:22:b7:94:dd:6b:55:75:c1:9b:16:5a:db:52:
e5:58:50:19:d1:c3:24:07:b1:67:c4:eb:25:fa:6d:77:d4:c2:
4d:51:86:4e:80:c5:f9:ed:1f:8d:81:61:54:0a:b2:4a:03:77:
1d:0e:bb:0b:3d:2a:93:5c:30:44:b2:db:0a:e5:a9:28:01:b4:
f9:12:2d:66:ba:ce:46:c9:82:f3:08:5a:4c:8f:82:28:de:28:
69:6d:7b:de
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 19 08:11:51 2026 by rpki-client