Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
File: KgGcraFj42jMM2J2PyBrPerE0yA.mft (raw, json)
Hash identifier: 8OD8OisinEg5WAcT70mvKStCSY2HKiXj0HxiCq/r580=
Subject key identifier: 7F:CF:F9:BB:90:F4:08:6D:19:EB:E9:98:EA:A0:29:1A:F6:78:99:6E
Authority key identifier: 2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
Certificate issuer: /CN=2a019cada163e368cc3362763f206b3deac4d320
Certificate serial: 019EBF23B73D3EF00C41C99CF8A3DEBB4A0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
Manifest number: 0EC8
Signing time: Sat 13 Jun 2026 04:00:49 +0000
Manifest this update: Sat 13 Jun 2026 04:00:49 +0000
Manifest next update: Sun 14 Jun 2026 04:00:49 +0000
Files and hashes: 1: KgGcraFj42jMM2J2PyBrPerE0yA.crl (hash: Uqm/efyyTNWcH5cYhv+uE7voHwCmNmNKUwbe2RjdnRA=)
2: jY0MoOJ3PtdveQuCsZ0fuBIhTjY.roa (hash: vqPVQAGkx6I5WnNS9zEmXw+PjdH2vmfPnggrjPunD0I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:b7:3d:3e:f0:0c:41:c9:9c:f8:a3:de:bb:4a:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a019cada163e368cc3362763f206b3deac4d320
Validity
Not Before: Jun 13 04:00:49 2026 GMT
Not After : Jun 14 04:00:49 2026 GMT
Subject: CN=7fcff9bb90f4086d19ebe998eaa0291af678996e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:7b:33:12:5f:e4:5d:70:da:1c:99:f2:bd:33:
1a:22:fb:84:8a:4c:0e:d5:bb:35:f2:fc:63:58:1a:
97:7b:9e:23:84:c6:1f:c4:59:4f:0b:d0:48:42:0c:
e9:d1:0c:b6:82:73:17:8d:17:0a:8e:ca:82:eb:08:
a2:59:e4:7d:ed:bf:3f:bb:52:b4:27:d9:71:f6:78:
40:e7:c8:23:f5:23:76:5b:9a:82:6b:c1:ca:ca:9c:
61:76:9b:19:f5:29:9f:54:47:2f:98:b6:c5:f9:9c:
0c:34:23:3f:5c:8c:6f:59:33:55:1c:05:1d:a1:c0:
be:69:29:ab:0f:35:72:dd:dd:6b:2b:db:21:73:25:
c1:b6:3a:56:92:a7:ab:25:db:f7:76:7f:72:55:b4:
26:2e:68:d5:bc:cc:fe:42:a8:d3:fe:05:5d:9d:ea:
ec:ea:eb:89:2a:28:9c:c2:ca:a2:17:75:f5:16:c6:
9f:c5:47:a3:92:91:38:a5:fc:17:cc:29:92:c1:be:
a9:b7:7c:87:e7:fd:00:35:3e:83:26:09:68:33:4b:
59:f5:ff:cc:d7:d2:b7:02:71:c7:4c:64:85:14:52:
29:a4:b0:10:dd:d0:a0:5e:53:d4:d3:d6:1d:66:32:
63:7e:fc:36:10:ca:da:6c:0d:17:0a:8e:5e:51:2b:
4a:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7F:CF:F9:BB:90:F4:08:6D:19:EB:E9:98:EA:A0:29:1A:F6:78:99:6E
X509v3 Authority Key Identifier:
keyid:2A:01:9C:AD:A1:63:E3:68:CC:33:62:76:3F:20:6B:3D:EA:C4:D3:20
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgGcraFj42jMM2J2PyBrPerE0yA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/43a672-d151-4c4e-9809-149f6365ffda/1/KgGcraFj42jMM2J2PyBrPerE0yA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2d:7e:0a:6d:39:eb:5c:de:cb:0d:b4:f4:1e:6c:46:db:43:b4:
c7:89:c9:49:86:31:f3:02:96:59:0b:3f:6b:90:7f:60:03:dd:
8f:37:5a:71:b0:ab:f7:e1:42:e5:35:92:34:74:c8:a2:19:b6:
fb:f9:32:15:b8:11:7d:44:36:67:2b:7f:6e:69:8f:ee:e2:96:
5b:a6:be:84:59:1b:98:be:93:0f:1d:44:bb:c4:92:b7:1a:9b:
22:ed:4d:c8:3b:1f:bd:a5:02:a7:50:76:bd:94:45:b9:73:a0:
e1:36:c2:2a:1a:86:93:e1:7e:0b:0b:ed:95:b7:d0:9e:4c:d9:
75:9e:77:d0:56:2a:d4:db:c7:4a:bc:98:c5:56:f8:14:af:fe:
cf:16:97:63:3f:a3:03:47:b9:71:02:d9:b5:40:70:c8:9a:8d:
77:ce:3d:49:7f:e5:a1:16:c6:1c:fe:1a:fb:c4:d5:b3:6a:0d:
80:03:78:97:49:2c:7e:c0:83:04:28:00:79:e6:c5:34:ba:f4:
e4:80:84:6e:57:ef:94:b9:0e:bf:1a:e4:33:d0:3c:15:46:30:
ca:f5:ce:bf:62:8b:70:5b:0c:db:55:ed:2c:3f:f2:91:e0:5c:
1b:15:a3:2c:48:6e:a6:0f:c6:d7:68:2a:12:96:c9:c9:a1:a4:
91:8f:fc:37
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:47:43 2026 by rpki-client