Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: cL0TlC0eBQfHVv09SL5T5mq5d2NV5oKhsogX8i5Dgmo=
Subject key identifier: 6C:CE:28:F6:A7:14:00:73:3B:9F:DF:ED:39:9D:9F:2F:B5:EB:FE:71
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 0199FC8F91D4B7E66A092440A59FE8FF952A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0AF0
Signing time: Sun 19 Oct 2025 13:01:31 +0000
Manifest this update: Sun 19 Oct 2025 13:01:31 +0000
Manifest next update: Mon 20 Oct 2025 13:01:31 +0000
Files and hashes: 1: Q4eb_NSVD1Iy6yzBzsYZdGRXZqY.roa (hash: ZnYNRkpn3lYvlFcVLCOCLjxdS7Ti3DktlWPMIiudM+0=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: W1TO/viDfWSIH+DRSvaR15goX5gmhyVJYlRUcza+SRo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 20 Oct 2025 13:01:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:99:fc:8f:91:d4:b7:e6:6a:09:24:40:a5:9f:e8:ff:95:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Oct 19 13:01:31 2025 GMT
Not After : Oct 20 13:01:31 2025 GMT
Subject: CN=6cce28f6a71400733b9fdfed399d9f2fb5ebfe71
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:b1:9f:fa:78:85:81:64:b9:2d:29:bd:60:e5:
01:f1:19:09:6d:76:21:e6:37:88:15:db:f5:a1:9e:
5f:3b:71:e8:8e:af:c8:66:6f:c7:07:93:e5:14:bb:
eb:42:45:2c:a1:14:7a:21:58:74:99:64:f3:0a:d9:
c0:bb:d8:d8:58:4e:79:6b:1f:90:fa:2e:c0:82:d8:
c2:49:a9:b4:c8:8c:49:93:29:6a:20:bc:df:a0:d1:
88:30:e7:0d:d8:7e:5c:8b:90:76:4d:64:78:30:d7:
1d:08:23:50:36:5b:09:ee:06:d1:c3:7d:05:7f:a3:
ed:90:54:a0:27:54:3c:9a:48:12:c3:18:28:e4:61:
54:ef:44:13:ea:ac:9f:df:c2:b5:b7:68:99:ce:69:
b9:10:7e:e4:8c:7a:5e:f4:70:6f:06:26:0f:fb:2b:
6d:1d:43:a0:a0:00:35:81:6b:36:da:76:4d:c3:e9:
72:b4:84:5c:26:e5:98:66:7e:ca:08:a2:90:5c:82:
e0:7d:3a:25:17:73:fb:60:e4:c6:fb:ba:2f:17:19:
f9:e0:6e:12:0c:c8:56:df:b8:fb:b3:a5:34:9c:97:
be:bf:e4:49:3f:09:57:8d:cc:d4:54:5b:53:52:c0:
b4:3a:eb:68:6d:4e:15:58:a7:18:02:31:4c:1b:65:
90:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:CE:28:F6:A7:14:00:73:3B:9F:DF:ED:39:9D:9F:2F:B5:EB:FE:71
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b2:84:db:5c:2e:3a:d6:5b:c1:32:6e:1c:1c:37:77:05:99:a4:
36:dd:6c:9d:64:65:27:44:af:bb:bf:28:99:04:7d:60:d0:51:
26:a8:e7:28:d7:3f:79:c9:b5:76:e5:e9:03:d8:a2:58:e6:d6:
1e:32:5b:94:22:03:e2:30:a3:9a:bf:98:0e:c4:5d:eb:10:6b:
8a:7f:e2:ab:97:b2:39:0b:c4:17:09:6d:34:d5:6b:9a:ff:9b:
80:cb:1c:e2:91:48:99:a6:9b:11:b2:3f:d8:bd:0b:25:c4:62:
c6:e8:05:bd:cd:6d:de:95:a6:77:b5:a7:8e:67:d1:47:50:54:
fb:6f:c0:f1:90:03:1a:8a:1d:5a:eb:78:86:b6:0e:5d:b8:20:
26:f1:3b:40:db:d1:a0:df:c9:ab:a6:50:80:e9:a9:a9:a3:b2:
1c:41:74:5e:15:da:6a:99:bd:49:37:56:3a:21:1a:b1:d9:7b:
f8:91:fd:19:d6:e6:23:dc:e7:ff:fa:ec:af:57:5f:36:8a:12:
73:00:80:4f:8f:8a:19:c8:d4:ce:a0:2e:b2:52:5e:14:35:09:
24:4c:79:50:a1:0e:ae:78:89:96:d9:15:37:80:b2:f4:4d:f1:
11:35:17:83:e9:36:92:de:2e:c7:d5:ae:fe:0a:57:a5:0c:b4:
cc:17:7c:e5
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZn8j5HUt+ZqCSRApZ/o/5UqMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy
YzQyMjMwHhcNMjUxMDE5MTMwMTMxWhcNMjUxMDIwMTMwMTMxWjAzMTEwLwYDVQQD
Eyg2Y2NlMjhmNmE3MTQwMDczM2I5ZmRmZWQzOTlkOWYyZmI1ZWJmZTcxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrGf+niFgWS5LSm9YOUB8RkJbXYh
5jeIFdv1oZ5fO3Hojq/IZm/HB5PlFLvrQkUsoRR6IVh0mWTzCtnAu9jYWE55ax+Q
+i7AgtjCSam0yIxJkylqILzfoNGIMOcN2H5ci5B2TWR4MNcdCCNQNlsJ7gbRw30F
f6PtkFSgJ1Q8mkgSwxgo5GFU70QT6qyf38K1t2iZzmm5EH7kjHpe9HBvBiYP+ytt
HUOgoAA1gWs22nZNw+lytIRcJuWYZn7KCKKQXILgfTolF3P7YOTG+7ovFxn54G4S
DMhW37j7s6U0nJe+v+RJPwlXjczUVFtTUsC0OutobU4VWKcYAjFMG2WQIwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFGzOKPanFABzO5/f7Tmdny+16/5xMB8GA1UdIwQY
MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt
MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh
LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsoTbXC46
1lvBMm4cHDd3BZmkNt1snWRlJ0Svu78omQR9YNBRJqjnKNc/ecm1duXpA9iiWObW
HjJblCID4jCjmr+YDsRd6xBrin/iq5eyOQvEFwltNNVrmv+bgMsc4pFImaabEbI/
2L0LJcRixugFvc1t3pWmd7WnjmfRR1BU+2/A8ZADGoodWut4hrYOXbggJvE7QNvR
oN/Jq6ZQgOmpqaOyHEF0XhXaapm9STdWOiEasdl7+JH9GdbmI9zn//rsr1dfNooS
cwCAT4+KGcjUzqAuslJeFDUJJEx5UKEOrniJltkVN4Cy9E3xETUXg+k2kt4ux9Wu
/gpXpQy0zBd85Q==
-----END CERTIFICATE-----
Generated at Sun Oct 19 22:29:50 2025 by rpki-client