Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
File: kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft (raw, json)
Hash identifier: W3pHpdXUV1MNKJn3QkAHEogCWaPfJZ8VWqtiZq0r6AE=
Subject key identifier: EA:80:CB:00:A3:78:BC:CC:B1:A2:F3:3B:D6:DC:B1:AA:F7:0D:7D:CF
Authority key identifier: 92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
Certificate issuer: /CN=92680145cfb2371ecf4c364726b64708572c4223
Certificate serial: 019D273B3E875FE80C0DA1F9F6EFBC341AA1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
Manifest number: 0C94
Signing time: Wed 25 Mar 2026 23:01:27 +0000
Manifest this update: Wed 25 Mar 2026 23:01:27 +0000
Manifest next update: Thu 26 Mar 2026 23:01:27 +0000
Files and hashes: 1: cBSRB4O0rt965GGsn8A2s4pg_DA.roa (hash: uu3le68VCrwbgy10AnjrGBO0DA+D/b5MUJEn6iEvayk=)
2: kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl (hash: LZ7yBkoZ2ZakHlr1/PyEfRCyOJiyvHupPwc/pi+W7Ig=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 26 Mar 2026 23:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:27:3b:3e:87:5f:e8:0c:0d:a1:f9:f6:ef:bc:34:1a:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=92680145cfb2371ecf4c364726b64708572c4223
Validity
Not Before: Mar 25 23:01:27 2026 GMT
Not After : Mar 26 23:01:27 2026 GMT
Subject: CN=ea80cb00a378bcccb1a2f33bd6dcb1aaf70d7dcf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:b0:89:9f:f8:26:80:b3:ae:d4:82:c4:52:ab:
59:0f:96:6c:65:a8:79:0b:85:22:a8:34:d6:32:86:
3c:da:38:15:7e:a3:81:a5:bd:af:da:54:55:29:17:
28:95:10:b4:75:95:ef:b3:03:07:d6:cd:35:dd:55:
50:94:2f:37:cc:f1:68:ff:c2:86:76:45:8e:5c:8e:
75:cc:7b:84:da:9b:22:b4:d7:46:bc:ee:5a:eb:9e:
38:93:40:bd:d5:73:0b:58:b9:bf:eb:a2:8a:5e:23:
fc:60:fe:c0:76:a8:4b:21:be:ae:fd:e8:7c:1c:55:
38:bd:a7:28:a7:c8:dc:e7:bb:d7:c7:05:50:29:1f:
fb:67:cc:8e:ee:a8:d8:fa:b1:62:f3:d3:f2:27:46:
09:c4:78:cb:85:87:09:7c:59:57:45:ca:ba:fc:b3:
ca:9e:05:5b:8f:9f:37:f6:1e:9a:cd:81:36:c4:b6:
ce:a1:bc:91:74:82:84:e9:67:aa:e1:ac:c3:f2:50:
7f:aa:dd:a6:25:ff:f0:9d:87:8f:7a:ab:ac:d5:25:
fb:48:68:66:35:67:1d:e4:8c:1e:34:44:f7:0e:ac:
b1:61:fc:97:66:64:46:bc:73:23:76:1f:dc:ce:dd:
ab:68:73:31:f0:f5:4d:da:04:7e:12:32:fe:2d:53:
73:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
EA:80:CB:00:A3:78:BC:CC:B1:A2:F3:3B:D6:DC:B1:AA:F7:0D:7D:CF
X509v3 Authority Key Identifier:
keyid:92:68:01:45:CF:B2:37:1E:CF:4C:36:47:26:B6:47:08:57:2C:42:23
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kmgBRc-yNx7PTDZHJrZHCFcsQiM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/13f69a-0bbd-4595-8a44-13d7bebf47ba/1/kmgBRc-yNx7PTDZHJrZHCFcsQiM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
10:df:5c:66:49:40:8e:5d:37:85:09:09:dc:ed:2b:d5:b3:af:
70:b5:d6:9d:5a:ff:6f:d3:9e:ea:71:30:52:d1:fb:56:87:96:
00:24:5f:1c:d5:4a:21:fd:fc:9c:47:d2:ae:21:90:a3:b2:0c:
e8:78:7f:c3:bd:1a:23:c8:e0:79:28:9e:f6:d3:79:e6:4c:0a:
34:90:d1:61:24:e9:dc:7b:a9:5a:70:b7:68:7c:63:ff:9d:f1:
8b:9e:36:03:10:24:a1:95:00:ae:b0:cf:b2:c1:26:6b:67:39:
80:1e:ce:ea:10:c7:1d:38:60:6d:a8:56:87:34:98:f1:f2:d5:
d6:29:e7:4a:e5:4a:b9:12:84:01:54:23:d9:a6:b6:e8:af:11:
ef:c4:56:61:8c:47:34:32:db:1c:b3:0c:af:c4:d1:a3:07:a2:
d6:39:93:a1:f8:c3:43:3d:99:6e:01:80:9d:57:33:0f:34:29:
ca:16:f9:72:9e:f4:67:ca:56:13:12:96:87:49:fd:45:7b:ad:
57:55:1f:3a:42:49:8a:92:93:11:47:da:45:4a:5c:d8:1f:48:
c0:cf:09:07:fd:5e:0c:f7:90:3e:e6:c9:17:71:95:78:26:ab:
fb:9d:ce:be:98:0c:20:cd:6a:81:1a:f6:5b:a3:88:37:fd:6f:
07:19:3c:4a
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0nOz6HX+gMDaH59u+8NBqhMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyNjgwMTQ1Y2ZiMjM3MWVjZjRjMzY0NzI2YjY0NzA4NTcy
YzQyMjMwHhcNMjYwMzI1MjMwMTI3WhcNMjYwMzI2MjMwMTI3WjAzMTEwLwYDVQQD
EyhlYTgwY2IwMGEzNzhiY2NjYjFhMmYzM2JkNmRjYjFhYWY3MGQ3ZGNmMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsLCJn/gmgLOu1ILEUqtZD5ZsZah5
C4UiqDTWMoY82jgVfqOBpb2v2lRVKRcolRC0dZXvswMH1s013VVQlC83zPFo/8KG
dkWOXI51zHuE2psitNdGvO5a6544k0C91XMLWLm/66KKXiP8YP7AdqhLIb6u/eh8
HFU4vacop8jc57vXxwVQKR/7Z8yO7qjY+rFi89PyJ0YJxHjLhYcJfFlXRcq6/LPK
ngVbj5839h6azYE2xLbOobyRdIKE6Weq4azD8lB/qt2mJf/wnYePequs1SX7SGhm
NWcd5IweNET3DqyxYfyXZmRGvHMjdh/czt2raHMx8PVN2gR+EjL+LVNz9wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOqAywCjeLzMsaLzO9bcsar3DX3PMB8GA1UdIwQY
MBaAFJJoAUXPsjcez0w2Rya2RwhXLEIjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQt
MTNkN2JlYmY0N2JhLzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYi8xM2Y2OWEtMGJiZC00NTk1LThhNDQtMTNkN2JlYmY0N2Jh
LzEva21nQlJjLXlOeDdQVERaSEpyWkhDRmNzUWlNLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEN9cZklA
jl03hQkJ3O0r1bOvcLXWnVr/b9Oe6nEwUtH7VoeWACRfHNVKIf38nEfSriGQo7IM
6Hh/w70aI8jgeSie9tN55kwKNJDRYSTp3HupWnC3aHxj/53xi542AxAkoZUArrDP
ssEma2c5gB7O6hDHHThgbahWhzSY8fLV1innSuVKuRKEAVQj2aa26K8R78RWYYxH
NDLbHLMMr8TRowei1jmTofjDQz2ZbgGAnVczDzQpyhb5cp70Z8pWExKWh0n9RXut
V1UfOkJJipKTEUfaRUpc2B9IwM8JB/1eDPeQPubJF3GVeCar+53OvpgMIM1qgRr2
W6OIN/1vBxk8Sg==
-----END CERTIFICATE-----
Generated at Thu Mar 26 05:00:39 2026 by rpki-client