Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/fe39ca-9a22-4c09-906e-afdd304ccea5/1/KgE0Z2uONx1E752Fh_3NKzuYfKE.mft
File: KgE0Z2uONx1E752Fh_3NKzuYfKE.mft (raw, json)
Hash identifier: Uok7jgtTbv55VT/XPG9Ugc+PM8lP8mjE2R6jEH/Uw0Y=
Subject key identifier: BC:C5:0E:C3:84:27:A6:A1:96:BC:F4:EC:0A:D3:12:F4:47:6F:A9:45
Authority key identifier: 2A:01:34:67:6B:8E:37:1D:44:EF:9D:85:87:FD:CD:2B:3B:98:7C:A1
Certificate issuer: /CN=2a0134676b8e371d44ef9d8587fdcd2b3b987ca1
Certificate serial: 019D2884BE1C1645C8DB32191895F4733943
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KgE0Z2uONx1E752Fh_3NKzuYfKE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/fe39ca-9a22-4c09-906e-afdd304ccea5/1/KgE0Z2uONx1E752Fh_3NKzuYfKE.mft
Manifest number: 016F
Signing time: Thu 26 Mar 2026 05:01:21 +0000
Manifest this update: Thu 26 Mar 2026 05:01:21 +0000
Manifest next update: Fri 27 Mar 2026 05:01:21 +0000
Files and hashes: 1: 59eYrLYTpubQ7ziIIdqHTcUgjtA.roa (hash: PzWY9bzVIX+7Zn/yBvHJ738H8uZ2zoJS+QYerblWszM=)
2: KgE0Z2uONx1E752Fh_3NKzuYfKE.crl (hash: 4g2dEcGyeaIhOOFo40HuxNn15XO1xZ3ohXwrohjRNAk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/fe39ca-9a22-4c09-906e-afdd304ccea5/1/KgE0Z2uONx1E752Fh_3NKzuYfKE.crl
rsync://rpki.ripe.net/repository/DEFAULT/1c/fe39ca-9a22-4c09-906e-afdd304ccea5/1/KgE0Z2uONx1E752Fh_3NKzuYfKE.mft
rsync://rpki.ripe.net/repository/DEFAULT/KgE0Z2uONx1E752Fh_3NKzuYfKE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:84:be:1c:16:45:c8:db:32:19:18:95:f4:73:39:43
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a0134676b8e371d44ef9d8587fdcd2b3b987ca1
Validity
Not Before: Mar 26 05:01:21 2026 GMT
Not After : Mar 27 05:01:21 2026 GMT
Subject: CN=bcc50ec38427a6a196bcf4ec0ad312f4476fa945
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:cc:05:19:18:e8:9a:dd:ae:7f:98:61:3f:63:
0d:66:b0:6b:59:94:93:b8:40:63:3f:13:d9:8b:c4:
80:74:18:f5:93:22:8b:0d:78:f9:b2:6f:07:60:cc:
70:9b:85:ce:0d:11:c8:1d:6a:b5:37:6e:6d:13:6a:
65:0b:3b:5a:2d:7d:5b:21:24:70:ab:46:dd:f6:fe:
e2:a1:75:61:82:53:f2:06:8c:5c:45:62:66:7b:a3:
74:df:b5:cf:aa:3f:d2:37:6b:3e:62:ff:3d:4d:d9:
c2:ea:dc:0f:5d:c9:11:02:8a:c7:aa:1a:0f:60:42:
e0:4c:e0:86:2c:2f:4f:3d:3f:42:76:08:28:33:39:
91:a0:1e:8f:dc:99:28:18:1b:c6:d0:6b:30:f4:80:
67:30:05:7b:13:16:f7:53:7c:23:2b:cb:3e:b5:78:
01:74:57:c1:d3:dd:86:46:18:62:a4:6f:f9:49:bf:
88:c3:fc:df:fb:3e:ce:38:77:ef:54:95:48:81:55:
db:a1:c8:51:ea:1a:28:77:c6:70:f5:88:04:9d:44:
be:76:5d:a8:6a:8d:dd:1f:e0:ac:01:dd:fc:5a:65:
66:9c:c9:2c:f7:dc:73:65:fc:5f:d1:7d:2e:75:db:
d8:d8:6c:62:7b:b9:b6:ac:5d:44:4c:21:ac:d0:a4:
53:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:C5:0E:C3:84:27:A6:A1:96:BC:F4:EC:0A:D3:12:F4:47:6F:A9:45
X509v3 Authority Key Identifier:
keyid:2A:01:34:67:6B:8E:37:1D:44:EF:9D:85:87:FD:CD:2B:3B:98:7C:A1
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KgE0Z2uONx1E752Fh_3NKzuYfKE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/fe39ca-9a22-4c09-906e-afdd304ccea5/1/KgE0Z2uONx1E752Fh_3NKzuYfKE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/fe39ca-9a22-4c09-906e-afdd304ccea5/1/KgE0Z2uONx1E752Fh_3NKzuYfKE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2c:70:6a:f9:0e:65:4f:fa:31:d3:41:6a:06:c1:56:ab:23:8e:
d0:e6:0a:27:66:3a:a4:d4:52:1b:1c:30:3e:b7:63:cf:6f:c5:
6a:44:95:73:cb:a5:22:0f:01:d3:31:40:a2:1f:4d:06:05:3a:
5f:5c:0b:8e:2f:a5:18:76:eb:89:6d:df:2b:38:3e:19:99:d9:
b6:be:12:a1:af:31:f7:0e:42:dc:39:68:ef:2a:38:8a:34:d1:
ec:f4:a8:63:ec:41:4a:0e:ec:b9:54:53:65:b4:51:79:79:64:
33:97:ca:4d:7c:ba:34:a5:2b:8e:ab:77:34:e3:be:95:53:84:
d9:e3:48:b0:7d:0e:d6:58:61:21:89:d1:c6:09:fe:b2:f4:1f:
2b:15:5d:07:fe:9b:62:d1:12:07:49:20:99:90:4e:58:3a:63:
af:7a:f7:2c:f6:e4:f6:61:c7:8e:49:78:6f:da:e9:91:81:0a:
04:55:85:76:39:54:bd:c1:4e:2b:04:0f:37:f2:d9:e1:28:ff:
21:2c:cb:1c:7f:06:0e:98:15:14:48:51:a5:f2:28:b4:43:ed:
23:8c:53:81:8a:a3:bf:35:c7:6a:c3:5b:b4:9b:26:b4:e5:27:
ed:71:27:46:24:5a:49:33:55:c8:c6:d0:df:b2:dd:d7:ea:91:
56:78:8e:2c
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ0ohL4cFkXI2zIZGJX0czlDMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDJhMDEzNDY3NmI4ZTM3MWQ0NGVmOWQ4NTg3ZmRjZDJiM2I5
ODdjYTEwHhcNMjYwMzI2MDUwMTIxWhcNMjYwMzI3MDUwMTIxWjAzMTEwLwYDVQQD
EyhiY2M1MGVjMzg0MjdhNmExOTZiY2Y0ZWMwYWQzMTJmNDQ3NmZhOTQ1MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMwFGRjomt2uf5hhP2MNZrBrWZST
uEBjPxPZi8SAdBj1kyKLDXj5sm8HYMxwm4XODRHIHWq1N25tE2plCztaLX1bISRw
q0bd9v7ioXVhglPyBoxcRWJme6N037XPqj/SN2s+Yv89TdnC6twPXckRAorHqhoP
YELgTOCGLC9PPT9CdggoMzmRoB6P3JkoGBvG0Gsw9IBnMAV7Exb3U3wjK8s+tXgB
dFfB092GRhhipG/5Sb+Iw/zf+z7OOHfvVJVIgVXbochR6hood8Zw9YgEnUS+dl2o
ao3dH+CsAd38WmVmnMks99xzZfxf0X0uddvY2Gxie7m2rF1ETCGs0KRT+QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFLzFDsOEJ6ahlrz07ArTEvRHb6lFMB8GA1UdIwQY
MBaAFCoBNGdrjjcdRO+dhYf9zSs7mHyhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvS2dFMFoydU9OeDFFNzUyRmhfM05LenVZZktFLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy9mZTM5Y2EtOWEyMi00YzA5LTkwNmUt
YWZkZDMwNGNjZWE1LzEvS2dFMFoydU9OeDFFNzUyRmhfM05LenVZZktFLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xYy9mZTM5Y2EtOWEyMi00YzA5LTkwNmUtYWZkZDMwNGNjZWE1
LzEvS2dFMFoydU9OeDFFNzUyRmhfM05LenVZZktFLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALHBq+Q5l
T/ox00FqBsFWqyOO0OYKJ2Y6pNRSGxwwPrdjz2/FakSVc8ulIg8B0zFAoh9NBgU6
X1wLji+lGHbriW3fKzg+GZnZtr4Soa8x9w5C3Dlo7yo4ijTR7PSoY+xBSg7suVRT
ZbRReXlkM5fKTXy6NKUrjqt3NOO+lVOE2eNIsH0O1lhhIYnRxgn+svQfKxVdB/6b
YtESB0kgmZBOWDpjr3r3LPbk9mHHjkl4b9rpkYEKBFWFdjlUvcFOKwQPN/LZ4Sj/
ISzLHH8GDpgVFEhRpfIotEPtI4xTgYqjvzXHasNbtJsmtOUn7XEnRiRaSTNVyMbQ
37Ld1+qRVniOLA==
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:21:18 2026 by rpki-client