Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: wfxT6z8OPz06Y5B6E3y+WZMkMfeTWg5yzyyuXjRAJqo=
Subject key identifier: E2:59:AE:D6:68:9E:86:75:DF:26:92:D2:B7:72:1E:90:52:65:DB:0B
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 019DCD871B7C64BD50117717FEF5A09AF197
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0D0C
Signing time: Mon 27 Apr 2026 06:01:16 +0000
Manifest this update: Mon 27 Apr 2026 06:01:16 +0000
Manifest next update: Tue 28 Apr 2026 06:01:16 +0000
Files and hashes: 1: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: aIMv/nv5fNk5x/YGmRrWsBJ6GuCP5cmePhihlk+lTJw=)
2: lDc3tS_p7tCgEhrNKf_-eSIcLqg.roa (hash: kzElkKos01LmCGpTnk/MyVTZjZ5HsnG3CnANkjfIhL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 28 Apr 2026 06:01:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:cd:87:1b:7c:64:bd:50:11:77:17:fe:f5:a0:9a:f1:97
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Apr 27 06:01:16 2026 GMT
Not After : Apr 28 06:01:16 2026 GMT
Subject: CN=e259aed6689e8675df2692d2b7721e905265db0b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:af:9d:52:df:8f:9d:8b:89:12:0e:23:17:b0:b8:
df:1c:8f:3f:90:03:cc:9c:2a:be:74:23:2b:95:af:
12:e4:86:69:5e:99:14:23:e0:d8:b1:e6:39:68:85:
68:68:85:b7:df:78:50:d1:eb:95:b6:62:4f:3e:66:
fb:fa:85:c5:17:6e:c3:3c:bd:7d:b3:c9:e2:0e:16:
a1:0a:7f:16:ec:e9:7d:f9:f3:92:e0:8a:5a:d8:d7:
d5:68:41:5f:34:05:35:f5:87:38:97:db:8c:77:7e:
91:27:91:ad:4b:5c:0c:2f:a3:a6:ff:38:c9:ab:28:
8d:c7:b5:97:cb:37:93:7d:4d:af:2e:9c:c1:05:e1:
5e:2c:1e:69:0c:b7:cf:b6:4e:e7:f9:57:ef:39:f8:
3c:bf:13:3a:2a:6f:f1:41:eb:ba:35:8a:79:ec:c6:
07:6a:60:49:ae:38:0e:90:a2:66:1a:82:c7:c3:65:
89:a1:fd:b8:80:82:85:5a:6f:1b:6e:6e:28:a6:e8:
cb:f7:a2:4c:9b:14:74:7b:2a:c9:b5:60:63:a0:4f:
68:13:14:ca:73:8e:60:aa:90:85:d3:71:4e:74:e9:
50:ec:04:29:e5:63:22:c8:ac:d5:9c:1f:c9:8c:1f:
c5:90:c1:a0:e2:ca:12:d0:b4:b1:47:c1:9a:2c:36:
dd:87
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:59:AE:D6:68:9E:86:75:DF:26:92:D2:B7:72:1E:90:52:65:DB:0B
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
40:ab:81:62:03:c7:01:1a:f3:37:c1:5f:da:a1:00:bb:56:dc:
6c:63:4b:8e:ec:7f:df:cb:a6:c2:4c:f7:97:68:c8:6d:73:d4:
90:99:73:48:e6:d6:6b:0e:b5:2d:e0:ea:9b:e1:d7:0e:b0:1e:
ca:b9:2f:3e:57:35:f4:bf:98:f1:89:19:2a:dc:37:3b:c6:8d:
ff:c3:81:21:42:e7:ad:9d:e5:d1:f3:52:29:2c:a7:a7:70:bc:
55:be:44:2d:92:ed:72:01:85:56:2a:a0:e6:6f:81:9d:6b:66:
91:76:aa:46:40:17:1d:b3:5d:f4:8e:57:9d:41:24:28:d3:02:
2f:32:04:f6:ad:a7:9d:a5:43:28:a3:29:1e:00:42:92:4a:21:
6f:43:ff:c3:cc:3f:d6:40:19:3d:c8:24:8a:c1:07:c8:f1:bf:
4f:bc:f7:60:25:4b:87:99:83:6e:2e:f4:db:c5:22:08:75:87:
ae:d9:d2:cf:49:f7:86:bc:ef:fc:f1:c7:1a:e5:2b:12:18:8a:
95:50:24:62:aa:e5:34:34:d5:26:2c:06:ff:b7:cd:1d:fe:bd:
a4:3b:a6:31:cf:dd:1e:f0:42:cd:50:e6:d9:b4:25:b1:9f:dd:
0b:06:28:b2:5c:5d:9a:c8:e3:46:a2:e6:30:65:5a:4d:92:b7:
9f:d5:39:c3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 27 09:54:37 2026 by rpki-client