Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: CbJG2emz71G7t4MNcASfC6jfLJYhF1C+rKNJmqeRDAw=
Subject key identifier: 30:34:A7:57:1C:81:09:85:3B:EB:9E:4B:08:B5:37:1C:02:7D:77:F5
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 019EB5449802646B3D8D00F35ECFC6A0EE16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0D84
Signing time: Thu 11 Jun 2026 06:00:31 +0000
Manifest this update: Thu 11 Jun 2026 06:00:31 +0000
Manifest next update: Fri 12 Jun 2026 06:00:31 +0000
Files and hashes: 1: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: j8QEWl+30ZCSVeRBTP6YLXPhpraSyjhR0WCBQs9Mzl0=)
2: lDc3tS_p7tCgEhrNKf_-eSIcLqg.roa (hash: kzElkKos01LmCGpTnk/MyVTZjZ5HsnG3CnANkjfIhL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 06:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b5:44:98:02:64:6b:3d:8d:00:f3:5e:cf:c6:a0:ee:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Jun 11 06:00:31 2026 GMT
Not After : Jun 12 06:00:31 2026 GMT
Subject: CN=3034a7571c8109853beb9e4b08b5371c027d77f5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:d0:b7:8c:21:ca:22:b6:da:65:25:d7:ef:fd:
17:f1:53:d1:6a:53:6f:cd:41:32:12:42:78:c1:5b:
70:ef:93:28:61:e7:dd:f7:43:b8:56:00:72:66:55:
e2:a3:34:33:b2:18:fa:21:cf:3d:e4:b4:5d:be:4a:
af:43:4b:b7:30:e4:c9:ee:a3:d4:9b:cc:56:2d:24:
55:e8:0c:09:36:17:63:82:54:f4:84:f2:64:b9:35:
86:4f:33:ff:9f:82:74:ab:b6:96:0d:2e:c8:3d:7e:
08:b2:e7:af:69:f4:f3:6c:80:0b:59:51:06:35:02:
09:c8:11:bc:38:33:33:a7:9d:89:bc:fd:ab:a5:7a:
a4:eb:2d:07:9d:dd:3d:c0:2f:13:c1:92:12:e5:10:
64:95:79:16:6d:be:5a:62:08:67:a9:fd:d3:67:6c:
cb:ee:6f:25:be:be:29:ed:5e:42:6c:90:56:e3:bd:
23:a5:68:8a:44:62:ad:e3:dc:7b:04:23:bc:0e:56:
fb:48:6d:de:8d:97:41:80:85:f1:b0:38:7b:33:a7:
88:10:ee:b0:e3:f6:6a:aa:08:9f:b5:0e:19:6e:cd:
43:64:47:13:e0:4e:9f:42:e6:49:f6:d2:da:f5:3a:
af:62:7f:af:99:08:8e:45:a3:8a:31:c3:38:a9:2a:
88:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
30:34:A7:57:1C:81:09:85:3B:EB:9E:4B:08:B5:37:1C:02:7D:77:F5
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
76:c3:b9:40:82:59:c4:6e:ba:d2:58:f4:d4:95:60:c9:a9:a6:
50:37:b3:6a:09:45:f3:98:8b:ad:4d:dd:cd:83:66:97:96:2e:
f6:5b:3a:b3:d5:9f:ba:8a:d0:90:1e:1c:13:48:85:df:ab:bc:
10:57:49:37:27:3d:53:4a:3c:63:9d:fb:00:ee:dd:45:54:b1:
1a:73:31:7e:23:13:af:2a:4b:fc:fc:6b:98:e0:c7:94:12:c1:
6a:29:9d:5b:90:ad:4f:33:af:22:28:12:5d:47:1b:f3:ab:be:
4e:81:3a:6e:bb:77:dc:17:37:d1:ee:3c:d8:64:ba:cb:db:9e:
df:27:83:98:9f:ff:14:47:33:aa:d1:ef:25:cf:29:8c:5e:33:
44:15:9a:0c:a7:40:e0:8a:96:2b:44:ec:a3:14:09:c5:18:70:
3e:0d:3f:b8:19:72:b1:7f:7f:c1:ad:7c:90:d8:8a:d6:0b:e4:
2d:ef:27:f5:1b:78:44:e4:8c:82:15:e2:38:63:66:57:59:2d:
0e:6d:de:dc:a8:35:4f:dc:15:f4:26:4f:21:50:19:59:37:31:
5f:38:3f:57:81:86:13:08:bf:71:b2:2c:8c:d7:d0:fb:b4:77:
40:f1:b5:da:50:5e:a1:90:ba:5e:52:df:0e:f3:5e:53:47:09:
5e:4a:c5:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 13:08:04 2026 by rpki-client