Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
File: K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft (raw, json)
Hash identifier: 1Ch3NtGS6GDUZMeAU5fKMF4EOM/OyHuRzkqgpXV7DCg=
Subject key identifier: 6D:AE:20:61:FC:B1:E0:C1:FE:75:D9:35:BE:1D:B1:2E:47:3B:B1:C0
Authority key identifier: 2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
Certificate issuer: /CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Certificate serial: 019F19B12DB9B78C54AE26842824E6B8CEDD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
Manifest number: 1987
Signing time: Tue 30 Jun 2026 18:01:09 +0000
Manifest this update: Tue 30 Jun 2026 18:01:09 +0000
Manifest next update: Wed 01 Jul 2026 18:01:09 +0000
Files and hashes: 1: E42ALr85hzHjr7r_9Z5V7NF6a-8.roa (hash: bMH2/YzfTbpse+/akM+4A9X/Bsc5TxJJDbOgKDKeGaQ=)
2: K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl (hash: 5I1XBd5q+5onKg9iCVM373+RiJhntk0hu8dUcD+e+NE=)
3: Or9-McsdINXpd2AfMY8CRkBHo-c.roa (hash: Hm0aM5yCfz8g6AbodNDmMSYxdlDqVNZ0I10ycbk2bPE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:b1:2d:b9:b7:8c:54:ae:26:84:28:24:e6:b8:ce:dd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Validity
Not Before: Jun 30 18:01:09 2026 GMT
Not After : Jul 1 18:01:09 2026 GMT
Subject: CN=6dae2061fcb1e0c1fe75d935be1db12e473bb1c0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:e9:6c:e8:43:ab:ff:da:d6:b4:2f:74:32:bd:
f2:0a:e4:56:fd:6b:c1:62:3e:4b:9e:d0:57:56:54:
07:82:5f:21:ae:1b:f7:1b:e4:f0:47:3c:4a:fb:e6:
be:01:d6:61:3a:05:3c:08:5a:dc:96:07:2b:12:60:
60:92:2b:73:2c:65:a2:60:4b:11:e3:f4:af:cf:e5:
a8:c1:97:df:a4:df:3f:73:fb:fd:0f:67:d2:d1:56:
b3:cf:fb:cb:2c:5e:e6:57:78:cd:f8:92:7b:1b:11:
6b:14:ab:8c:98:39:46:76:e0:f2:d1:c5:5b:35:c9:
63:7e:b0:0a:0a:a4:7d:2a:dc:a4:a4:c0:86:81:d3:
9c:77:f2:bd:1c:3f:ac:b5:ca:bb:cc:40:ad:60:51:
39:c2:51:68:80:42:ba:91:50:84:ab:9c:c2:c1:b3:
ad:95:25:b5:18:12:e9:89:c4:34:45:86:1d:75:ca:
39:2c:4e:b0:de:41:d3:f1:63:08:d6:40:f2:38:ce:
92:9e:77:d6:65:aa:a1:f0:40:a2:29:7a:36:d7:56:
b2:a4:d7:e1:4d:70:37:52:df:7b:5f:82:53:19:52:
52:a7:f2:4b:65:81:65:9d:70:b9:55:0a:e9:25:d8:
71:03:97:6c:5c:9b:d7:83:ac:bd:c1:4f:44:2f:fc:
f5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6D:AE:20:61:FC:B1:E0:C1:FE:75:D9:35:BE:1D:B1:2E:47:3B:B1:C0
X509v3 Authority Key Identifier:
keyid:2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
56:6b:d6:81:eb:64:eb:2d:15:4b:e9:0b:27:7b:c7:c5:ac:f0:
80:08:1a:29:e6:41:40:78:36:40:d7:0f:bc:9a:c8:9b:a9:ab:
5b:4d:2e:14:e7:11:fa:24:1a:e0:4b:26:52:f1:f1:d1:e2:d3:
08:89:1a:00:ac:5c:57:d1:d2:67:0e:ea:9f:63:04:40:58:ff:
83:92:80:ee:30:a1:9b:6b:53:49:da:47:8c:fd:20:60:7f:02:
ee:5b:bf:59:88:4e:bd:65:91:69:6b:8d:89:2c:e9:70:c5:71:
cb:50:38:8e:0c:a8:bb:09:6d:b8:eb:25:48:38:30:9a:11:3a:
4b:74:79:cf:d7:c3:be:d3:e6:d5:06:87:c1:eb:cc:00:4e:22:
35:3d:53:1b:dd:5a:5f:d2:09:c7:e3:9b:1a:92:5e:f0:15:73:
fe:ad:a2:97:c7:72:f4:0e:b5:c3:f4:37:10:23:ad:6c:cb:31:
27:23:3e:fa:44:1b:8b:76:bf:d8:6d:a9:39:50:ae:65:26:8b:
b8:6f:89:92:eb:c7:fb:db:0e:a5:2c:51:a9:a7:be:0c:8f:76:
57:38:2b:1b:13:7c:ed:6b:8c:21:1b:99:97:67:e4:91:61:43:
35:3e:c3:51:60:79:b2:ca:1f:14:06:57:e4:7c:79:7d:2f:1a:
a1:ed:be:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 22:39:38 2026 by rpki-client