Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
File: K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft (raw, json)
Hash identifier: OtE7+CDTrbFfO0wXDRcFOWc7Xv7BeGcy9Oe73eola9s=
Subject key identifier: 2A:73:2A:D0:6F:73:13:D9:7C:B9:12:CD:EA:ED:53:84:F7:18:74:11
Authority key identifier: 2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
Certificate issuer: /CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Certificate serial: 019D389BB114D309091DE9215C15FF93A3B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
Manifest number: 188B
Signing time: Sun 29 Mar 2026 08:00:20 +0000
Manifest this update: Sun 29 Mar 2026 08:00:20 +0000
Manifest next update: Mon 30 Mar 2026 08:00:20 +0000
Files and hashes: 1: K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl (hash: QFHfV9ITujycfFB2M/qhvwYFyA6YIb0vPitZNzNxM9Y=)
2: U4yJmT1ScaT40kywasOQ8O608yQ.roa (hash: 6wuB5jKMzhDthKEXBc2cgRcakDY0stwctJVIuMEfhMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:9b:b1:14:d3:09:09:1d:e9:21:5c:15:ff:93:a3:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Validity
Not Before: Mar 29 08:00:20 2026 GMT
Not After : Mar 30 08:00:20 2026 GMT
Subject: CN=2a732ad06f7313d97cb912cdeaed5384f7187411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:17:c0:a0:92:04:e2:35:0a:30:a8:90:22:76:
b8:2e:83:4a:37:90:12:76:8c:d1:e4:47:3e:fc:f4:
64:51:23:b9:9f:c9:b5:80:9b:bc:ed:62:a6:8f:99:
94:6a:c2:a5:4f:7a:6b:8b:3f:00:31:d6:1e:09:28:
f3:23:b8:81:37:52:ce:5e:a0:bb:07:ae:d8:f9:c5:
6c:14:46:53:30:e9:8f:0b:38:28:f4:9c:5f:8f:84:
1c:96:bf:d6:0e:f8:19:e7:0a:78:df:cf:38:1a:d1:
67:d6:fe:30:f3:61:fb:a8:45:9e:5c:a2:8d:9d:c5:
29:36:c2:26:92:c4:73:cd:26:5b:56:11:ce:55:bc:
13:5d:27:0f:a7:97:a2:05:95:4c:1f:02:1c:16:c3:
21:da:a0:05:29:30:90:d8:ea:0b:15:de:14:70:20:
83:12:b7:22:ca:68:20:40:dc:94:38:fc:66:6b:23:
66:50:99:fa:45:f7:57:98:28:97:88:8c:d8:e1:40:
6b:e4:f7:09:2a:8f:01:7d:79:5b:ad:e7:93:85:c6:
fe:ef:db:75:de:83:9c:d4:ef:64:dc:34:03:2c:6a:
50:52:b6:a0:08:7e:07:16:13:79:13:50:84:20:7c:
13:c2:1b:e8:ff:a8:ac:80:4c:f9:e1:d8:22:d7:a3:
9f:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:73:2A:D0:6F:73:13:D9:7C:B9:12:CD:EA:ED:53:84:F7:18:74:11
X509v3 Authority Key Identifier:
keyid:2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:f5:9b:92:8b:c0:bf:37:a2:6c:5f:9d:ac:65:24:b7:ea:3b:
63:86:11:0a:05:1e:4b:cb:43:df:43:27:85:3d:51:9f:4b:8c:
df:47:2e:84:87:dc:fe:34:f3:ba:7c:a9:8f:67:d1:2d:ab:a1:
5c:6c:b6:35:47:db:a8:f2:0e:bc:f5:4a:e5:62:73:b5:a8:7f:
86:25:59:63:99:d1:9e:0e:0d:8f:8f:44:55:cd:b9:8d:2b:47:
23:5c:34:e9:db:f2:b3:04:cc:0e:a3:a2:a8:4b:31:8d:7d:87:
d2:fd:51:a9:28:40:1c:94:0d:1e:14:9b:f0:fd:ee:5d:79:ca:
85:55:6c:af:05:67:6a:19:06:0a:f2:64:59:1e:63:ae:f4:2f:
7a:be:73:13:19:0f:dc:4a:41:8d:ac:f1:ce:a4:9e:be:cd:88:
27:47:d8:c4:f7:ec:f4:69:e8:a8:0f:99:92:2a:d3:16:62:0f:
04:fa:9b:c2:22:90:3e:c4:a8:5a:3c:fa:35:96:41:95:cb:16:
e7:03:c2:2b:6e:b2:55:81:42:06:01:44:57:2d:05:7f:30:f2:
20:b6:05:23:61:38:0f:0e:94:ad:e4:b2:9e:0b:98:04:64:49:
7b:db:07:60:75:4b:f9:e6:4a:26:bd:73:19:cb:36:68:9f:86:
a6:72:5e:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 16:56:48 2026 by rpki-client