Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
File: K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft (raw, json)
Hash identifier: GnVqd7JFev55KIqgwvCVr/AqSufn1fa0OuhWF+WfUOE=
Subject key identifier: 04:F9:35:4A:EF:CC:8A:78:2B:AA:EA:AA:68:FF:D4:65:22:76:AA:0A
Authority key identifier: 2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
Certificate issuer: /CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Certificate serial: 019E31F3323953A1C23D628187CEABC6C70D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
Manifest number: 190E
Signing time: Sat 16 May 2026 18:01:22 +0000
Manifest this update: Sat 16 May 2026 18:01:22 +0000
Manifest next update: Sun 17 May 2026 18:01:22 +0000
Files and hashes: 1: K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl (hash: HknsdgC5J8/nL93FB3vL4RBDYxMXMFQc8bv9BakcR20=)
2: Or9-McsdINXpd2AfMY8CRkBHo-c.roa (hash: Hm0aM5yCfz8g6AbodNDmMSYxdlDqVNZ0I10ycbk2bPE=)
3: U4yJmT1ScaT40kywasOQ8O608yQ.roa (hash: 6wuB5jKMzhDthKEXBc2cgRcakDY0stwctJVIuMEfhMI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:f3:32:39:53:a1:c2:3d:62:81:87:ce:ab:c6:c7:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2b49e884a441f04b7f5e2ed474b5847e83212bcb
Validity
Not Before: May 16 18:01:22 2026 GMT
Not After : May 17 18:01:22 2026 GMT
Subject: CN=04f9354aefcc8a782baaeaaa68ffd4652276aa0a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:99:ce:4c:1d:3c:12:fb:aa:ff:a4:35:17:78:
21:70:84:6c:a4:1b:05:2f:f6:42:bc:19:20:47:23:
7e:6c:80:73:c7:85:7d:81:70:42:bf:ac:db:61:e6:
1e:d5:e2:a1:76:d7:36:de:04:bb:c7:7a:35:ab:f2:
d0:34:15:3e:fe:f0:76:02:97:ef:6d:fa:c3:95:13:
9e:89:41:b5:fc:34:fc:59:13:da:6b:ae:b2:90:b1:
a1:f3:dd:1d:12:29:ee:6c:17:9d:cd:75:88:b6:d7:
f7:57:f2:72:e7:bd:21:95:71:3a:d3:59:37:b3:66:
5b:a3:ef:79:6a:b0:7a:b4:0a:13:04:6a:b5:20:de:
a4:0a:ed:96:c2:10:c1:f8:d7:6d:43:dc:eb:9b:b4:
b3:a4:3f:cf:b0:70:60:d2:57:62:87:cf:91:c7:c2:
43:b4:4c:9a:57:5d:77:77:0c:60:d3:c8:03:f2:76:
15:93:ae:b2:0e:d4:58:6d:e1:6b:af:07:ee:32:79:
33:66:1c:a1:07:52:46:6c:e1:49:d3:10:e1:1f:b3:
a5:84:61:07:50:c4:ff:16:12:35:0a:f4:ca:99:dd:
15:0e:8a:58:76:a0:b7:e8:52:b7:93:88:a9:17:b1:
ab:6d:1d:9d:56:9f:ce:39:53:33:e2:4d:ba:fb:b6:
d0:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:F9:35:4A:EF:CC:8A:78:2B:AA:EA:AA:68:FF:D4:65:22:76:AA:0A
X509v3 Authority Key Identifier:
keyid:2B:49:E8:84:A4:41:F0:4B:7F:5E:2E:D4:74:B5:84:7E:83:21:2B:CB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/K0nohKRB8Et_Xi7UdLWEfoMhK8s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/af528c-ff41-4eef-8a93-42dd985cd7b0/1/K0nohKRB8Et_Xi7UdLWEfoMhK8s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c7:e5:5f:f5:70:71:eb:0d:16:2d:d4:8c:a8:ff:0c:c1:73:93:
6e:4a:51:3c:31:f5:60:f0:11:c2:e3:80:cb:02:80:1e:01:96:
7a:9c:98:a1:28:a4:b8:f1:a2:07:b6:e1:7b:46:0c:0d:3e:27:
29:78:a5:cc:75:97:3f:d8:e9:fd:8e:64:3e:83:a0:d1:97:ba:
d4:85:17:de:19:0b:20:94:e7:ed:a9:2b:d4:11:bb:cf:2e:3e:
7a:87:90:3d:e7:5c:ad:4f:6a:5c:0a:87:83:9f:b0:0a:dd:f7:
f6:ed:12:7f:fe:22:fe:77:1a:02:be:29:b5:71:4e:c9:83:dd:
c1:fe:80:88:75:ea:0a:0b:74:c3:05:35:a8:57:1c:1e:2a:97:
a9:c8:bf:90:4e:16:6e:e7:6f:6c:e6:69:56:10:f7:11:c6:f8:
9b:62:4c:da:46:7e:7e:13:52:94:ad:bc:8e:68:c8:e3:83:1f:
2e:33:38:fe:4f:dc:47:74:02:e1:71:aa:de:eb:5c:a4:ea:71:
5b:e3:79:fb:a5:5f:a2:89:08:46:32:43:63:37:a1:f4:06:60:
62:9b:f6:ec:72:bf:9f:f5:1c:98:7d:9d:a5:3f:49:c4:31:f3:
1e:87:30:ed:c5:ef:90:de:68:22:6a:4c:b3:72:07:e6:7b:23:
8b:ef:bc:90
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat May 16 20:18:59 2026 by rpki-client