Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: 6CNSQkoGusd1WySVsT0vFTWEnSktgPY/a0nI2W6WihE=
Subject key identifier: 98:65:50:FA:00:18:9D:38:E6:6E:AC:01:E3:5A:E7:91:BE:72:2D:64
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 019E3117C636948ACDDFA2BF2EC124F72C14
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1911
Signing time: Sat 16 May 2026 14:01:42 +0000
Manifest this update: Sat 16 May 2026 14:01:42 +0000
Manifest next update: Sun 17 May 2026 14:01:42 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: TDxS4Q6k41VlljhENhH81LeoO3poU9jiM1LJEoJn+1s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 17 May 2026 12:40:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:31:17:c6:36:94:8a:cd:df:a2:bf:2e:c1:24:f7:2c:14
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: May 16 14:01:42 2026 GMT
Not After : May 17 14:01:42 2026 GMT
Subject: CN=986550fa00189d38e66eac01e35ae791be722d64
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8d:a0:7c:2b:89:19:4e:e4:f5:86:72:f1:4a:dd:
59:6a:d1:b9:cc:76:57:22:0c:ee:f7:0d:4e:66:94:
dd:c1:c4:2b:cb:df:7b:be:1a:ee:0d:86:d1:53:b7:
c5:11:02:5c:04:a2:fa:62:9f:9d:bd:50:2e:4c:be:
ce:94:a4:eb:c1:59:c0:a4:ed:45:1f:4f:a9:c6:e5:
76:3b:0c:2b:b4:02:ae:18:da:a4:b1:75:7f:b6:08:
84:81:bb:9d:53:d3:b0:35:9f:93:96:78:38:d3:9c:
5c:b1:79:fb:16:3b:7a:a5:79:31:cd:56:ba:40:af:
ca:2c:1d:9c:48:a9:10:88:7d:e3:e7:dc:08:66:d3:
fd:2e:97:fb:cf:4f:fb:29:11:ce:c0:df:db:4f:16:
69:1d:07:84:79:79:31:50:4b:ff:f1:ef:b7:10:81:
d4:b9:29:a9:81:97:70:5b:af:69:b2:41:e3:2e:19:
5d:49:98:6f:5d:3f:d6:56:f5:7b:48:4b:1b:8c:26:
72:2b:c6:41:31:b9:46:82:ca:e7:1e:97:76:71:f8:
49:af:f0:22:74:91:df:c1:5f:3a:81:19:51:46:d5:
36:39:e2:b8:6d:6c:9b:b7:69:04:da:38:37:3b:3a:
4d:d8:4f:60:d3:47:a2:e1:33:78:d2:45:48:04:c6:
2e:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:65:50:FA:00:18:9D:38:E6:6E:AC:01:E3:5A:E7:91:BE:72:2D:64
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
91:dd:25:e5:bb:83:cb:6e:b3:03:b9:a5:ca:7c:8f:dd:02:e8:
5a:30:67:9f:a5:2c:cf:31:74:86:c6:3a:10:f9:f6:76:ee:49:
8b:59:27:b9:44:ef:49:90:75:eb:19:86:9d:8c:cd:b0:93:3c:
38:68:24:73:e2:72:25:f4:d9:6b:e5:9e:06:4c:77:ac:06:10:
17:90:35:7c:96:d6:ed:f2:ed:d1:58:91:c9:61:d2:0d:da:43:
ef:d5:ac:48:57:91:f7:da:7b:01:3f:4d:b5:74:66:01:6e:7e:
ab:6b:9f:f3:8e:20:04:f6:fd:e8:b7:91:41:3b:aa:7a:63:b2:
17:8d:24:8a:f3:67:20:f0:a8:dc:e0:5f:3e:b7:55:e5:4e:f8:
5f:cd:35:24:c3:26:21:3e:33:8a:e7:d4:b0:a2:1b:54:5c:5f:
b2:fc:5d:6e:36:6c:90:21:3d:c3:80:1b:08:bb:ff:f5:88:0f:
5d:d5:00:ee:0a:fe:b3:86:bd:17:09:cc:87:5f:56:5e:6b:65:
1e:0b:f1:f2:28:d3:48:e7:58:fc:0e:48:d7:6e:a5:53:6d:dd:
be:c4:ba:3d:0e:d2:06:45:b7:5d:bd:41:8f:66:e1:92:43:d7:
78:d7:cf:c9:0d:ba:65:8e:a0:0b:e6:f7:00:c8:fc:6e:1c:7f:
39:98:7b:ba
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ4xF8Y2lIrN36K/LsEk9ywUMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNGQ0YTNiNzQ3ZmNhNzAxMDNiMTdmM2RiZGM1MDQ1Y2Fj
ZTMyZGYwHhcNMjYwNTE2MTQwMTQyWhcNMjYwNTE3MTQwMTQyWjAzMTEwLwYDVQQD
Eyg5ODY1NTBmYTAwMTg5ZDM4ZTY2ZWFjMDFlMzVhZTc5MWJlNzIyZDY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjaB8K4kZTuT1hnLxSt1ZatG5zHZX
Igzu9w1OZpTdwcQry997vhruDYbRU7fFEQJcBKL6Yp+dvVAuTL7OlKTrwVnApO1F
H0+pxuV2OwwrtAKuGNqksXV/tgiEgbudU9OwNZ+Tlng405xcsXn7Fjt6pXkxzVa6
QK/KLB2cSKkQiH3j59wIZtP9Lpf7z0/7KRHOwN/bTxZpHQeEeXkxUEv/8e+3EIHU
uSmpgZdwW69pskHjLhldSZhvXT/WVvV7SEsbjCZyK8ZBMblGgsrnHpd2cfhJr/Ai
dJHfwV86gRlRRtU2OeK4bWybt2kE2jg3OzpN2E9g00ei4TN40kVIBMYu4wIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFJhlUPoAGJ045m6sAeNa55G+ci1kMB8GA1UdIwQY
MBaAFNNNSjt0f8pwEDsX89vcUEXKzjLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDIt
NDM3OTM0YzU4NDUzLzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDItNDM3OTM0YzU4NDUz
LzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkd0l5buD
y26zA7mlynyP3QLoWjBnn6UszzF0hsY6EPn2du5Ji1knuUTvSZB16xmGnYzNsJM8
OGgkc+JyJfTZa+WeBkx3rAYQF5A1fJbW7fLt0ViRyWHSDdpD79WsSFeR99p7AT9N
tXRmAW5+q2uf844gBPb96LeRQTuqemOyF40kivNnIPCo3OBfPrdV5U74X801JMMm
IT4ziufUsKIbVFxfsvxdbjZskCE9w4AbCLv/9YgPXdUA7gr+s4a9FwnMh19WXmtl
Hgvx8ijTSOdY/A5I126lU23dvsS6PQ7SBkW3Xb1Bj2bhkkPXeNfPyQ26ZY6gC+b3
AMj8bhx/OZh7ug==
-----END CERTIFICATE-----
Generated at Sat May 16 17:14:14 2026 by rpki-client