Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
File: KUoc22jxVM-VQYowjILY2lB3UQk.mft (raw, json)
Hash identifier: FCj6GyMC0ILFG+NJ2pkL0bwPEayt9D5bMw0y5S3Q6FQ=
Subject key identifier: CB:24:B8:5A:26:2B:F6:EC:88:B0:38:68:70:F0:2A:4B:5C:93:5F:2C
Authority key identifier: 29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
Certificate issuer: /CN=294a1cdb68f154cf95418a308c82d8da50775109
Certificate serial: 019EB958C7DEBBB557D6BBCC00F6CF3A5A8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
Manifest number: 15EC
Signing time: Fri 12 Jun 2026 01:01:03 +0000
Manifest this update: Fri 12 Jun 2026 01:01:03 +0000
Manifest next update: Sat 13 Jun 2026 01:01:03 +0000
Files and hashes: 1: B6o8w4JwncV5UpdSgcO7ItJ2vOY.roa (hash: fNh1jUU0AZ9h8EIANivzzlh97Xsidf9NN1/ISCBJySU=)
2: KUoc22jxVM-VQYowjILY2lB3UQk.crl (hash: iZtmO+wxy6leRnc6eKKE/L5H4ZIyAuN+NYLOzwiW2sA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:c7:de:bb:b5:57:d6:bb:cc:00:f6:cf:3a:5a:8d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=294a1cdb68f154cf95418a308c82d8da50775109
Validity
Not Before: Jun 12 01:01:03 2026 GMT
Not After : Jun 13 01:01:03 2026 GMT
Subject: CN=cb24b85a262bf6ec88b0386870f02a4b5c935f2c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:c4:df:16:0a:1a:bb:2d:c3:45:a7:c5:e4:f4:
56:b6:28:7c:e7:f7:dc:ce:16:5d:c4:88:95:c8:c1:
6f:4d:dd:97:9b:a7:0f:ba:30:18:1f:19:1e:24:aa:
af:b5:56:a8:69:1e:03:5e:c3:d6:72:bb:ff:8d:91:
ed:3c:5d:78:c9:9c:58:d2:e8:8d:1c:1f:37:34:ba:
a9:83:3a:f8:13:55:e9:d4:e9:9b:c9:15:8e:8e:6c:
36:14:37:ad:bc:e3:98:f3:57:8d:94:05:75:01:fa:
a0:4e:f2:66:e7:b2:e0:bf:27:41:1e:3e:46:6b:02:
3e:84:9c:05:05:2b:c5:a4:1a:29:e9:51:53:54:c9:
01:7a:a5:4d:96:cd:ce:40:38:46:15:af:95:90:2f:
1f:4f:e2:0a:4b:a4:25:c9:6c:bf:91:a5:32:39:08:
be:df:45:45:37:e6:53:83:0c:bc:eb:b6:a8:83:a5:
aa:53:93:3f:39:2e:46:62:9f:70:0f:dc:5f:6e:66:
60:35:b0:05:e0:71:5e:d7:23:ae:01:9d:36:1d:43:
ef:7d:3d:86:e3:c0:aa:ce:f0:43:60:60:1e:2b:88:
82:b5:7a:07:25:e1:fc:1a:20:3b:7c:11:6a:1a:21:
90:20:d2:1f:10:4e:7e:10:3d:20:5e:9f:39:81:63:
88:eb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CB:24:B8:5A:26:2B:F6:EC:88:B0:38:68:70:F0:2A:4B:5C:93:5F:2C
X509v3 Authority Key Identifier:
keyid:29:4A:1C:DB:68:F1:54:CF:95:41:8A:30:8C:82:D8:DA:50:77:51:09
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KUoc22jxVM-VQYowjILY2lB3UQk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/04f474-e3b5-4595-a044-657e41c63ca9/1/KUoc22jxVM-VQYowjILY2lB3UQk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0c:45:f9:8e:88:c2:f5:19:99:0d:4a:5c:0d:b0:ab:37:e4:7b:
4c:b1:77:50:5f:0d:7d:ed:f7:7e:e7:f1:a9:13:98:26:e3:a6:
d3:39:1e:dd:23:43:46:bc:1b:ac:f3:9b:28:3c:f6:69:08:67:
0b:5b:18:08:ec:48:1a:fc:9a:2f:ea:5c:1a:6f:67:9a:de:71:
f4:1e:c6:cd:98:28:5c:1d:12:8f:77:31:50:6b:a6:7d:2f:ac:
c4:b7:94:97:1c:5e:57:da:d0:d5:bc:fd:7e:2b:76:60:47:2e:
ec:69:7c:39:8e:0e:24:5f:ec:71:62:92:ee:fb:72:a6:4f:3a:
37:01:43:87:f5:a0:05:40:27:f8:6b:c1:5c:dd:ea:eb:71:00:
f3:be:4d:44:45:d0:ed:ea:28:6f:09:2a:bb:15:a7:bb:07:95:
ff:c8:4e:23:45:05:ff:0e:f2:11:9b:74:b3:9f:b6:1c:9d:7c:
95:69:3e:2a:ff:29:f8:08:af:f1:c5:58:fd:32:85:f0:d2:4e:
68:fc:18:52:93:14:6b:ff:d1:1e:5a:78:79:30:20:68:b9:9b:
a8:71:b4:95:47:ef:2e:32:47:69:96:3a:7f:b7:b3:b4:71:22:
e2:40:df:8e:15:88:49:3c:1e:5d:39:00:a3:17:fb:07:e5:7a:
57:2f:a4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:37:47 2026 by rpki-client