Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
File: KoyNUYbIdxRVvhMbDHz9ZufThlU.mft (raw, json)
Hash identifier: lij/APPi45Holieha2c5W/yYSqxRcu+EMpq6Q3H4ZkE=
Subject key identifier: AF:21:C9:4E:EA:E2:92:AD:8E:62:33:80:A2:0C:00:EF:D6:B1:19:E3
Authority key identifier: 2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
Certificate issuer: /CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Certificate serial: 019D38D35D8F3F527EA881385F8E8D8C3F04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
Manifest number: 0696
Signing time: Sun 29 Mar 2026 09:01:09 +0000
Manifest this update: Sun 29 Mar 2026 09:01:09 +0000
Manifest next update: Mon 30 Mar 2026 09:01:09 +0000
Files and hashes: 1: KoyNUYbIdxRVvhMbDHz9ZufThlU.crl (hash: RL+eBPnPcAOfGRrwwHwb2I0iIk6tKJOMxUa4tLb5a90=)
2: vRHDe49dNuvNmUAPOcMtSNJoxSk.roa (hash: 5+TSEDtVIZGmMa4KwGaP+zSgVu5+duOGjOl+EoHvBLc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:5d:8f:3f:52:7e:a8:81:38:5f:8e:8d:8c:3f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a8c8d5186c8771455be131b0c7cfd66e7d38655
Validity
Not Before: Mar 29 09:01:09 2026 GMT
Not After : Mar 30 09:01:09 2026 GMT
Subject: CN=af21c94eeae292ad8e623380a20c00efd6b119e3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:29:cc:44:88:60:5c:e1:25:0a:5e:12:89:97:
d5:b3:1c:12:7e:22:f6:5b:b3:ce:26:73:b8:01:94:
5a:8d:f9:d2:b7:56:62:c2:7c:bb:d9:f1:ef:40:0f:
4e:22:a9:28:02:87:ce:3d:85:38:a7:cd:f1:91:d0:
f0:8d:7e:ff:8f:92:6c:3a:4f:d5:4e:9e:84:bc:fe:
6f:39:69:1f:7e:e1:8f:b6:46:d1:af:fd:cf:db:a9:
a4:93:7e:5c:25:38:0e:a9:a4:35:f1:fa:e8:14:98:
70:0d:44:6e:87:7b:0b:44:b1:00:e5:c3:26:d7:17:
23:2d:75:62:17:b5:93:5a:97:35:4d:cc:2e:e0:93:
d2:5c:25:c6:f1:3d:0d:70:80:bb:b2:d9:10:d3:9e:
be:26:b1:8f:88:cd:92:a0:9e:eb:7f:e1:42:0d:30:
0f:9a:f8:07:32:96:94:61:4a:e0:aa:e0:0f:83:f6:
2a:fd:4b:13:ea:82:5c:b8:65:10:91:56:0e:2e:71:
62:6d:b0:4b:2f:8d:f5:e5:ea:8b:82:97:84:f8:63:
c4:46:fa:ec:00:93:2f:d3:73:d5:f1:91:f4:64:c6:
ce:87:1c:4b:0e:e9:2a:d6:3b:69:88:c3:50:4c:82:
11:7b:3a:da:f5:c9:a5:da:0a:16:bc:e7:18:1f:e7:
1a:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:21:C9:4E:EA:E2:92:AD:8E:62:33:80:A2:0C:00:EF:D6:B1:19:E3
X509v3 Authority Key Identifier:
keyid:2A:8C:8D:51:86:C8:77:14:55:BE:13:1B:0C:7C:FD:66:E7:D3:86:55
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KoyNUYbIdxRVvhMbDHz9ZufThlU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/3496d1-332c-433b-9980-269a51dd8d38/1/KoyNUYbIdxRVvhMbDHz9ZufThlU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:0f:8c:70:4c:b2:f7:3f:2a:1d:76:76:34:f4:a0:a8:23:a4:
99:6c:a7:be:6b:be:76:62:30:32:9a:6f:c5:95:d6:2b:4e:f2:
e9:26:5f:64:0d:7c:e3:90:cb:0a:64:89:48:b6:e8:03:00:cd:
c7:71:72:c3:3f:1c:ba:c3:a4:bd:ea:49:89:8f:24:20:1c:9a:
d6:03:5b:65:ee:4e:d3:a8:a9:e1:8b:5b:33:7e:7b:16:9c:58:
0a:fb:00:9a:68:c6:ea:56:49:c8:e9:af:3d:05:3b:1f:d9:9a:
93:14:1e:4b:9b:d0:ec:1b:70:3c:1b:f5:75:af:8b:eb:b3:09:
78:3d:52:5d:d4:57:76:8e:2b:79:c8:69:c3:a6:ce:d9:b2:e0:
48:75:fd:2a:d6:aa:fa:b5:08:63:a2:d9:49:a8:c3:ba:95:ee:
a8:07:85:7a:1d:91:a1:24:a7:23:fc:03:a4:94:bd:bf:fa:11:
42:02:fd:93:9f:80:e2:24:41:9f:3b:9f:2a:d2:1a:da:6d:58:
bc:eb:88:21:d8:01:9e:f7:b7:8e:3a:25:dd:28:64:1f:4b:45:
06:d4:ab:5c:78:c1:88:c5:e2:27:b2:78:36:af:4c:9a:0a:2a:
b5:10:b3:1f:69:b1:0c:83:00:13:61:1b:9d:ca:51:a2:30:1f:
35:aa:de:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:51:14 2026 by rpki-client