Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
File: KeoL3n9pK8X9wLFoumFKAnLy5k0.mft (raw, json)
Hash identifier: PCAH4i1p7rv7Wg0XqYEYoCo9E4V0+wTCSATuSUl0W88=
Subject key identifier: F8:2E:7E:DD:8A:F1:22:49:C4:D9:F1:AC:D9:46:70:9F:3C:78:A1:CD
Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Certificate serial: 019EB87C83EEC1358D6255E85C22F97311C4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
Manifest number: 0FC1
Signing time: Thu 11 Jun 2026 21:00:28 +0000
Manifest this update: Thu 11 Jun 2026 21:00:28 +0000
Manifest next update: Fri 12 Jun 2026 21:00:28 +0000
Files and hashes: 1: AoiLP-aKiV68_RegC3FR8BLmoTY.roa (hash: cAZegRRMeuO3/yO4SqdfyQYoOuuZTcc84vu6Tr6LRDs=)
2: KeoL3n9pK8X9wLFoumFKAnLy5k0.crl (hash: gygTwVVv7KlX7gFS/06PNZyvXk/cgYUQks7s9FkiEhM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:7c:83:ee:c1:35:8d:62:55:e8:5c:22:f9:73:11:c4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Validity
Not Before: Jun 11 21:00:28 2026 GMT
Not After : Jun 12 21:00:28 2026 GMT
Subject: CN=f82e7edd8af12249c4d9f1acd946709f3c78a1cd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:dd:07:a3:bc:2b:fb:05:70:65:95:a7:6c:7f:
fe:15:3d:e2:87:be:66:32:f6:f4:41:45:79:d8:ac:
69:56:b3:92:2a:c7:88:2e:64:b5:d7:2f:ef:e8:ef:
fb:62:58:5a:f2:ff:8a:71:9e:6e:55:73:d7:65:06:
3f:19:a5:b6:a0:a5:9a:ba:92:ef:2c:25:a3:47:c4:
5c:0d:3e:6c:9e:01:3f:c7:48:b4:da:c0:a9:98:54:
f7:db:7a:5b:bb:9d:2d:8a:22:40:4d:db:6e:66:47:
d6:fa:32:2c:b6:b5:38:3f:d8:f3:9e:63:b6:57:95:
3b:fe:bd:c5:67:e1:4c:c4:0c:6d:37:cd:4d:f5:0a:
f7:e6:06:55:26:a4:bb:23:6c:fa:3b:68:11:6b:5a:
c7:8e:54:ed:6d:92:8c:f9:1a:07:2b:5d:14:82:4c:
4a:63:15:37:af:ef:ac:b5:7d:c1:17:d5:a0:4d:9c:
fd:d7:1c:07:c5:07:d1:ab:82:22:e3:99:5c:d5:d3:
78:26:d5:77:5b:ba:18:5d:23:88:93:d8:0f:8b:fd:
99:5b:11:0b:cb:75:79:9f:03:70:5a:7a:72:55:35:
9d:67:67:3e:b9:bb:ca:54:0b:94:be:63:33:b4:12:
0f:b8:89:8c:c0:a1:b5:59:a0:e3:17:69:f7:2b:e4:
c5:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:2E:7E:DD:8A:F1:22:49:C4:D9:F1:AC:D9:46:70:9F:3C:78:A1:CD
X509v3 Authority Key Identifier:
keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:11:e6:4d:2a:ce:77:03:56:d6:7a:fb:79:46:20:30:ed:3a:
47:44:a2:00:8b:0d:58:3b:f0:65:24:08:31:a4:f0:83:a5:d3:
6c:f5:fe:7e:1b:de:3d:2c:e4:59:60:fe:76:e9:9e:26:42:21:
68:39:a3:47:85:50:c7:67:d5:8d:7a:dd:af:3e:6a:ba:79:33:
a1:8b:11:92:f7:53:1b:3f:e0:1d:5c:bd:e6:96:d9:a1:fc:79:
14:04:fa:4a:4b:a8:da:80:4d:f9:10:36:bd:56:7c:2e:86:bd:
17:44:70:eb:56:76:93:bb:9a:02:90:96:bd:3b:bc:81:82:9b:
cd:e3:f6:c5:9f:07:0d:f5:c3:b5:a3:80:e2:1f:c7:6b:3b:8f:
91:5c:7f:59:5a:41:e5:27:40:ec:7e:f7:8d:83:8f:08:0d:db:
3b:ed:fd:aa:36:b9:dc:b8:e8:4c:dd:61:57:f7:48:89:7e:82:
11:f4:75:01:be:9b:e2:dc:02:56:ed:fb:c2:fd:f6:ba:16:52:
50:f3:c3:b8:96:14:c4:1a:c9:c3:d5:10:9c:a5:81:b5:d4:bd:
ed:7c:f5:e1:3a:05:09:5c:80:96:06:e3:9f:70:fb:49:f2:eb:
51:d4:c0:34:5f:7e:ee:38:cd:8b:9e:22:cd:72:0d:c6:23:12:
c1:a9:67:f8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:53:24 2026 by rpki-client