Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
File: RKO0P2R-HncUzRMHZMu8SBTnoUg.mft (raw, json)
Hash identifier: /qF8ntfqDhCISuxy+dvfftZc5Y0pEtkyUkTrhvc2F2U=
Subject key identifier: B6:9A:16:B2:00:33:7B:B0:D8:D5:96:04:22:58:C5:7F:92:D7:D7:CB
Authority key identifier: 44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
Certificate issuer: /CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Certificate serial: 019D3A1C6821B5DC14EE953B867A6FDCF9D9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
Manifest number: 1895
Signing time: Sun 29 Mar 2026 15:00:33 +0000
Manifest this update: Sun 29 Mar 2026 15:00:33 +0000
Manifest next update: Mon 30 Mar 2026 15:00:33 +0000
Files and hashes: 1: AEfnrK6ix3lgbRrsMfPKWVRCzjE.roa (hash: qwyfmOqhQfxk+SJv3YNNgHlxe2wh96nicliB7SifUfM=)
2: RKO0P2R-HncUzRMHZMu8SBTnoUg.crl (hash: lUCF8tnSHXyRC/BamRS8uUyoKqqNqZvborVPLEljaVA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 15:00:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:3a:1c:68:21:b5:dc:14:ee:95:3b:86:7a:6f:dc:f9:d9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Validity
Not Before: Mar 29 15:00:33 2026 GMT
Not After : Mar 30 15:00:33 2026 GMT
Subject: CN=b69a16b200337bb0d8d596042258c57f92d7d7cb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:ca:24:51:cd:f9:53:fb:82:71:5f:6e:f5:81:
cd:8e:ca:05:19:9c:22:f6:d2:88:f7:f9:5c:79:02:
a6:af:f7:ae:3b:01:13:39:4a:e6:f8:cf:a7:58:f2:
29:14:8a:bb:0c:30:82:6e:33:4c:a0:df:e7:ea:9b:
5c:d0:60:ba:80:2c:17:a1:9e:cd:79:ca:e1:2d:5b:
43:83:71:07:0c:b9:08:e3:d8:f2:bf:08:b8:16:1c:
9b:b2:b3:8a:04:f0:b8:7a:7b:c4:17:78:ec:f6:f2:
ac:6e:9f:11:0a:65:58:bd:0e:0e:8d:e1:e9:d0:57:
a0:35:c5:03:76:81:92:04:19:e2:52:46:2e:e0:2a:
fe:b7:34:69:75:bb:8e:2d:cf:71:31:59:a8:cc:7b:
25:37:6b:74:57:f9:2c:40:fa:ec:fe:be:28:ef:f5:
c8:9a:e0:60:ed:a6:fe:3a:9e:29:59:e8:da:50:c9:
00:f6:b7:02:a4:51:df:4f:7f:dc:d4:14:c1:b2:55:
19:94:64:7d:e2:a3:a8:90:bd:e3:db:92:54:50:07:
30:2f:9b:3b:fa:1d:56:f4:6b:0e:8f:97:35:dc:30:
bf:1d:a3:f6:6e:c2:fb:c7:fe:d6:9d:e6:15:d7:9a:
53:73:f4:25:64:1a:d3:62:14:68:71:e7:fa:88:df:
38:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:9A:16:B2:00:33:7B:B0:D8:D5:96:04:22:58:C5:7F:92:D7:D7:CB
X509v3 Authority Key Identifier:
keyid:44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:5c:bc:de:df:d9:8a:6b:d4:8b:32:47:84:9c:c8:ea:f3:6a:
8f:d9:2f:8e:96:d5:26:bf:48:27:76:57:3b:56:df:b9:62:e0:
b5:68:77:4f:8a:8c:8b:ce:46:39:21:d5:75:e2:4f:2d:c5:ea:
17:8e:7c:cd:c7:79:32:b9:88:b4:82:2e:1f:fe:43:53:2a:70:
21:a3:a9:4f:f8:7a:d7:5f:53:0e:d2:a8:f0:54:02:69:fc:ec:
03:ae:fb:9d:77:76:34:ea:7e:13:37:76:cf:34:1d:47:02:71:
74:0b:4e:38:83:b6:f0:55:1a:4c:89:98:7b:ab:14:84:a4:28:
86:df:c4:1f:5d:e5:3b:b5:b5:49:2f:74:51:d2:19:e5:53:94:
d2:68:76:9f:b5:ae:21:74:24:28:c3:de:7c:6f:ed:d7:71:6d:
bd:68:c5:9c:74:da:5b:bd:e9:81:41:c8:79:2f:81:6b:e6:87:
91:78:ac:33:4c:ed:7c:bc:66:e2:dd:7a:5e:48:08:62:2d:87:
fd:f3:8f:12:08:e8:3f:52:44:39:b3:c1:34:29:56:c8:df:fa:
06:74:64:60:a8:61:90:e7:98:21:2e:b8:68:6d:85:31:59:4c:
7d:0e:1f:43:d9:95:59:2e:6c:8d:ff:e2:27:0c:3b:82:d5:86:
52:59:01:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 19:20:55 2026 by rpki-client