Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
File: RKO0P2R-HncUzRMHZMu8SBTnoUg.mft (raw, json)
Hash identifier: KWZYv5VlZI/m6NAcYTKAoqC4isLZ+vGYO3/HTRFHeAY=
Subject key identifier: 7C:49:2D:51:82:BB:0B:D8:3D:84:02:77:52:0A:34:CD:1A:F3:6E:23
Authority key identifier: 44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
Certificate issuer: /CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Certificate serial: 019F0F64C0E0B7D7E6C2EF5238B310B2FBAC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
Manifest number: 1988
Signing time: Sun 28 Jun 2026 18:01:28 +0000
Manifest this update: Sun 28 Jun 2026 18:01:28 +0000
Manifest next update: Mon 29 Jun 2026 18:01:28 +0000
Files and hashes: 1: AEfnrK6ix3lgbRrsMfPKWVRCzjE.roa (hash: qwyfmOqhQfxk+SJv3YNNgHlxe2wh96nicliB7SifUfM=)
2: RKO0P2R-HncUzRMHZMu8SBTnoUg.crl (hash: gQnj3hgnYN6RHtX1ExjuBBioMdtGD4ZYJQqWpoWsZpg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 17:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0f:64:c0:e0:b7:d7:e6:c2:ef:52:38:b3:10:b2:fb:ac
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=44a3b43f647e1e7714cd130764cbbc4814e7a148
Validity
Not Before: Jun 28 18:01:28 2026 GMT
Not After : Jun 29 18:01:28 2026 GMT
Subject: CN=7c492d5182bb0bd83d840277520a34cd1af36e23
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:1e:dd:d3:c7:da:a9:52:16:a5:4e:b8:2a:9d:
4b:13:5f:fc:e5:6c:e1:a4:78:e9:d6:23:ee:71:b8:
f6:ca:a6:54:24:9b:95:bc:71:71:0f:b4:f3:ac:73:
36:71:6f:df:ae:06:06:80:82:73:09:c4:c9:c4:77:
87:fd:20:7a:17:c2:52:45:a0:18:c0:3c:df:89:8a:
6a:8e:de:13:db:6f:70:e6:ea:91:f3:b0:23:8d:64:
ac:27:cc:64:24:69:f0:bf:19:20:00:3c:00:73:5d:
36:ea:f1:51:32:2e:4c:a4:f2:08:db:1c:5f:82:79:
50:06:62:68:cb:fa:9d:1f:95:db:50:ba:e1:64:45:
b3:5f:36:8f:dc:b9:74:72:6e:42:0e:d3:f9:0f:b8:
63:94:6b:f5:99:08:ef:15:22:f7:ef:69:ab:23:86:
22:33:bd:96:a7:42:7f:cc:1f:20:94:8a:78:a1:af:
2f:92:8f:12:ff:e3:65:16:2b:e2:02:c7:10:6e:f2:
aa:87:f7:7d:39:4d:d2:6e:10:9a:1b:79:73:c4:12:
37:2c:09:e6:4a:ca:17:11:d9:8d:c5:68:fc:fa:c8:
df:11:d3:5d:39:12:2b:68:64:ad:6a:f2:f4:c6:16:
2d:91:8e:b6:38:b7:14:9c:99:e2:1e:84:27:e7:d6:
e6:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:49:2D:51:82:BB:0B:D8:3D:84:02:77:52:0A:34:CD:1A:F3:6E:23
X509v3 Authority Key Identifier:
keyid:44:A3:B4:3F:64:7E:1E:77:14:CD:13:07:64:CB:BC:48:14:E7:A1:48
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RKO0P2R-HncUzRMHZMu8SBTnoUg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/e1cee6-dcff-4373-bd88-a3c539f0b6d2/1/RKO0P2R-HncUzRMHZMu8SBTnoUg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
47:19:98:f4:38:b6:f6:05:f7:fc:ff:f7:a4:88:9f:5c:c5:13:
df:69:5f:b3:ab:b3:9d:ac:36:a6:1d:95:80:f1:29:63:d8:65:
03:4a:c7:a4:0e:42:06:b8:53:94:77:4b:97:d4:f2:6d:0e:e2:
f3:90:28:2f:c7:b8:77:1d:2f:f0:11:74:11:3c:36:1e:8c:1d:
c7:a8:8c:87:57:44:57:c3:da:2e:84:7c:b7:83:12:39:25:d8:
5c:37:30:01:45:48:db:53:21:2c:a8:f3:77:22:db:83:20:b2:
ff:76:92:df:b7:2d:55:de:a8:3f:ba:4c:71:d2:04:be:19:e4:
6a:58:ed:00:8d:30:eb:bf:e5:37:c9:8a:1b:81:a7:e6:fa:fd:
cb:ab:f9:d8:ca:a6:9a:94:c6:e0:23:88:07:17:0b:d9:2e:0e:
70:b1:02:e6:19:45:2e:82:26:2e:6c:e3:c9:09:d7:ce:ae:4a:
c2:e6:85:a0:85:34:ed:fd:8a:79:07:ba:20:13:97:48:2c:0c:
4f:37:1c:3a:33:21:2e:ec:1b:bf:76:b4:d4:3e:62:64:b6:ab:
eb:65:cd:e6:d0:e4:5d:a6:f8:0d:f4:79:85:77:0c:6d:46:37:
71:ee:15:26:f5:dc:fb:d3:cb:c1:b4:c2:3d:1a:2c:7a:e7:d0:
8c:d3:78:32
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 23:01:25 2026 by rpki-client