Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: eUKffHU9KSg7Hs/aEEPK/ArBHrQFA/CYi5qEWTQLJ1A=
Subject key identifier: 82:A3:8C:53:32:66:89:1B:8B:D7:CC:3B:DC:E9:03:B2:B5:1E:DC:03
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 019D9B5100BCF647272FE0136467C94B9031
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0CF2
Signing time: Fri 17 Apr 2026 12:01:10 +0000
Manifest this update: Fri 17 Apr 2026 12:01:10 +0000
Manifest next update: Sat 18 Apr 2026 12:01:10 +0000
Files and hashes: 1: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: 4T7u6Wmr61bhJ2qUfmHM3RpS/mU7YRfn3EQXCmEAKMU=)
2: lDc3tS_p7tCgEhrNKf_-eSIcLqg.roa (hash: kzElkKos01LmCGpTnk/MyVTZjZ5HsnG3CnANkjfIhL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 07:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9b:51:00:bc:f6:47:27:2f:e0:13:64:67:c9:4b:90:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Apr 17 12:01:10 2026 GMT
Not After : Apr 18 12:01:10 2026 GMT
Subject: CN=82a38c533266891b8bd7cc3bdce903b2b51edc03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8f:4e:d5:21:b9:2a:4b:6b:22:93:e6:47:29:43:
a2:c1:e0:a4:c3:34:ea:e0:53:b3:ff:57:28:4d:fe:
08:f2:bd:f0:a3:9c:34:d5:72:45:8e:3a:bf:20:33:
44:3e:10:64:13:a5:54:90:12:5c:fd:15:00:69:7e:
3f:74:30:75:0c:79:08:be:d9:8d:47:da:64:68:aa:
ab:a3:81:b0:98:16:27:57:ca:f5:07:be:c7:83:b9:
74:ce:6e:21:6b:76:59:9d:4e:36:b7:28:bd:79:f9:
8c:10:6f:19:d8:f3:6e:91:14:82:54:fd:1b:14:d8:
1d:44:3f:a3:67:9f:90:e0:48:c3:8d:ac:81:9b:26:
1b:01:94:4a:ad:1b:a7:f7:5b:2e:1c:b9:ed:a7:fe:
2d:e9:e4:c1:20:4e:67:de:ae:44:be:b1:19:36:c6:
bd:e5:d1:26:66:f7:a1:84:46:9a:9b:9b:cc:57:db:
90:57:83:3f:fc:f2:51:36:f4:68:6e:7d:5f:dd:44:
fd:da:4b:d6:36:19:68:91:b4:aa:0e:39:80:fa:ff:
3f:c0:1f:4a:af:2e:dc:f0:4c:3d:4d:44:7b:aa:9f:
1a:fe:2f:bc:24:33:24:65:11:80:e9:1f:a2:60:68:
66:23:c2:ed:73:54:70:12:a6:fa:8b:66:d9:ee:ad:
6a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:A3:8C:53:32:66:89:1B:8B:D7:CC:3B:DC:E9:03:B2:B5:1E:DC:03
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6c:80:e2:4e:bf:bf:c3:77:67:36:e2:e9:09:72:df:ac:c4:75:
90:3e:93:f1:c3:26:4a:4b:bd:36:4f:e5:99:69:fa:8a:15:4f:
3e:7e:6f:a6:a1:94:a4:ea:a0:8a:24:e1:92:5b:00:7c:41:9d:
33:90:15:e1:bd:ea:20:6c:d2:c3:ab:56:fe:8f:71:3e:96:97:
35:8e:b7:7d:8b:3f:af:c8:17:4a:09:c6:ac:36:9d:6a:1d:0d:
64:ff:69:69:e7:d6:00:8c:e0:33:0c:85:56:89:72:48:f9:e3:
38:35:9c:7c:d9:03:43:ea:25:3d:53:e6:41:42:5b:d7:49:c8:
80:8a:94:ca:18:61:1d:65:2e:38:55:89:e6:66:dc:40:f2:5e:
b3:4a:ce:05:74:20:78:cc:51:8c:fa:e5:e1:3f:6b:2d:4d:97:
7a:d0:cc:1b:bd:92:d1:89:3e:37:2f:b0:0d:4f:6d:35:3a:81:
a2:57:d5:e4:bb:cd:8a:10:a7:16:07:be:ae:ef:5c:c5:15:77:
49:83:98:56:6b:63:d2:57:ab:bd:8b:21:bc:48:4c:30:29:f8:
23:d0:cb:0e:3d:dc:a9:a6:20:c1:ce:87:b2:c2:e8:00:11:8e:
2a:42:37:82:55:63:62:fb:ca:9d:94:31:66:64:d3:c6:11:48:
a1:72:31:a2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 15:13:10 2026 by rpki-client