Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
File: koDT5GcpaPhuiVXbYgy3ZdudcUI.mft (raw, json)
Hash identifier: bwkH6eFu0kM64lGt4N1DOjdRMwz1yN/xeDHXmyWZsKc=
Subject key identifier: 1D:B7:B7:88:B9:6D:49:DE:67:DD:0E:08:DA:8B:0F:74:59:F7:BA:9D
Authority key identifier: 92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
Certificate issuer: /CN=9280d3e4672968f86e8955db620cb765db9d7142
Certificate serial: 019CABD8E04B16C22945EDC3F9544FA4F822
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
Manifest number: 0C76
Signing time: Mon 02 Mar 2026 00:00:42 +0000
Manifest this update: Mon 02 Mar 2026 00:00:42 +0000
Manifest next update: Tue 03 Mar 2026 00:00:42 +0000
Files and hashes: 1: koDT5GcpaPhuiVXbYgy3ZdudcUI.crl (hash: JhX963iw6eBZO7RFYaUhmRbgF2sEqWRckrrJ5Cj2cSQ=)
2: lDc3tS_p7tCgEhrNKf_-eSIcLqg.roa (hash: kzElkKos01LmCGpTnk/MyVTZjZ5HsnG3CnANkjfIhL8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 02 Mar 2026 18:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ab:d8:e0:4b:16:c2:29:45:ed:c3:f9:54:4f:a4:f8:22
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=9280d3e4672968f86e8955db620cb765db9d7142
Validity
Not Before: Mar 2 00:00:42 2026 GMT
Not After : Mar 3 00:00:42 2026 GMT
Subject: CN=1db7b788b96d49de67dd0e08da8b0f7459f7ba9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:0c:35:fc:0e:5b:9c:a4:69:6b:19:20:e3:7d:
dd:31:71:2c:a4:6e:bf:5f:ba:14:34:67:28:19:07:
76:68:e7:99:f9:84:28:e6:aa:57:c2:6c:28:8c:9d:
6a:8f:4b:eb:74:b3:99:a2:af:a0:b7:36:f3:c2:56:
a0:f7:6c:e9:44:98:62:f1:69:46:c9:10:f7:b4:99:
04:b4:96:fa:42:9f:de:64:c1:eb:51:5f:9a:bb:76:
6e:bf:6d:34:c9:07:39:23:18:9e:b7:59:29:2a:73:
46:c2:02:22:ed:20:16:4b:67:a8:28:9f:01:f3:14:
8e:aa:f3:22:09:16:06:49:3f:ad:a2:0b:ae:71:6a:
5e:93:c9:52:fa:0c:f2:2b:1b:9c:09:56:a8:08:a5:
26:71:03:48:68:79:e3:c0:fd:7d:e5:d4:aa:bf:1c:
47:0e:23:ec:b7:17:5c:f4:ea:34:bf:d5:dd:97:5b:
e4:9c:f2:77:05:e1:da:cf:d4:3c:be:c3:8d:c7:f1:
8d:8d:71:18:c3:3d:a5:4a:eb:29:cd:2e:ea:63:87:
e5:cd:5f:2f:52:78:35:50:fd:0f:36:e2:28:3b:30:
a7:dc:e1:72:0f:fe:ff:ab:b0:b4:7c:1f:61:e1:7f:
10:2f:46:e0:eb:0e:bf:9e:c4:b5:b4:26:f4:c1:03:
b5:13
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:B7:B7:88:B9:6D:49:DE:67:DD:0E:08:DA:8B:0F:74:59:F7:BA:9D
X509v3 Authority Key Identifier:
keyid:92:80:D3:E4:67:29:68:F8:6E:89:55:DB:62:0C:B7:65:DB:9D:71:42
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koDT5GcpaPhuiVXbYgy3ZdudcUI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/59da50-aedb-4906-af19-090fe3da2433/1/koDT5GcpaPhuiVXbYgy3ZdudcUI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4a:1b:21:65:05:c1:18:80:7f:93:22:e2:09:94:38:8e:d5:6a:
45:1a:0f:be:2c:87:21:36:22:1b:7b:48:54:90:d2:ac:43:1c:
0a:24:a6:31:8b:56:a4:56:f1:f9:30:a4:23:fa:91:1b:2d:84:
c5:ce:04:15:51:2a:59:07:6f:0e:04:f6:64:50:9c:62:e9:e2:
57:49:da:17:ff:ec:bf:0e:40:99:1a:30:60:ca:ef:af:66:12:
8b:72:0d:ce:8b:fb:16:67:19:bd:97:db:ff:b1:f4:03:51:2c:
92:68:49:b1:a5:68:d7:97:4f:47:60:e5:32:63:2b:bf:40:38:
ba:dc:54:86:32:4b:a3:80:49:f4:49:71:11:ed:cd:8a:40:cb:
b0:80:99:c2:73:cd:5e:15:3d:c8:42:d1:07:d0:bf:5d:ce:58:
e6:ba:56:95:91:5b:89:72:9c:c2:7e:77:17:e0:78:60:c0:f8:
59:c0:d2:1d:34:f6:af:9b:dc:90:c5:79:04:9e:e7:0e:49:ec:
84:8f:f0:e3:0b:19:57:19:52:44:9d:5c:d4:09:c7:ae:c4:b9:
f4:d3:65:a6:d0:bf:ad:20:75:62:bf:7a:c7:f4:ed:8d:cf:e6:
89:93:04:99:ac:f5:19:d8:9f:39:95:ca:eb:2a:6f:93:51:74:
c8:9f:70:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Mar 2 02:03:35 2026 by rpki-client