Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: N74XHobweL7gav9IUygRexCf9qLj3VVtlm224fobe1o=
Subject key identifier: 7C:E9:90:D3:D9:21:0A:35:EC:F1:09:97:88:53:58:93:9E:43:63:B5
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 019EBDA30176095FFC3FA78C07D7BBC01D0D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 15C0
Signing time: Fri 12 Jun 2026 21:00:36 +0000
Manifest this update: Fri 12 Jun 2026 21:00:36 +0000
Manifest next update: Sat 13 Jun 2026 21:00:36 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: UxMMb8BqYMTwijrZJ6Tnw1oe6Wx19J/9ehl0/rjKihY=)
2: S6WAJx7TbU110k_g0oyFg1H_34U.roa (hash: toyst882a1xCVx/3FvwHIaERW16kFo9wkqRcGIDeq00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 21:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:a3:01:76:09:5f:fc:3f:a7:8c:07:d7:bb:c0:1d:0d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Jun 12 21:00:36 2026 GMT
Not After : Jun 13 21:00:36 2026 GMT
Subject: CN=7ce990d3d9210a35ecf10997885358939e4363b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:af:65:ee:e4:5b:62:20:07:ae:5e:6f:23:83:
3c:ab:99:9a:ba:5c:9e:76:56:e6:18:40:41:fa:7e:
1c:e8:1f:39:8b:37:6f:a2:80:ac:43:2a:5c:1a:8e:
41:27:00:64:53:ef:15:93:0c:00:19:5a:f6:94:5f:
aa:fb:63:64:9d:3e:98:a8:59:d7:2f:52:81:42:04:
20:fe:de:60:42:a9:73:71:6d:c3:32:44:b0:38:cc:
f8:bc:72:10:59:7e:15:5a:d8:71:12:0a:89:c3:1f:
5e:56:a5:a7:83:2f:61:18:cc:5a:9c:9b:7c:f9:c1:
2b:04:84:59:fe:35:1a:5b:c9:ea:6b:c1:ee:ad:3b:
35:89:4e:95:96:a7:f5:2a:f4:ac:73:08:62:17:ee:
e3:0a:32:76:bb:b1:24:b4:0c:28:3b:49:b5:5f:69:
13:2b:f1:08:5d:2d:3b:ec:6f:33:44:2b:bd:09:1e:
00:6b:b6:ee:4b:11:22:b9:3f:71:ea:71:44:7b:c6:
a3:84:43:3e:51:f3:0b:7d:9c:69:52:7b:c4:af:3e:
9e:ad:a4:b4:83:23:73:3d:c1:7e:4d:d1:ea:e2:d7:
15:64:eb:58:35:e9:ad:85:6a:e7:a0:e0:f6:67:9b:
88:e7:e2:34:e5:1b:ef:94:39:1c:6d:3f:eb:f2:f1:
31:21
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:E9:90:D3:D9:21:0A:35:EC:F1:09:97:88:53:58:93:9E:43:63:B5
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:dd:4e:25:e7:10:4a:c7:db:35:b4:a3:4a:c5:eb:4d:e5:5e:
65:6d:01:37:e9:91:e8:fd:f8:2a:9d:fe:f8:a2:1b:cd:74:98:
d1:fb:4c:76:4c:60:ce:d2:ad:29:dd:3e:fa:02:8d:33:fd:f8:
7b:ab:c8:ac:d0:d7:4e:fc:d5:d4:7e:81:8a:b6:9f:58:f9:5e:
75:a6:a0:f4:c2:58:cb:41:e1:91:a9:db:cf:63:ff:3d:cf:e1:
8b:46:51:64:95:a0:57:7b:b0:89:92:1f:94:56:3f:1b:1f:38:
f9:68:98:d7:04:66:31:dc:ac:e9:e7:fb:d4:5c:05:97:04:24:
e2:bd:4e:3a:4c:ef:1e:e4:e8:68:d7:94:86:3f:f8:65:ee:3c:
20:5c:1f:54:58:05:32:62:5b:b6:96:f0:6a:85:1f:95:64:46:
1c:23:82:1c:8b:7d:fc:db:94:74:59:60:72:d1:fb:4d:a8:a9:
22:a4:58:b5:d3:63:d6:43:92:f3:f9:2a:96:6f:de:be:14:bb:
c3:1e:fc:c3:e8:77:32:87:61:13:0f:7f:21:8f:31:a8:20:01:
ae:ec:a0:3a:50:aa:de:91:fd:87:ea:d9:4b:f7:32:a5:ac:e2:
bc:90:2b:60:3b:80:a3:de:a7:8b:14:db:c2:4e:be:70:3e:39:
62:0f:25:42
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:37:38 2026 by rpki-client