Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: c3lgeqM+nReU9uwAzXCJ7XBy4uQKFc9ndXW+7Xv7nVQ=
Subject key identifier: 69:D7:D2:EB:93:18:2B:60:0E:D7:4A:98:73:AE:54:B9:72:53:FF:48
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 019EC1EDBC2181EB6781F27EBF3DEBFC715D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 17:00:43 +0000
Manifest this update: Sat 13 Jun 2026 17:00:43 +0000
Manifest next update: Sun 14 Jun 2026 17:00:43 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: gSfg5h/y8ScouGdUpGBoiClG4kkHwYNX7uMYHY7Fxa4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ed:bc:21:81:eb:67:81:f2:7e:bf:3d:eb:fc:71:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Jun 13 17:00:43 2026 GMT
Not After : Jun 14 17:00:43 2026 GMT
Subject: CN=69d7d2eb93182b600ed74a9873ae54b97253ff48
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:60:7e:79:f0:63:4a:39:4e:a2:30:48:ab:08:
fa:1a:f4:f3:cc:f4:8b:88:84:a3:01:5f:71:ff:40:
ee:dc:e9:2d:56:62:16:b3:22:df:6a:16:40:6a:67:
26:4e:71:d8:45:05:50:ed:5d:0b:57:6b:73:56:e7:
14:aa:3a:28:b4:0d:9b:e1:5e:a8:4e:34:a0:14:aa:
e5:08:da:ef:a6:b0:8b:79:dd:81:af:d6:37:0c:7b:
31:da:6e:bb:af:49:79:43:c6:53:d3:f0:12:6f:61:
e7:cb:ed:55:5f:ff:e1:36:fa:c8:4f:85:7d:8e:df:
27:26:dc:fb:cd:f9:6a:03:1e:ec:29:6e:ec:79:33:
b8:ed:d3:19:96:33:06:31:12:ff:58:e1:0e:4b:f4:
ed:a3:4b:74:12:e9:fc:3a:66:51:5c:2d:6a:7e:df:
98:66:65:0b:af:95:bb:ec:77:83:2b:2f:21:68:14:
86:8a:f6:b6:62:97:2c:91:6c:02:89:61:03:83:a0:
12:9f:a7:9b:19:0d:95:d4:92:ac:48:f8:88:ca:8b:
82:40:4b:7f:c5:67:03:aa:75:75:36:7c:61:a6:3a:
52:9f:b6:80:97:6d:c7:96:fa:88:11:3b:64:e5:74:
c6:39:14:4b:90:06:3a:1b:63:d4:18:64:37:4d:11:
12:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
69:D7:D2:EB:93:18:2B:60:0E:D7:4A:98:73:AE:54:B9:72:53:FF:48
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
cc:04:ea:e8:55:14:1b:51:6e:1d:f7:48:91:89:32:bb:df:a9:
3c:61:75:da:7a:9d:03:5c:99:82:06:42:e3:16:56:88:dc:27:
43:bd:37:ae:6e:80:55:d7:07:50:b1:5c:36:1b:76:d8:95:7e:
f7:ea:d6:47:5e:ac:4d:c6:e8:e8:8c:84:a4:09:f2:cf:3f:cd:
fe:6f:67:3c:8f:78:90:35:08:0d:cd:bf:94:8e:20:e7:9d:ea:
8f:6a:88:10:84:43:8a:fb:d9:88:a8:0c:1d:a6:f2:2c:a9:e7:
20:ed:be:01:1f:85:cc:39:62:84:4f:f9:24:5e:69:5c:52:d8:
cb:d2:bb:cb:b9:10:4b:e3:f3:5b:a8:2a:f2:82:ea:e5:ee:e6:
43:ac:d0:08:76:ee:c2:ba:2f:f9:36:64:07:d9:fa:fd:46:66:
6d:3d:fd:f4:df:9d:70:d3:cc:76:2e:7a:7a:6d:5c:9b:82:15:
db:46:eb:82:13:8f:d0:5e:fe:c0:ab:13:ea:dd:2c:de:4f:6d:
4a:eb:51:32:f0:47:d9:3e:c5:d8:9d:4e:a2:56:ee:2d:b0:a4:
5e:f9:36:a1:7f:71:a7:48:68:65:99:07:0d:a8:7b:b5:10:26:
4d:8b:8b:b7:ba:f6:08:c5:f2:e5:df:72:d8:75:e9:36:a0:ca:
85:ac:cf:5b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:08:07 2026 by rpki-client