Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: SIyHlF7lRzN1Fuq5utjcSTTxu3dzOWUD5DtUCiy9R5Y=
Subject key identifier: FE:F4:1F:60:3B:12:6A:87:C4:3E:73:CD:33:5C:56:2B:7F:AB:2A:06
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 019D9C635FA7063F628807C499247AF85D74
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 17:00:51 +0000
Manifest this update: Fri 17 Apr 2026 17:00:51 +0000
Manifest next update: Sat 18 Apr 2026 17:00:51 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: 58kgOAS8eLTmrarBNj19gT+VFCkEMMTbqVSnarBOgEk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 17:00:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9c:63:5f:a7:06:3f:62:88:07:c4:99:24:7a:f8:5d:74
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Apr 17 17:00:51 2026 GMT
Not After : Apr 18 17:00:51 2026 GMT
Subject: CN=fef41f603b126a87c43e73cd335c562b7fab2a06
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:8c:03:16:5b:32:a3:b3:87:bc:c0:a4:cd:d3:
9f:19:0b:39:28:a5:09:89:50:48:c7:00:e7:31:26:
dd:6c:7c:f1:29:26:b8:fa:4b:f4:ef:fe:aa:64:61:
6f:02:25:8c:d6:ce:e0:1b:5a:d1:2c:5e:2a:c5:90:
fc:64:56:59:cd:c0:cf:2f:b1:6f:26:ed:d7:86:ed:
23:c6:63:62:1e:db:7c:48:b6:d2:e5:6c:71:fd:c5:
9c:38:74:f2:d4:42:c7:4d:40:37:ea:cf:08:3a:da:
f3:61:c2:f8:1a:00:89:58:15:e8:5b:07:e8:55:f0:
a6:53:55:5e:cc:a5:58:f2:b4:99:f7:02:68:9a:40:
3d:c0:77:06:a3:8e:d4:a8:a1:38:85:90:26:9c:80:
9d:b5:04:7b:14:8c:41:81:9a:ad:4a:0d:0c:a6:4d:
ef:6b:43:c1:a0:40:6d:72:bc:07:ee:ef:5a:98:54:
c8:69:25:a3:df:2d:3a:46:d7:38:f6:b8:e3:1f:95:
1e:f3:ad:df:88:4c:bb:95:83:69:2f:a7:b5:38:92:
1d:84:78:69:69:eb:e8:97:f1:0c:6b:aa:61:0a:20:
b2:5d:e2:36:31:03:75:a3:3c:4b:39:6e:4c:39:54:
96:b4:8f:48:e7:a4:2c:52:ff:c8:53:c2:8b:4b:57:
af:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FE:F4:1F:60:3B:12:6A:87:C4:3E:73:CD:33:5C:56:2B:7F:AB:2A:06
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
c0:48:b2:94:12:fb:94:74:30:21:89:7e:5a:95:23:39:00:41:
ba:e0:fb:a3:53:b5:5c:12:87:f7:3f:23:bc:c4:88:59:43:0d:
8a:b9:ab:c0:d5:8b:fa:9b:8f:f4:40:21:57:44:53:e7:f5:ec:
16:fc:d2:93:81:9d:df:1f:72:87:19:43:9a:80:05:7a:fe:5f:
d6:ee:92:65:5e:26:fa:20:a6:b6:64:19:02:b7:b9:a2:49:40:
28:28:c1:92:cc:ce:04:96:3b:ac:2f:0a:5b:3d:ff:3d:0d:14:
0d:1a:2a:d6:c2:68:de:1b:1c:27:b9:a4:b9:b8:05:ff:76:53:
4c:f1:bb:f8:93:72:e1:d6:3d:af:c7:96:2f:a5:e7:24:ca:9c:
38:7d:d8:77:94:f4:cb:7c:67:29:07:29:37:12:07:92:cb:37:
c6:be:03:6b:36:7b:ac:7e:5c:11:08:87:6a:47:1a:34:e7:b0:
ea:9f:48:0f:0a:a2:cd:da:42:68:5e:cf:da:9f:3d:1b:23:f9:
fb:ee:5b:6c:6d:50:69:65:84:5c:2a:a8:4c:10:a5:c3:51:59:
c2:3e:49:1e:d5:de:39:b5:ac:72:bd:a3:57:a0:a1:e1:c0:44:
12:dd:d7:6a:29:30:22:f7:75:f9:64:18:63:b0:d8:df:ca:2d:
10:58:c6:c4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 18 03:03:40 2026 by rpki-client