Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
File: 001KO3R_ynAQOxfz29xQRcrOMt8.mft (raw, json)
Hash identifier: 2jliLOCOypGZDI6K1TKfm88zAsLVjVdhhpoL+NCUEtk=
Subject key identifier: E7:C8:1B:FC:51:BB:12:CF:FF:C1:58:F1:C2:E3:27:26:6A:53:42:31
Authority key identifier: D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
Certificate issuer: /CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Certificate serial: 019CACEBB0A7547E31A142F681FE5C538673
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
Manifest number: 1848
Signing time: Mon 02 Mar 2026 05:00:53 +0000
Manifest this update: Mon 02 Mar 2026 05:00:53 +0000
Manifest next update: Tue 03 Mar 2026 05:00:53 +0000
Files and hashes: 1: 001KO3R_ynAQOxfz29xQRcrOMt8.crl (hash: qkzoMhDOhiQLnkEBbVLQSNcZy3snDZetOXGGWh9KGD8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:eb:b0:a7:54:7e:31:a1:42:f6:81:fe:5c:53:86:73
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d34d4a3b747fca70103b17f3dbdc5045cace32df
Validity
Not Before: Mar 2 05:00:53 2026 GMT
Not After : Mar 3 05:00:53 2026 GMT
Subject: CN=e7c81bfc51bb12cfffc158f1c2e327266a534231
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:62:eb:4c:fd:2d:86:4f:78:bb:84:7a:64:67:
73:b6:64:48:67:f5:5f:a3:ea:26:7b:70:d4:08:42:
7a:e1:de:35:06:fc:1a:b9:65:a1:6e:0c:44:63:a5:
bf:03:1b:d1:92:69:27:a7:a0:aa:48:3f:75:23:40:
db:64:17:19:a2:3f:1f:a0:9f:c0:b2:a5:02:23:c3:
c4:57:5e:c9:0e:e5:b5:0c:6d:d3:74:2f:f8:08:1d:
0f:75:80:21:45:91:50:a3:55:55:49:d9:cc:a7:08:
e8:01:88:e0:f0:0a:e4:64:c5:7b:1e:2e:ba:61:88:
61:df:64:51:51:f8:be:7c:c3:1e:b5:81:07:83:2f:
7d:65:6a:cd:44:be:b8:06:c6:44:97:3b:46:40:73:
4d:78:46:39:27:e3:09:5a:83:e2:60:83:f4:9c:0b:
bd:26:84:81:58:f6:f5:65:62:5b:3d:31:33:89:40:
1a:9e:d8:78:6e:e0:9a:2e:37:aa:fe:8d:22:a9:21:
4e:45:03:73:e4:30:c5:39:3e:59:52:c8:81:c1:1c:
ef:91:60:4e:c8:1d:84:6e:7f:c6:2a:a9:46:12:68:
e8:9a:f6:86:a1:6c:0b:6f:e1:d7:0a:8e:9e:b7:33:
a4:8b:94:c0:da:50:8b:be:b5:28:69:97:1f:fd:a5:
ba:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E7:C8:1B:FC:51:BB:12:CF:FF:C1:58:F1:C2:E3:27:26:6A:53:42:31
X509v3 Authority Key Identifier:
keyid:D3:4D:4A:3B:74:7F:CA:70:10:3B:17:F3:DB:DC:50:45:CA:CE:32:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/001KO3R_ynAQOxfz29xQRcrOMt8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/8d8372-e079-4831-afd2-437934c58453/1/001KO3R_ynAQOxfz29xQRcrOMt8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:46:24:0c:0e:d4:9e:78:a7:6e:fd:71:1c:6e:83:1f:10:89:
56:a4:b5:fd:36:ed:aa:e2:63:95:90:06:8b:1f:97:ee:41:07:
29:82:94:28:9f:ce:c0:13:9d:65:d5:14:bc:7a:b7:4a:60:68:
0b:3d:77:c8:f6:75:e3:fe:f5:74:a8:12:c9:6e:38:d6:e1:8c:
6c:5d:07:19:3a:e5:d2:f5:ea:c5:01:95:af:6d:b1:0d:b1:c9:
0f:6d:e3:14:22:aa:fd:9b:be:7b:7c:a5:2c:02:db:15:c9:fd:
1d:cc:70:8b:ed:cd:9a:d4:6c:b9:4f:0c:e0:3b:8e:83:aa:ba:
3d:3e:54:5f:ba:67:ec:4e:47:c7:9b:17:ed:f6:7f:44:a5:aa:
c1:c8:64:a8:47:d4:86:b2:7b:62:cf:b6:58:fd:0a:3d:61:4c:
b9:ca:88:11:a3:c0:5c:13:ad:3d:1b:e9:09:f7:05:c4:ff:90:
14:d9:b2:9d:03:86:a0:2a:7d:c7:97:3c:a4:b1:5f:de:12:9d:
2e:46:23:05:42:ab:21:74:ea:b2:69:8c:a4:74:f3:87:a5:a7:
fc:c5:05:5d:41:76:8e:3a:c0:a6:6b:99:a3:a0:71:99:33:24:
ae:81:7c:9f:0c:05:b9:20:81:63:18:4e:ff:76:26:7b:d3:f7:
ee:17:aa:4b
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZys67CnVH4xoUL2gf5cU4ZzMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQzNGQ0YTNiNzQ3ZmNhNzAxMDNiMTdmM2RiZGM1MDQ1Y2Fj
ZTMyZGYwHhcNMjYwMzAyMDUwMDUzWhcNMjYwMzAzMDUwMDUzWjAzMTEwLwYDVQQD
EyhlN2M4MWJmYzUxYmIxMmNmZmZjMTU4ZjFjMmUzMjcyNjZhNTM0MjMxMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsmLrTP0thk94u4R6ZGdztmRIZ/Vf
o+ome3DUCEJ64d41BvwauWWhbgxEY6W/AxvRkmknp6CqSD91I0DbZBcZoj8foJ/A
sqUCI8PEV17JDuW1DG3TdC/4CB0PdYAhRZFQo1VVSdnMpwjoAYjg8ArkZMV7Hi66
YYhh32RRUfi+fMMetYEHgy99ZWrNRL64BsZElztGQHNNeEY5J+MJWoPiYIP0nAu9
JoSBWPb1ZWJbPTEziUAanth4buCaLjeq/o0iqSFORQNz5DDFOT5ZUsiBwRzvkWBO
yB2Ebn/GKqlGEmjomvaGoWwLb+HXCo6etzOki5TA2lCLvrUoaZcf/aW6JQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFOfIG/xRuxLP/8FY8cLjJyZqU0IxMB8GA1UdIwQY
MBaAFNNNSjt0f8pwEDsX89vcUEXKzjLfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDIt
NDM3OTM0YzU4NDUzLzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC80Mi84ZDgzNzItZTA3OS00ODMxLWFmZDItNDM3OTM0YzU4NDUz
LzEvMDAxS08zUl95bkFRT3hmejI5eFFSY3JPTXQ4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABUYkDA7U
nninbv1xHG6DHxCJVqS1/TbtquJjlZAGix+X7kEHKYKUKJ/OwBOdZdUUvHq3SmBo
Cz13yPZ14/71dKgSyW441uGMbF0HGTrl0vXqxQGVr22xDbHJD23jFCKq/Zu+e3yl
LALbFcn9Hcxwi+3NmtRsuU8M4DuOg6q6PT5UX7pn7E5Hx5sX7fZ/RKWqwchkqEfU
hrJ7Ys+2WP0KPWFMucqIEaPAXBOtPRvpCfcFxP+QFNmynQOGoCp9x5c8pLFf3hKd
LkYjBUKrIXTqsmmMpHTzh6Wn/MUFXUF2jjrApmuZo6BxmTMkroF8nwwFuSCBYxhO
/3Yme9P37heqSw==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:16:09 2026 by rpki-client