Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: 2MJN2IFfhmfRJmrptO8yE6CRISsGSyIQivdB3EZvynk=
Subject key identifier: 3C:76:BA:03:89:B5:36:9C:A8:CF:9B:1B:EF:06:E2:27:6C:66:71:D8
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 019EBF9138CCAB6FE16340EC3E5B44DC68FC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 06:00:25 +0000
Manifest this update: Sat 13 Jun 2026 06:00:25 +0000
Manifest next update: Sun 14 Jun 2026 06:00:25 +0000
Files and hashes: 1: f1xxhacm7jnvbldN6spjT65Vwn8.roa (hash: rqkDD8hNvJtlHHJ4fiGoQKM/oQxgw1TdOWMEVdkAPbI=)
2: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: T4/XGYCW7F2ZLn6b8PfrhId2fOx0H9BSZJOtHLD6oc4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 06:00:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:91:38:cc:ab:6f:e1:63:40:ec:3e:5b:44:dc:68:fc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Jun 13 06:00:25 2026 GMT
Not After : Jun 14 06:00:25 2026 GMT
Subject: CN=3c76ba0389b5369ca8cf9b1bef06e2276c6671d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:9c:04:b3:2a:60:7b:8c:4a:f2:5a:17:5c:ef:
d9:5c:1e:64:6a:29:72:68:e5:3e:f4:e7:7a:1f:ed:
bf:b7:a1:5e:a3:42:c2:50:d7:aa:41:27:00:a2:f7:
9b:e9:dd:14:5f:d6:9b:37:dc:b2:36:dc:15:9b:ae:
b5:35:fb:23:da:5f:40:88:00:b5:9b:c5:28:73:0b:
61:f7:f7:f7:4d:d8:c5:03:25:95:2c:c4:78:7b:ab:
b8:22:2c:e2:5a:01:42:8a:10:a0:52:c0:8d:1a:62:
c6:39:2a:f6:37:36:58:9f:1b:e2:7a:91:6c:21:7e:
a6:24:10:01:9c:ab:8f:f1:e1:9e:f3:70:2b:1b:0d:
06:74:77:3b:b1:6c:42:cb:5e:2c:af:c6:29:99:35:
25:44:07:d4:48:86:65:28:fc:7f:1a:41:64:a9:51:
90:e1:83:8f:5c:ff:f7:56:78:75:74:27:45:69:83:
d6:28:5c:c4:51:6b:4d:08:55:1b:6c:6b:86:ad:8f:
9f:8d:5c:74:69:dd:44:96:00:f1:6d:b7:5c:90:81:
c4:fa:d3:db:35:55:95:d4:7d:12:20:36:62:07:66:
84:b7:f7:0e:d6:c2:09:c0:01:25:db:bc:ff:d4:b5:
7d:11:d6:b6:d8:f7:e5:c8:c0:b6:37:51:73:f9:fe:
c0:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:76:BA:03:89:B5:36:9C:A8:CF:9B:1B:EF:06:E2:27:6C:66:71:D8
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
33:23:8b:fe:07:14:2d:3f:34:62:8e:6a:88:40:2d:6f:ee:9e:
d4:a6:54:f3:05:39:b2:5a:8a:cf:31:00:1a:89:f1:ee:93:7a:
d1:7c:51:84:03:ae:68:f4:0d:31:9c:f4:b4:4a:87:32:cf:8c:
4c:d6:56:08:bb:a1:2a:2e:56:33:53:b8:4b:ad:cb:ad:11:c2:
61:4b:68:ad:40:ea:40:f3:09:60:2a:60:5c:f7:76:7a:7f:5d:
81:86:67:7b:40:c8:cd:25:74:0d:ce:1b:18:35:10:2e:2a:86:
13:55:c2:eb:73:02:2c:98:35:c8:96:40:50:04:2c:a6:1e:fc:
a6:9c:f5:6e:61:10:29:dd:8f:67:00:62:a2:4b:38:29:39:ff:
e5:d2:7b:0d:bc:8b:97:5d:ff:ca:de:65:c2:6c:b5:80:22:72:
92:b3:3a:01:90:19:88:47:73:0c:3e:0f:0f:8d:43:24:5c:f4:
80:b4:59:54:52:d7:6a:a6:6f:3b:d5:48:27:6b:d5:92:40:67:
44:07:24:7b:b1:48:2d:4e:a8:4a:d4:90:fd:d2:a5:26:4f:6b:
d9:ef:90:f6:94:d4:ca:b6:e1:a5:de:9a:5f:53:0a:bb:a8:36:
9e:db:11:7e:fd:93:47:61:1c:a1:db:15:35:d9:67:78:7f:1a:
0f:9e:35:67
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:21:47 2026 by rpki-client