
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: 1C/OlSxzJCe2Z2vqqJNfkMNm7IURjhAzOacRbfXHn/s=
Subject key identifier: 47:14:06:FD:75:E7:CB:0B:E8:52:25:F6:84:4D:DA:B3:F2:8C:D4:98
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 019CAC7DE6C1788DE0DFFBA273C3339F26F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 1849
Signing time: Mon 02 Mar 2026 03:00:57 +0000
Manifest this update: Mon 02 Mar 2026 03:00:57 +0000
Manifest next update: Tue 03 Mar 2026 03:00:57 +0000
Files and hashes: 1: f1xxhacm7jnvbldN6spjT65Vwn8.roa (hash: rqkDD8hNvJtlHHJ4fiGoQKM/oQxgw1TdOWMEVdkAPbI=)
2: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: Cr+u6tqYzFfm02r92osA3Q5fqU8zpvTBEui/pgiEXxQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ac:7d:e6:c1:78:8d:e0:df:fb:a2:73:c3:33:9f:26:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Mar 2 03:00:57 2026 GMT
Not After : Mar 3 03:00:57 2026 GMT
Subject: CN=471406fd75e7cb0be85225f6844ddab3f28cd498
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:04:38:d2:e7:30:a1:e6:e5:5b:b5:50:9d:ce:
87:bd:eb:fd:0d:ee:42:e5:1e:7b:73:db:4e:59:9b:
dc:7d:97:43:bc:d2:c4:8f:c0:2d:7d:b4:db:7d:99:
8b:9c:7d:b2:3f:b6:99:20:8d:5f:0f:87:b1:de:b7:
b1:aa:30:a7:83:03:7f:ed:81:f9:8f:49:ac:7c:32:
e8:8a:74:04:18:b9:b8:6d:c1:c0:ff:37:ba:68:41:
c2:af:61:36:a9:e2:b1:5a:64:48:0d:c5:6c:72:a8:
af:60:07:12:dc:f0:ee:d3:c4:46:47:6c:98:aa:17:
2b:14:4b:cb:e9:72:1d:b6:c7:f0:9f:7d:39:c5:54:
71:b2:03:3b:83:a9:0e:d8:c9:50:fa:b4:52:33:1b:
60:45:b5:01:84:89:8a:b3:0c:cf:43:b5:33:0d:81:
c9:7e:35:1c:a6:f3:c6:dd:1b:6d:66:f5:65:0e:be:
6e:97:fc:a1:fa:3b:fb:f3:3a:93:c0:0f:4e:3a:0c:
56:ae:8e:6d:3f:ce:8b:9e:98:44:cc:a2:57:ae:77:
b9:63:0a:90:0b:f4:5f:df:bb:5c:c2:5f:59:55:c9:
0d:84:7e:17:d8:dd:e0:66:a3:f5:9b:e7:7a:52:75:
aa:d9:2c:c6:17:28:7f:16:1d:d5:28:53:79:be:ca:
4f:99
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
47:14:06:FD:75:E7:CB:0B:E8:52:25:F6:84:4D:DA:B3:F2:8C:D4:98
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
09:29:d9:e2:42:4a:9e:e3:85:56:f0:1e:e8:43:d7:c7:99:d6:
9d:36:20:2a:96:b3:44:8a:66:5d:81:07:40:2a:b6:97:62:82:
dc:01:e5:10:2e:d4:4b:52:d5:14:67:5e:a7:b5:29:fd:fa:ea:
8f:94:cc:8c:6b:e6:4c:95:81:33:f6:13:29:f6:59:6b:b5:43:
a4:97:cd:84:ad:97:07:c2:d3:ab:8e:32:c4:10:ed:d8:04:7c:
7a:c0:23:e6:5b:28:96:17:93:e0:2d:8a:20:38:8a:fa:6e:f8:
b0:9b:90:71:5c:9b:a8:2f:08:9d:09:0c:61:fe:11:34:4d:e4:
da:1b:ed:b5:67:89:ed:75:e0:56:71:3f:89:04:ca:cb:03:e1:
7b:b5:51:26:73:a7:b8:95:6e:31:9d:ff:93:1f:ca:38:02:b1:
58:92:2e:3a:85:94:69:c1:59:b7:26:95:85:91:b9:c9:92:19:
03:fc:8c:5b:cb:23:14:ab:75:fc:59:e7:cc:bd:de:64:c6:a5:
6f:43:4a:d1:c8:a1:46:ef:5b:e2:19:d9:b0:38:62:28:34:c9:
ff:fa:8b:95:9d:f2:a7:3d:a9:fa:a7:b2:3e:11:a3:f7:29:a1:
4a:3d:87:90:b3:03:a6:a2:33:5c:19:51:67:92:7a:af:24:95:
36:99:d6:eb
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZysfebBeI3g3/uic8MznybwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyODAxNmRiNTVlNjY0YmE3MjFlMTlhZTlhYjQzMTZjMTBk
OTY3MDgwHhcNMjYwMzAyMDMwMDU3WhcNMjYwMzAzMDMwMDU3WjAzMTEwLwYDVQQD
Eyg0NzE0MDZmZDc1ZTdjYjBiZTg1MjI1ZjY4NDRkZGFiM2YyOGNkNDk4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArAQ40ucwoeblW7VQnc6Hvev9De5C
5R57c9tOWZvcfZdDvNLEj8AtfbTbfZmLnH2yP7aZII1fD4ex3rexqjCngwN/7YH5
j0msfDLoinQEGLm4bcHA/ze6aEHCr2E2qeKxWmRIDcVscqivYAcS3PDu08RGR2yY
qhcrFEvL6XIdtsfwn305xVRxsgM7g6kO2MlQ+rRSMxtgRbUBhImKswzPQ7UzDYHJ
fjUcpvPG3RttZvVlDr5ul/yh+jv78zqTwA9OOgxWro5tP86LnphEzKJXrne5YwqQ
C/Rf37tcwl9ZVckNhH4X2N3gZqP1m+d6UnWq2SzGFyh/Fh3VKFN5vspPmQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEcUBv1158sL6FIl9oRN2rPyjNSYMB8GA1UdIwQY
MBaAFJKAFttV5mS6ch4Zrpq0MWwQ2WcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2It
ZTg5Y2RhYjgyZTFjLzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2ItZTg5Y2RhYjgyZTFj
LzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACSnZ4kJK
nuOFVvAe6EPXx5nWnTYgKpazRIpmXYEHQCq2l2KC3AHlEC7US1LVFGdep7Up/frq
j5TMjGvmTJWBM/YTKfZZa7VDpJfNhK2XB8LTq44yxBDt2AR8esAj5lsolheT4C2K
IDiK+m74sJuQcVybqC8InQkMYf4RNE3k2hvttWeJ7XXgVnE/iQTKywPhe7VRJnOn
uJVuMZ3/kx/KOAKxWJIuOoWUacFZtyaVhZG5yZIZA/yMW8sjFKt1/FnnzL3eZMal
b0NK0cihRu9b4hnZsDhiKDTJ//qLlZ3ypz2p+qeyPhGj9ymhSj2HkLMDpqIzXBlR
Z5J6rySVNpnW6w==
-----END CERTIFICATE-----
Generated at Mon Mar 2 09:07:19 2026 by rpki-client