
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: gIvguwTXwOPFJpxWOrf0lxGWGqL97/Bk4WZ8ZVHXtPM=
Subject key identifier: 40:CB:CB:9C:1E:54:73:34:8F:84:11:C4:87:B4:83:32:5A:06:D9:84
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 019CAE6C1BA6A2184F0350176E059C6E9E19
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 184A
Signing time: Mon 02 Mar 2026 12:00:46 +0000
Manifest this update: Mon 02 Mar 2026 12:00:46 +0000
Manifest next update: Tue 03 Mar 2026 12:00:46 +0000
Files and hashes: 1: f1xxhacm7jnvbldN6spjT65Vwn8.roa (hash: rqkDD8hNvJtlHHJ4fiGoQKM/oQxgw1TdOWMEVdkAPbI=)
2: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: gL27/KaTNp1k4jDBw9c8GZu69Xz6RlTA19t0uR20H8c=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 03 Mar 2026 09:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9c:ae:6c:1b:a6:a2:18:4f:03:50:17:6e:05:9c:6e:9e:19
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Mar 2 12:00:46 2026 GMT
Not After : Mar 3 12:00:46 2026 GMT
Subject: CN=40cbcb9c1e5473348f8411c487b483325a06d984
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:92:8a:b1:01:a3:97:fb:a5:90:3a:71:5f:c9:0f:
11:77:c6:06:de:05:1c:f4:0c:29:65:d1:61:c5:46:
30:b8:48:5d:3a:de:e5:4b:eb:d8:a9:9f:08:16:ea:
c0:b2:aa:5a:b3:1e:f5:06:c4:da:07:a5:7b:b8:2c:
dc:cf:fe:c9:b9:73:3a:53:37:03:2f:ab:1d:41:79:
ea:ea:51:f8:a3:71:1d:9d:ec:05:ab:41:40:f0:b8:
1f:e2:6f:8c:66:2b:05:e2:16:52:ce:5a:05:c7:cd:
8d:3e:77:f1:d8:1d:16:c2:79:b9:56:52:ed:ec:8a:
b7:dc:22:1e:42:78:c0:9c:a9:cc:d0:64:44:25:5d:
51:c8:cd:c5:3a:01:b9:5b:9f:02:7e:b0:c9:73:2d:
a4:0d:8b:23:bf:6d:42:bd:76:0f:73:14:a3:ba:fe:
0c:7b:d6:40:6a:d2:45:b6:0a:80:b6:a4:65:ce:58:
d0:60:84:d7:1f:6a:3f:40:66:3e:d9:0e:76:3a:a8:
53:1b:64:5a:8e:76:13:b3:5e:f6:d6:6f:f1:bc:d0:
3e:4e:db:75:a1:3f:6f:fc:61:a9:19:b7:5b:da:72:
00:61:ef:aa:ea:f1:63:1e:fd:38:be:ff:07:7c:38:
1a:b6:c7:6d:fb:ed:30:7b:c6:8a:e4:75:6e:37:90:
97:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:CB:CB:9C:1E:54:73:34:8F:84:11:C4:87:B4:83:32:5A:06:D9:84
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8b:03:85:f0:17:33:6b:15:85:ac:d6:34:2f:66:55:b7:34:df:
1f:3d:b4:ca:12:f1:76:44:d8:57:61:81:43:4d:40:a7:ac:26:
4b:28:7e:1f:b2:40:a5:7d:48:00:a4:e8:e0:ac:b2:45:f5:7f:
de:2b:79:fc:27:36:00:91:36:48:21:91:76:53:f5:7d:ff:4b:
0a:92:63:e2:2e:9a:58:b5:1f:e7:e2:5c:dd:5f:23:d9:2b:ff:
64:9b:22:34:7f:52:c3:61:d0:3c:7d:04:9a:40:d8:09:32:51:
e3:74:c3:62:30:64:c0:19:10:1b:7d:bf:48:4a:52:40:98:04:
ca:0b:56:c5:51:80:01:98:7c:17:61:60:64:58:bc:2f:36:4b:
a3:da:0a:2c:ca:3a:9c:30:07:d7:50:ca:2c:f3:89:e1:7d:1a:
bc:9c:35:3d:75:7d:d3:79:58:22:6e:eb:e0:83:88:e1:6a:b4:
32:3f:8f:53:e0:8f:bc:a6:9f:cc:4b:08:64:65:c2:e6:af:77:
a2:a9:4f:be:1c:eb:76:b1:e6:91:10:bc:2a:4b:e6:7d:8f:74:
f9:bb:e3:b5:e4:7e:9a:19:bb:e0:26:1b:49:47:87:22:38:fc:
6a:68:63:d6:45:9f:eb:4b:d9:27:e9:49:2d:cf:a1:a8:7a:7e:
18:4d:70:10
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZyubBumohhPA1AXbgWcbp4ZMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDkyODAxNmRiNTVlNjY0YmE3MjFlMTlhZTlhYjQzMTZjMTBk
OTY3MDgwHhcNMjYwMzAyMTIwMDQ2WhcNMjYwMzAzMTIwMDQ2WjAzMTEwLwYDVQQD
Eyg0MGNiY2I5YzFlNTQ3MzM0OGY4NDExYzQ4N2I0ODMzMjVhMDZkOTg0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkoqxAaOX+6WQOnFfyQ8Rd8YG3gUc
9AwpZdFhxUYwuEhdOt7lS+vYqZ8IFurAsqpasx71BsTaB6V7uCzcz/7JuXM6UzcD
L6sdQXnq6lH4o3EdnewFq0FA8Lgf4m+MZisF4hZSzloFx82NPnfx2B0Wwnm5VlLt
7Iq33CIeQnjAnKnM0GREJV1RyM3FOgG5W58CfrDJcy2kDYsjv21CvXYPcxSjuv4M
e9ZAatJFtgqAtqRlzljQYITXH2o/QGY+2Q52OqhTG2RajnYTs1721m/xvNA+Ttt1
oT9v/GGpGbdb2nIAYe+q6vFjHv04vv8HfDgatsdt++0we8aK5HVuN5CXaQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEDLy5weVHM0j4QRxIe0gzJaBtmEMB8GA1UdIwQY
MBaAFJKAFttV5mS6ch4Zrpq0MWwQ2WcIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2It
ZTg5Y2RhYjgyZTFjLzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9iMC83MjFhMWMtY2YzOS00NDQ4LTg4M2ItZTg5Y2RhYjgyZTFj
LzEva29BVzIxWG1aTHB5SGhtdW1yUXhiQkRaWndnLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwOF8Bcz
axWFrNY0L2ZVtzTfHz20yhLxdkTYV2GBQ01Ap6wmSyh+H7JApX1IAKTo4KyyRfV/
3it5/Cc2AJE2SCGRdlP1ff9LCpJj4i6aWLUf5+Jc3V8j2Sv/ZJsiNH9Sw2HQPH0E
mkDYCTJR43TDYjBkwBkQG32/SEpSQJgEygtWxVGAAZh8F2FgZFi8LzZLo9oKLMo6
nDAH11DKLPOJ4X0avJw1PXV903lYIm7r4IOI4Wq0Mj+PU+CPvKafzEsIZGXC5q93
oqlPvhzrdrHmkRC8KkvmfY90+bvjteR+mhm74CYbSUeHIjj8amhj1kWf60vZJ+lJ
Lc+hqHp+GE1wEA==
-----END CERTIFICATE-----
Generated at Mon Mar 2 15:50:51 2026 by rpki-client