Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
File: koAW21XmZLpyHhmumrQxbBDZZwg.mft (raw, json)
Hash identifier: jTtditZEk9W17x4L3eVHl2DbOV2qaRgo73IbLgyN+e8=
Subject key identifier: E3:CE:B4:33:C6:E5:EE:F3:9F:8B:72:0F:6D:11:49:0F:F5:80:F2:96
Authority key identifier: 92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
Certificate issuer: /CN=928016db55e664ba721e19ae9ab4316c10d96708
Certificate serial: 019D9A075C23C769F8C8D1D8DF9B0E66764D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
Manifest number: 18C4
Signing time: Fri 17 Apr 2026 06:01:06 +0000
Manifest this update: Fri 17 Apr 2026 06:01:06 +0000
Manifest next update: Sat 18 Apr 2026 06:01:06 +0000
Files and hashes: 1: f1xxhacm7jnvbldN6spjT65Vwn8.roa (hash: rqkDD8hNvJtlHHJ4fiGoQKM/oQxgw1TdOWMEVdkAPbI=)
2: koAW21XmZLpyHhmumrQxbBDZZwg.crl (hash: lBBMFOC0rECA5cS22vQZhAd4Qz94O8euIlsI3ICFvzE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 18 Apr 2026 06:01:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:9a:07:5c:23:c7:69:f8:c8:d1:d8:df:9b:0e:66:76:4d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=928016db55e664ba721e19ae9ab4316c10d96708
Validity
Not Before: Apr 17 06:01:06 2026 GMT
Not After : Apr 18 06:01:06 2026 GMT
Subject: CN=e3ceb433c6e5eef39f8b720f6d11490ff580f296
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:db:54:b9:3b:af:3c:89:97:20:b9:3b:ef:d4:
56:d9:1f:24:10:07:c3:16:b3:f9:1c:fc:58:cc:0f:
40:74:5a:da:6d:b4:8b:3a:9c:4f:98:b1:21:d1:bc:
ce:83:4f:41:77:3f:46:af:b4:5a:47:05:a6:1f:cf:
75:a6:4f:1b:8a:63:bc:07:ec:6f:5f:59:37:9f:4e:
09:bd:b5:e6:ef:e9:85:c7:3a:0b:6a:90:52:b0:bb:
5b:4d:5e:c0:25:0a:7d:1d:48:6f:c4:3b:d7:63:99:
c7:aa:e2:24:49:93:47:48:53:cf:84:e7:10:81:1c:
8a:0c:df:b1:86:fa:a7:bc:14:f8:97:d7:f3:f9:52:
f5:ca:aa:e7:ff:5f:67:d3:42:ad:89:60:e3:99:cc:
ce:9b:4e:93:ef:36:a8:74:85:4c:b7:a6:5a:31:d0:
9c:18:90:3e:99:8b:2b:3c:30:b3:8e:87:7a:2c:e5:
d4:7d:16:d4:16:87:25:6f:9c:90:e8:4e:f5:51:b3:
8b:e5:ab:67:e6:15:60:2e:82:35:92:a4:e3:b0:17:
f7:a9:5f:ec:b9:d5:41:67:47:a6:35:80:91:b9:49:
62:66:9a:09:42:fa:26:8c:65:a6:93:3e:3d:eb:2b:
ed:79:60:36:51:78:b2:24:ac:a7:bb:8a:a8:12:8a:
0b:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CE:B4:33:C6:E5:EE:F3:9F:8B:72:0F:6D:11:49:0F:F5:80:F2:96
X509v3 Authority Key Identifier:
keyid:92:80:16:DB:55:E6:64:BA:72:1E:19:AE:9A:B4:31:6C:10:D9:67:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/koAW21XmZLpyHhmumrQxbBDZZwg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b0/721a1c-cf39-4448-883b-e89cdab82e1c/1/koAW21XmZLpyHhmumrQxbBDZZwg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
94:22:79:df:17:ad:58:35:8c:0b:1e:12:7d:b0:b8:2e:d6:51:
1d:2a:25:34:4b:ec:00:c4:57:3d:47:da:0b:fd:9f:b6:24:c0:
27:52:cb:94:4c:15:2d:de:f6:af:ff:ea:20:70:7b:58:34:2f:
af:9e:38:e1:7c:cf:ed:0c:df:0c:aa:9e:07:ab:6f:2c:d3:ec:
e1:1c:96:3a:b4:69:83:2d:04:b2:bf:2b:2a:64:40:05:3f:f5:
b6:b5:18:dd:4d:2f:be:3d:d7:22:4c:10:d2:82:de:0b:34:e7:
2a:15:2a:37:0a:c3:14:57:8e:2d:c7:72:2c:07:a1:d6:81:ae:
39:f0:a3:93:9b:9f:6a:76:7a:a8:31:79:07:6e:aa:c8:f6:6f:
c9:6b:fa:c6:c9:a0:c0:99:86:35:64:75:f3:76:54:09:38:bd:
3e:0d:6e:92:f8:94:fb:a7:4d:a8:49:14:ed:a3:bb:82:b0:0a:
03:97:9f:05:cd:9a:91:11:8e:af:0e:ff:a0:77:43:5e:86:9c:
6c:56:17:a8:f5:f3:59:62:ab:fc:8b:76:31:c5:19:c6:f0:31:
08:df:7e:81:4a:03:2f:b5:2d:5a:9e:c0:c0:df:6f:da:09:25:
03:a6:af:cf:eb:95:0c:d0:a9:08:b3:9c:a7:6a:55:ae:aa:c0:
49:5c:ec:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 09:44:57 2026 by rpki-client