Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
File: 00KrFW1a4VOtFlKOh9nIR53ApKU.mft (raw, json)
Hash identifier: bVlrS4Ma+nlXs5VWWeBX/dYpzvMueE4XYMxMfiucF4w=
Subject key identifier: 5C:F1:DC:D7:2B:B9:E3:9B:5C:AF:9B:74:26:53:4D:C8:91:ED:94:72
Authority key identifier: D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
Certificate issuer: /CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Certificate serial: 019EBE47A43A9D1232DA935506370D56CFFD
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
Manifest number: 195A
Signing time: Sat 13 Jun 2026 00:00:26 +0000
Manifest this update: Sat 13 Jun 2026 00:00:26 +0000
Manifest next update: Sun 14 Jun 2026 00:00:26 +0000
Files and hashes: 1: 00KrFW1a4VOtFlKOh9nIR53ApKU.crl (hash: BaHVsTmM7aksKgTpT0mzA6vUhGWWTBNoHQvkXI5G+TY=)
2: m-OH61lf9VVgWjii0PINezzjttE.roa (hash: 2GsJyhthbzFVpryryMCfZ+0hcAAlxYfWmqigOWWbj9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:a4:3a:9d:12:32:da:93:55:06:37:0d:56:cf:fd
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d342ab156d5ae153ad16528e87d9c8479dc0a4a5
Validity
Not Before: Jun 13 00:00:26 2026 GMT
Not After : Jun 14 00:00:26 2026 GMT
Subject: CN=5cf1dcd72bb9e39b5caf9b7426534dc891ed9472
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:d0:a1:af:bc:3d:63:9a:bb:3f:ec:52:ed:c9:
17:37:20:43:b1:05:9f:f6:e5:93:51:4b:2c:e5:17:
c4:55:96:36:20:af:75:95:92:ec:17:9d:61:f5:d1:
83:08:9e:da:bb:77:62:c2:cc:28:96:f8:74:2d:27:
c5:f3:0c:a2:6a:0c:ea:d9:ab:9f:d6:b8:ea:ec:6b:
b4:85:50:7d:ab:16:cc:11:9f:3c:87:02:fc:c8:28:
38:cb:b1:89:0a:36:c3:3c:16:98:b8:c2:79:c0:c2:
04:87:c0:2e:52:06:29:1e:ac:ef:c5:46:6a:2b:b9:
ce:23:b1:7f:02:d9:2a:f2:ae:c7:2b:5e:e8:02:e8:
08:46:25:a9:b8:48:03:e7:b0:5f:9d:99:e4:f4:99:
d8:6e:bf:6f:c3:7f:85:1d:e2:c8:3b:07:af:95:55:
1e:6e:e4:20:5c:e7:1f:e5:fa:18:95:57:f1:9f:f7:
2a:8d:50:de:3b:2c:7c:23:50:44:c9:e4:75:bf:40:
28:71:2c:90:f6:c4:7a:9e:ff:da:47:4d:3e:68:47:
78:f6:81:ae:23:50:0e:f6:7e:f2:99:38:0f:cf:16:
e8:d3:01:86:5b:58:bd:ea:fb:3f:b0:24:4b:51:e4:
2f:ce:60:1b:db:9c:c2:2f:43:56:3f:8f:eb:12:c1:
69:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5C:F1:DC:D7:2B:B9:E3:9B:5C:AF:9B:74:26:53:4D:C8:91:ED:94:72
X509v3 Authority Key Identifier:
keyid:D3:42:AB:15:6D:5A:E1:53:AD:16:52:8E:87:D9:C8:47:9D:C0:A4:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/00KrFW1a4VOtFlKOh9nIR53ApKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/263447-0c80-4cda-b915-081a637f703e/1/00KrFW1a4VOtFlKOh9nIR53ApKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:1b:53:2a:f6:7e:c7:0e:a4:8b:77:76:5a:15:f3:66:f2:41:
99:b2:77:e2:6c:f8:eb:51:33:0e:47:32:27:a5:cc:d6:26:51:
17:e9:64:53:7c:65:2c:3a:e2:ec:87:f7:d7:55:77:08:60:7a:
24:36:20:a8:1d:85:c6:8b:f8:42:36:f3:48:29:dc:20:ac:57:
22:07:ef:2b:41:49:9f:9a:3e:6e:fa:b2:0b:9b:07:0a:0d:c5:
95:36:76:fd:eb:2c:f8:81:54:06:0b:c0:c4:d1:92:53:66:ed:
6f:f5:8f:81:d1:fd:7c:96:5b:c8:c0:35:60:5d:33:e0:23:70:
e5:14:04:5d:c8:df:df:0a:87:0b:ff:e1:3b:0c:64:ff:43:69:
61:4b:8b:2f:04:90:fd:75:67:5b:55:bd:91:27:64:71:06:27:
2b:4b:e5:f4:81:ea:8a:3b:87:18:ea:08:ea:06:e3:39:fc:c1:
c1:3e:79:33:23:1a:3f:56:cb:9c:86:ab:d3:75:92:e9:2e:40:
48:a5:9d:3d:92:c3:eb:61:59:d2:26:22:23:41:43:c6:28:3d:
86:b5:b7:d2:a5:5c:8f:6c:1a:2d:b7:0d:7a:b2:6f:0d:78:90:
bd:e2:89:8b:bc:8b:05:f8:7b:7c:3e:7c:d8:99:e4:97:18:37:
0b:6f:50:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:46:37 2026 by rpki-client