Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
File: KeoL3n9pK8X9wLFoumFKAnLy5k0.mft (raw, json)
Hash identifier: VKeIc/M9ZlGar2zBGARZrDdbhrW+CQYYOwra8Lx6i7M=
Subject key identifier: D4:FE:43:06:55:5F:6E:96:0C:F2:CE:94:3F:05:50:68:76:ED:EB:E9
Authority key identifier: 29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
Certificate issuer: /CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Certificate serial: 019EC03621148DDDBC5DB28EEC745D23BB71
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
Manifest number: 0FC5
Signing time: Sat 13 Jun 2026 09:00:33 +0000
Manifest this update: Sat 13 Jun 2026 09:00:33 +0000
Manifest next update: Sun 14 Jun 2026 09:00:33 +0000
Files and hashes: 1: AoiLP-aKiV68_RegC3FR8BLmoTY.roa (hash: cAZegRRMeuO3/yO4SqdfyQYoOuuZTcc84vu6Tr6LRDs=)
2: KeoL3n9pK8X9wLFoumFKAnLy5k0.crl (hash: zwADbkpRh4wfhchQo/HM15rbUo7NYyIhvFoDazLZbJQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:36:21:14:8d:dd:bc:5d:b2:8e:ec:74:5d:23:bb:71
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=29ea0bde7f692bc5fdc0b168ba614a0272f2e64d
Validity
Not Before: Jun 13 09:00:33 2026 GMT
Not After : Jun 14 09:00:33 2026 GMT
Subject: CN=d4fe4306555f6e960cf2ce943f05506876edebe9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:5c:68:9a:23:a4:81:ea:64:df:0b:af:eb:7a:
80:c6:43:32:e3:d9:30:ab:08:39:79:fb:5d:a4:bd:
83:19:70:4e:6e:48:c9:db:0e:75:c0:7a:ab:f8:a6:
db:89:78:0e:74:98:d0:4d:3f:d5:05:21:d1:71:49:
84:a1:21:52:f6:0c:c3:7a:2f:c0:ff:c4:c8:0b:50:
1f:b6:cd:b9:d9:95:29:3b:52:96:91:45:97:46:38:
b6:b0:ca:ad:cc:54:de:8c:59:f5:f4:de:68:e5:fc:
ea:5b:0f:ed:9d:d8:6b:9b:a6:cf:da:f4:1d:cc:2b:
3d:56:21:43:1f:1c:e5:80:a6:0a:1f:15:78:ab:7f:
55:d3:23:52:50:9f:ca:de:f7:2b:c2:ea:bb:4a:a4:
94:06:67:02:ed:20:80:bf:05:01:0a:1a:d8:73:51:
a1:db:30:af:a5:b9:a6:da:3c:1e:9b:9d:26:ba:dc:
de:a9:92:5d:2d:c3:69:db:e9:29:cc:f0:30:05:b3:
bf:05:e4:09:68:54:a4:b2:4f:d8:e2:ea:04:f3:72:
76:a8:2b:59:e9:3d:0c:72:0e:56:b1:83:34:f2:32:
ea:16:e5:7e:b2:24:ca:a0:c5:8c:05:d7:22:3b:f1:
be:17:81:8d:93:8e:8d:44:c2:8c:45:f7:e8:34:3e:
fe:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:FE:43:06:55:5F:6E:96:0C:F2:CE:94:3F:05:50:68:76:ED:EB:E9
X509v3 Authority Key Identifier:
keyid:29:EA:0B:DE:7F:69:2B:C5:FD:C0:B1:68:BA:61:4A:02:72:F2:E6:4D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/KeoL3n9pK8X9wLFoumFKAnLy5k0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/d2ff5b-0008-4572-9380-976c04bdf18f/1/KeoL3n9pK8X9wLFoumFKAnLy5k0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:e4:12:01:42:1b:0c:f1:b9:89:70:4a:5c:db:21:ff:12:22:
4e:7d:d9:07:51:e2:aa:2d:e2:5c:91:24:c5:ee:b7:e6:00:24:
b1:01:c4:e8:15:c0:76:76:9b:36:68:60:b0:25:e1:8d:4b:75:
ed:9a:23:c1:35:ab:76:39:1a:b7:5a:9e:9d:09:cd:b5:58:06:
f7:d6:4b:06:d5:b2:84:22:7a:64:6a:7a:7d:43:3d:cc:48:09:
e2:b8:fa:87:c8:49:c1:42:80:92:b2:cb:15:46:0d:42:fd:99:
32:ed:1b:a6:d0:19:22:00:9c:19:05:25:c4:37:e3:f3:5b:df:
c5:69:37:28:b5:22:b2:4f:d2:b1:fd:e7:21:46:49:5d:f8:7c:
f9:cd:fb:3a:5a:0b:6b:96:e8:9f:eb:cf:88:5c:09:37:ac:82:
fa:30:1d:45:a5:43:f9:76:1f:96:0e:94:43:6c:7b:d6:fe:5f:
4c:6d:6b:b5:ed:12:d1:49:d9:59:d8:e8:52:8c:9c:e8:4e:fb:
7b:e2:ff:7b:e3:3b:ec:a2:2d:51:74:ff:06:17:a2:eb:98:42:
29:38:b2:0c:e9:c5:77:a2:3a:ce:12:f3:88:6f:26:4b:dc:a9:
e3:db:92:42:e3:b7:0b:d7:e8:03:53:6d:01:63:e2:c7:9c:d6:
59:f7:c4:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 15:49:07 2026 by rpki-client