Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: RvTtuQPDwfpsKOpHUEIJVaCM7c4tBYkMW2I/+sJB3ps=
Subject key identifier: 6E:FF:B4:21:D4:D8:28:7C:90:FF:BA:D1:DA:6D:68:7E:15:7A:8D:5F
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 019D28169A6CC5BF5E57D74CD6AAF12D17CA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 14EE
Signing time: Thu 26 Mar 2026 03:01:03 +0000
Manifest this update: Thu 26 Mar 2026 03:01:03 +0000
Manifest next update: Fri 27 Mar 2026 03:01:03 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: AwP36Fe/D7zFVTcUv3cEI9BwMyN3q9hr00IrJfn5SyA=)
2: S6WAJx7TbU110k_g0oyFg1H_34U.roa (hash: toyst882a1xCVx/3FvwHIaERW16kFo9wkqRcGIDeq00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:9a:6c:c5:bf:5e:57:d7:4c:d6:aa:f1:2d:17:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: Mar 26 03:01:03 2026 GMT
Not After : Mar 27 03:01:03 2026 GMT
Subject: CN=6effb421d4d8287c90ffbad1da6d687e157a8d5f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:b4:00:c7:86:fd:c4:30:36:f7:ee:12:c1:83:
e5:22:5d:2b:04:2f:a4:f2:92:69:2b:63:51:8c:1d:
60:bc:d8:f7:63:a4:14:e2:41:8c:5a:78:3e:dd:1a:
ec:44:e4:78:0d:82:bd:70:ea:ba:38:59:6a:89:40:
66:55:36:24:8a:ba:f8:5b:be:50:71:cf:ec:5d:5c:
4d:59:93:53:c2:07:e2:20:27:2c:bd:ed:fe:2a:73:
46:22:13:81:7c:3f:69:dd:d0:b0:84:4e:d7:59:a5:
7c:a8:ff:7c:fe:64:f3:1e:5c:b6:26:8b:7c:14:36:
04:d5:57:bc:26:86:af:44:dd:60:d4:a6:cd:a9:c9:
18:c4:40:7e:24:b2:0a:8b:1b:c1:c9:ce:b2:86:52:
5e:98:68:47:28:df:43:00:dc:85:85:1c:48:ec:e1:
4a:de:00:c8:9f:40:f3:17:65:85:9e:37:11:17:78:
7a:83:7c:fe:fc:73:e0:47:a0:a4:db:3b:05:78:09:
a6:a8:f7:81:6f:ca:71:c6:a2:24:4c:db:75:41:52:
74:bd:6a:0d:8f:23:d8:fd:97:ac:d2:4b:80:bd:42:
c9:84:e2:d9:c5:9d:9a:29:5c:b5:66:29:f0:d9:a3:
5e:e8:7c:e6:0b:1a:4a:55:ea:5b:b7:33:c6:a5:cd:
78:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:FF:B4:21:D4:D8:28:7C:90:FF:BA:D1:DA:6D:68:7E:15:7A:8D:5F
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:d3:82:b7:b5:5c:c3:6b:eb:ab:86:26:7d:b1:96:dc:1f:a9:
32:5e:0b:29:4d:ab:2d:c3:af:a4:97:34:a0:55:04:62:33:69:
aa:21:25:3a:8b:06:11:e6:c2:19:0f:77:b4:c4:37:c7:9a:b1:
54:2d:bf:87:60:a2:71:ae:8e:fa:66:84:af:8f:6e:53:59:6c:
85:57:a4:b2:e5:5c:a8:94:35:25:98:ca:56:57:c7:82:63:4e:
6a:94:7b:2f:0a:26:c0:96:c6:31:fb:fd:40:d7:3c:73:26:ac:
b9:46:c4:04:a8:51:e1:0f:97:45:17:8e:12:ed:1c:d9:23:fa:
ff:61:43:d7:2f:92:3d:51:a8:20:13:13:5f:a8:16:85:cc:1f:
eb:d0:f6:73:f3:38:72:09:11:d0:07:0c:9d:34:08:65:a6:f0:
e6:59:2e:3d:45:1c:9e:37:e4:5d:4f:14:be:9c:4f:93:fd:21:
13:86:34:e5:96:0a:f3:15:b8:2f:a4:89:79:89:dc:9f:96:6a:
bc:fc:3c:f4:5c:3b:6b:79:e2:86:cd:a9:2f:29:19:0c:3f:93:
04:0e:1d:83:1f:16:44:4d:db:9f:4c:63:0e:07:32:f7:7c:73:
e3:23:f4:18:47:4e:3c:a0:ac:ad:8b:c0:9d:5e:d6:82:2d:47:
81:78:86:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:35:06 2026 by rpki-client