Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
File: CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft (raw, json)
Hash identifier: h0gJKHmMx45FHPvxWIBV22OzjTn0jIj2antk/OB6WSQ=
Subject key identifier: 5F:7D:AB:AE:94:FA:F3:3E:AF:11:0B:91:D0:84:5F:AE:42:05:B2:56
Authority key identifier: 08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
Certificate issuer: /CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Certificate serial: 019E1D591D32488676D93A2BD6A13EAE03F2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
Manifest number: 156D
Signing time: Tue 12 May 2026 18:00:39 +0000
Manifest this update: Tue 12 May 2026 18:00:39 +0000
Manifest next update: Wed 13 May 2026 18:00:39 +0000
Files and hashes: 1: CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl (hash: 3empAqCAvKxD0N8Llrq/SAZDLKEzWGykUnLRhH3bYUk=)
2: S6WAJx7TbU110k_g0oyFg1H_34U.roa (hash: toyst882a1xCVx/3FvwHIaERW16kFo9wkqRcGIDeq00=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 13 May 2026 14:18:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1d:59:1d:32:48:86:76:d9:3a:2b:d6:a1:3e:ae:03:f2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=08a34daaa887d98a5348c3a460a21fc84e11a4e6
Validity
Not Before: May 12 18:00:39 2026 GMT
Not After : May 13 18:00:39 2026 GMT
Subject: CN=5f7dabae94faf33eaf110b91d0845fae4205b256
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:6d:db:e6:72:8f:1d:90:b2:56:a5:c4:de:45:
3a:f0:3b:50:5c:1c:70:7f:55:c7:81:78:b7:2b:97:
a6:7f:e0:24:53:c7:4e:7b:d4:32:ce:e6:4f:50:83:
ba:3b:c6:ab:31:d8:9a:58:ad:26:ea:16:fa:91:11:
71:b0:90:74:3d:80:6a:bb:5f:6f:f8:2d:0e:e4:e7:
48:8a:9d:4c:78:da:69:99:8d:6d:ca:5e:1c:bf:61:
8b:89:34:0a:8b:cb:67:a3:02:5c:0c:ea:1b:75:30:
7f:60:8b:0e:33:a4:e7:a1:7a:fc:11:d3:bc:31:e4:
42:e9:75:eb:19:b3:4d:4b:b2:40:a6:77:50:7b:25:
cb:62:56:2f:51:65:ea:40:cd:c2:1c:2d:47:c4:2b:
4e:90:5e:57:54:c3:e7:ff:cd:2a:75:29:92:d2:b1:
ae:ad:c4:ca:42:cf:0b:d8:fe:41:ac:98:e6:11:ab:
99:6e:03:2b:fc:94:1d:d2:91:ad:bf:f8:e9:e1:52:
59:04:bf:42:e3:7d:40:57:78:ba:75:82:4b:4b:c6:
f5:37:03:01:ae:f6:32:3e:bf:b0:00:5b:e5:4d:10:
38:5a:0f:25:b2:62:ec:fa:39:0b:fd:10:24:83:d4:
1a:27:c9:02:41:13:1f:bc:a4:5d:bb:8b:ca:9e:8d:
2d:fd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:7D:AB:AE:94:FA:F3:3E:AF:11:0B:91:D0:84:5F:AE:42:05:B2:56
X509v3 Authority Key Identifier:
keyid:08:A3:4D:AA:A8:87:D9:8A:53:48:C3:A4:60:A2:1F:C8:4E:11:A4:E6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CKNNqqiH2YpTSMOkYKIfyE4RpOY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/f433c3-132f-4d66-bd30-c62cf20a5ec9/1/CKNNqqiH2YpTSMOkYKIfyE4RpOY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
05:ee:73:9b:ae:6a:92:ae:11:24:62:ed:2f:5f:d4:3e:e2:46:
9e:02:f0:12:77:b4:19:bd:76:72:11:fa:b1:88:e1:21:39:a6:
ce:15:83:30:c7:b6:82:d9:b7:53:df:00:23:23:20:8b:f6:2d:
1d:84:93:8f:d6:04:c3:40:bf:67:41:43:8f:f4:6d:5e:7b:29:
95:cb:ea:b8:9a:6f:a5:a0:ed:ab:bc:e8:24:a7:f9:9c:f3:d7:
2b:74:4e:12:9a:0a:e4:31:34:3a:f5:ce:15:61:59:df:78:c6:
77:d5:34:da:37:94:34:0b:02:e8:8f:fa:d2:b8:85:e2:8f:80:
b4:00:cf:1f:bc:8b:9c:3b:a2:0c:36:68:33:2a:d5:73:99:8a:
00:00:e1:ea:d5:9f:0c:7e:41:f9:a9:12:2c:3d:0b:10:25:1a:
75:59:2d:ec:2b:a5:d4:76:7b:2e:f1:11:a1:1a:1a:f5:31:c3:
82:60:05:d5:b9:7a:ed:05:c3:b7:c2:3b:45:dd:20:32:97:10:
91:b2:42:0a:2a:2e:98:5c:bd:0b:ca:96:aa:e0:16:57:25:40:
39:4b:a9:fc:a4:0c:19:86:0a:26:b2:74:bb:96:35:dc:6f:99:
48:06:5a:2a:bf:73:9b:21:ff:91:45:6a:b2:47:31:6e:63:60:
1b:83:52:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 12 21:12:16 2026 by rpki-client