Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
File: kGQm9IPDaqzahzIySriK1YAMmi0.mft (raw, json)
Hash identifier: 6o4+iDZ7SYSUgneyipUPUYBeNR/F/3hShiL9vnESEfQ=
Subject key identifier: A9:72:32:81:D3:29:CE:47:6A:3E:BF:65:7E:6E:8C:66:30:AE:1A:F1
Authority key identifier: 90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
Certificate issuer: /CN=906426f483c36aacda8732324ab88ad5800c9a2d
Certificate serial: 019F1A1EABFA1BE4B0244F2FF5AB01CFDA61
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
Manifest number: 0EAC
Signing time: Tue 30 Jun 2026 20:00:45 +0000
Manifest this update: Tue 30 Jun 2026 20:00:45 +0000
Manifest next update: Wed 01 Jul 2026 20:00:45 +0000
Files and hashes: 1: kGQm9IPDaqzahzIySriK1YAMmi0.crl (hash: eICFgVvXudBCrZIVd2QpNRdQ6QlR1wG3nROiRv/6xDY=)
2: pEXsp_wHHGLaZhZhYFoeKyAe4xU.roa (hash: xI/2+qldJxPTklb7r+PHTCSnZEv4TfvhGV7Tifv5aSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:1a:1e:ab:fa:1b:e4:b0:24:4f:2f:f5:ab:01:cf:da:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=906426f483c36aacda8732324ab88ad5800c9a2d
Validity
Not Before: Jun 30 20:00:45 2026 GMT
Not After : Jul 1 20:00:45 2026 GMT
Subject: CN=a9723281d329ce476a3ebf657e6e8c6630ae1af1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:11:5c:e5:d6:bd:b3:46:46:7a:d6:28:0c:77:
2e:be:7a:73:75:9b:66:c9:c5:c6:96:61:2e:89:02:
51:fc:04:a3:09:78:8d:44:3f:29:4b:5f:da:a2:5c:
6e:bf:00:ec:f9:f3:d8:44:b4:22:f1:b0:94:9b:76:
89:f7:78:dc:64:dd:71:46:f3:37:bf:21:11:06:85:
8c:1e:f5:9d:c9:de:02:a0:ee:dc:89:26:db:fc:1d:
cf:06:d0:85:48:ae:82:c7:62:61:38:9a:ba:5f:f9:
57:b6:70:62:42:d5:98:34:da:7d:83:df:75:f1:1d:
51:29:2d:7e:e0:80:3a:d5:ac:f3:3c:cd:8b:ea:b9:
c4:22:d8:57:bb:bd:42:a9:08:d4:93:29:d5:cd:d2:
ce:de:e9:78:b6:fa:1f:2d:65:df:41:a7:9c:fa:f6:
0f:a2:15:95:3f:59:80:89:a2:b2:7f:38:78:d2:6a:
d8:7d:53:d7:79:b5:c7:ef:3f:9a:8b:c4:57:31:92:
f1:fe:3f:ca:d2:0f:87:43:d7:73:8a:28:c2:8c:a1:
c3:10:53:56:fa:e7:a8:97:74:3c:30:a8:75:5b:12:
29:e8:03:6f:a2:a3:20:e6:4e:9e:5f:73:26:4f:db:
0e:93:ba:27:04:15:62:b7:c1:44:01:d1:dc:59:55:
09:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A9:72:32:81:D3:29:CE:47:6A:3E:BF:65:7E:6E:8C:66:30:AE:1A:F1
X509v3 Authority Key Identifier:
keyid:90:64:26:F4:83:C3:6A:AC:DA:87:32:32:4A:B8:8A:D5:80:0C:9A:2D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kGQm9IPDaqzahzIySriK1YAMmi0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/94d441-d987-4062-89c1-94c5ad17a7a0/1/kGQm9IPDaqzahzIySriK1YAMmi0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:4f:45:33:c7:d4:82:a9:f2:a0:8a:f5:02:1f:36:75:30:65:
74:03:9d:85:91:92:ea:3b:4b:0c:53:0b:4e:8d:c7:9b:79:34:
fe:72:50:00:df:82:cf:34:43:b5:e5:f4:3c:58:f1:0b:db:7f:
4b:39:6e:9b:96:42:12:f7:09:02:b8:a9:e3:45:a3:0e:9b:c8:
31:29:72:55:d6:0f:92:93:7c:b3:f8:d2:e0:61:51:f5:e3:6a:
ca:64:f5:2c:04:5a:a6:97:82:01:bb:a0:d9:0e:e5:34:00:90:
fa:c8:f4:5e:c2:b5:15:df:8e:80:76:b4:98:40:14:32:88:8a:
fc:0c:c4:cf:03:e1:20:85:87:73:21:5c:c1:e9:ca:59:30:a9:
d8:c8:44:c1:7b:0a:c5:66:68:c8:50:bc:3e:38:9c:e0:2f:2a:
99:73:30:d4:47:9a:50:e8:2f:a6:4a:9c:5d:0c:c8:72:0a:b2:
c8:c7:2b:c7:8a:52:18:21:ac:0e:da:15:ae:c0:7e:bc:91:ef:
e1:6c:13:18:5f:94:e3:0e:8a:8e:29:25:36:04:3c:82:77:0a:
e2:14:f5:e4:bf:01:8d:7d:bb:0b:7c:48:e0:0d:c8:3c:83:b7:
48:0d:ee:db:a6:89:f3:26:59:f4:18:cd:d8:c9:5b:66:83:5b:
24:f8:7b:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:19:16 2026 by rpki-client