Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
File: CiINqbbilYVbYn_qYQ4cthZGiUs.mft (raw, json)
Hash identifier: T/fyGomKe6QmMen/oOo3bpv87w+NSIOH06IQXgs8EA4=
Subject key identifier: 4E:DA:6B:9B:0E:DB:B3:3D:86:56:CD:F7:31:ED:30:3C:B5:F1:36:4D
Authority key identifier: 0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
Certificate issuer: /CN=0a220da9b6e295855b627fea610e1cb61646894b
Certificate serial: 019F18D632E4F5857A58B634724E1AD9B781
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
Manifest number: 1508
Signing time: Tue 30 Jun 2026 14:01:58 +0000
Manifest this update: Tue 30 Jun 2026 14:01:58 +0000
Manifest next update: Wed 01 Jul 2026 14:01:58 +0000
Files and hashes: 1: CiINqbbilYVbYn_qYQ4cthZGiUs.crl (hash: E/UVaIvPBha0O2yc/aWsgbCG7QFAZ5u9k85HTlKWr2E=)
2: rXLqqCZ5hf5h4ak7-J87ANzm0Nk.roa (hash: mVE+xG0sJPMu7e4f75e+8AtJaA+JDEMEjzG8yFMRLQ4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:01:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:32:e4:f5:85:7a:58:b6:34:72:4e:1a:d9:b7:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a220da9b6e295855b627fea610e1cb61646894b
Validity
Not Before: Jun 30 14:01:58 2026 GMT
Not After : Jul 1 14:01:58 2026 GMT
Subject: CN=4eda6b9b0edbb33d8656cdf731ed303cb5f1364d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:29:56:a7:04:20:7e:a3:3d:f9:bb:89:2f:1d:
af:a1:77:87:76:31:f4:1e:91:0e:c8:d4:45:70:98:
29:9e:7d:1a:2d:35:01:39:9f:19:af:29:2f:29:c8:
c4:22:d0:24:01:cd:6c:6c:ea:a5:f5:1d:f6:71:f5:
62:fa:fc:46:41:ba:11:43:c5:37:39:a8:46:8f:d3:
41:61:e7:2c:31:64:98:ac:4f:0d:a8:1c:72:ad:e3:
d8:24:b8:bd:97:a1:fb:49:6e:28:83:7e:a5:66:66:
a5:d1:6f:64:57:fa:09:16:1b:2c:9d:80:9a:73:63:
00:e6:8f:f2:31:ad:7c:39:0b:4b:0b:d1:b6:cf:78:
20:fc:96:35:38:56:c5:25:21:aa:aa:c3:53:88:43:
83:e7:ce:b5:df:71:d8:7f:4d:08:01:ee:ae:d2:8c:
7c:2a:1d:64:1e:6a:a8:88:3d:92:47:df:dd:a3:3c:
f1:da:7d:05:85:a2:63:56:15:2c:be:d0:64:55:49:
84:37:35:fb:56:5f:83:94:78:5e:5c:45:0e:8a:8e:
e7:ee:a7:5e:0d:9e:1b:1c:fe:a0:26:1a:c6:9b:ec:
83:cf:ae:73:4e:a7:6f:d2:68:7c:13:3d:8d:b4:ec:
7c:f4:b9:bb:c2:34:65:05:bd:ee:3e:1b:fc:68:56:
06:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:DA:6B:9B:0E:DB:B3:3D:86:56:CD:F7:31:ED:30:3C:B5:F1:36:4D
X509v3 Authority Key Identifier:
keyid:0A:22:0D:A9:B6:E2:95:85:5B:62:7F:EA:61:0E:1C:B6:16:46:89:4B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CiINqbbilYVbYn_qYQ4cthZGiUs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/09/981839-9dfa-42d3-acb1-6218828ed896/1/CiINqbbilYVbYn_qYQ4cthZGiUs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:24:ad:67:53:4e:d6:7c:e2:a5:1c:20:58:3f:c9:02:a7:52:
08:dd:81:1d:1e:21:df:d0:ff:9c:b6:05:78:24:49:53:b4:33:
a8:31:44:12:63:60:3d:b1:2d:b1:a8:07:61:ff:a7:13:0c:63:
ce:17:95:7e:4c:05:18:84:2b:ee:7b:4f:b2:2f:ef:70:8f:a8:
19:1a:32:bf:33:7b:0b:d4:65:94:1a:43:23:ab:ed:c6:de:7a:
f1:69:60:96:65:fc:32:9d:88:49:d2:3e:b4:43:cd:1c:cb:38:
a6:ad:91:94:48:81:2e:52:06:03:b4:18:58:d7:98:99:41:a2:
92:1c:ee:ec:b9:00:ff:d0:8e:a5:4b:f0:ce:b4:d5:9c:c7:34:
88:9a:f6:d6:34:ff:ee:a1:b9:00:c0:d7:34:9d:ac:77:24:11:
f5:b3:be:d8:dd:83:6c:d8:9b:62:c6:ca:b7:2e:05:33:f7:68:
33:7d:f9:f6:12:82:1c:38:b3:a1:43:40:d5:15:44:31:73:0a:
bf:19:c4:33:73:92:81:00:75:4a:96:35:5a:04:ac:74:48:09:
7d:2d:21:ef:b6:a4:4a:f4:59:1c:a2:dc:8e:93:a3:c0:4a:05:
6d:77:2c:5a:4a:7b:63:77:54:7d:d2:ec:e4:65:82:b3:07:e5:
fb:a4:e5:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:37:19 2026 by rpki-client