Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
File: CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft (raw, json)
Hash identifier: 39+PpYC3aIsRHq4cQ1zuCm3CHSJ+eLQD7U9+VkBPL0c=
Subject key identifier: 38:63:7C:BB:BF:93:60:EF:17:ED:B9:22:D3:26:E7:B3:D2:17:1E:96
Authority key identifier: 0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
Certificate issuer: /CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Certificate serial: 019F1265AB4128ED2A1F11E8F01E1264E183
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
Manifest number: 193F
Signing time: Mon 29 Jun 2026 08:01:20 +0000
Manifest this update: Mon 29 Jun 2026 08:01:20 +0000
Manifest next update: Tue 30 Jun 2026 08:01:20 +0000
Files and hashes: 1: CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl (hash: 3HKiZTMEScSlHVFAaRxXFupppOKDcmSU+5ONyYTrqIg=)
2: PCXd-9EviSUuR2-KbIZUWi0riBQ.roa (hash: nefgPfEo2Djt4hqoZTxg0xbxcxTGKZQtmu/1O0o4rzc=)
3: SaY7wOsMp2MJxwq5R4bQXJX5cKQ.asa (hash: 6aCmS8ZJo5oF+zi2/gpyJE6v5ir07/SV3sv2+dwp8nI=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:65:ab:41:28:ed:2a:1f:11:e8:f0:1e:12:64:e1:83
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0a4a702f677f336d9b3e36c384ebc8c9fd8859f4
Validity
Not Before: Jun 29 08:01:20 2026 GMT
Not After : Jun 30 08:01:20 2026 GMT
Subject: CN=38637cbbbf9360ef17edb922d326e7b3d2171e96
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:d3:c3:cf:9b:56:10:03:28:1f:8c:ba:cb:c1:
d8:bd:95:b6:97:62:99:c2:48:c8:3d:dd:19:a9:fd:
a2:78:ee:ac:b5:1f:24:95:cb:a6:8d:73:a2:3d:95:
9d:8e:9f:d5:81:6b:d4:1b:8f:c3:20:34:51:d7:10:
47:57:62:f5:17:51:48:60:46:4f:77:25:bc:ad:3e:
88:47:0b:b4:72:72:45:2f:fb:17:1f:ba:98:a7:db:
82:18:89:e2:28:85:b6:f6:09:ef:7e:38:25:f6:ad:
c6:5b:e0:43:06:7d:3e:00:4a:7d:f5:40:96:00:ec:
6f:a8:44:9c:b1:0e:79:9c:c2:06:e1:5e:e4:d5:38:
2f:9a:e1:0e:4b:63:9c:4e:27:42:dd:82:86:40:c5:
d9:17:01:70:bb:c4:4b:52:0f:7a:55:cf:fe:10:0b:
94:b6:db:70:a7:13:fc:db:63:79:b6:1f:6e:a8:ae:
74:19:8c:1f:b6:27:a8:97:3f:34:4f:33:d0:30:b8:
42:9c:e2:2c:4b:44:e5:f1:f0:04:bf:64:59:d1:8e:
4f:97:3a:af:86:29:cc:d5:4f:12:1e:8a:9f:c9:0a:
9d:e1:a2:a8:18:dd:0b:31:b2:47:51:1a:29:f2:3d:
19:bc:d7:19:e8:28:a7:11:1a:74:5e:8c:08:19:1e:
88:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:63:7C:BB:BF:93:60:EF:17:ED:B9:22:D3:26:E7:B3:D2:17:1E:96
X509v3 Authority Key Identifier:
keyid:0A:4A:70:2F:67:7F:33:6D:9B:3E:36:C3:84:EB:C8:C9:FD:88:59:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CkpwL2d_M22bPjbDhOvIyf2IWfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/13/da5b32-20a7-4e0a-b834-ef31715611aa/1/CkpwL2d_M22bPjbDhOvIyf2IWfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:d7:a6:f8:0f:6a:9c:88:08:90:c4:01:96:e8:6e:17:43:ae:
d3:9a:3e:bd:0c:11:94:ee:fa:5f:2b:4b:79:ad:76:cd:f4:71:
37:23:10:6e:4f:72:07:ca:c2:24:a4:f4:39:fe:70:0c:d8:1d:
a5:60:bc:a3:c6:60:10:7e:21:f8:fc:16:9e:a8:7d:de:bd:a0:
ad:03:2c:7d:dd:ce:09:c1:96:40:ae:c3:71:1f:5a:5f:79:c4:
61:1e:9e:b9:07:9e:ae:c0:14:58:cd:1d:6e:6d:56:5b:51:33:
19:4a:39:26:6f:87:6a:95:08:2f:0b:69:62:35:0b:c2:01:d3:
dc:a7:a0:a9:0a:3f:52:ef:d3:a1:62:92:75:62:16:39:97:d3:
6b:f9:69:05:88:17:7c:e7:a8:d7:59:94:0b:5a:1e:3c:96:fc:
68:c0:8c:ae:d4:22:a2:d2:bb:2b:5e:9b:20:0a:46:fa:54:41:
76:17:63:fd:05:0a:20:65:7e:37:de:78:65:49:c5:41:bc:7d:
e3:9f:f9:6e:b7:58:ee:05:76:67:6d:b5:14:32:34:c1:52:57:
24:92:6f:98:76:87:3e:d6:7a:d0:9d:2e:f8:c7:05:90:7b:b9:
97:e1:2a:cd:36:1a:da:1d:a6:94:06:2b:7c:07:47:a0:95:49:
18:38:29:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:35:20 2026 by rpki-client