Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
File: mK9kDIIO61-8kigcYRRPEae9cH4.mft (raw, json)
Hash identifier: PdAhnK3yCvQXk1TTqF0LVJ0bKSmtzIjO56st00f1Pko=
Subject key identifier: 6C:01:4C:AE:ED:11:EB:78:50:7F:46:AE:9B:0F:EA:88:22:83:0A:1E
Authority key identifier: 98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
Certificate issuer: /CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Certificate serial: 019E8FB73E3D4B0681D2FC302B32FFC8235B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
Manifest number: 0698
Signing time: Wed 03 Jun 2026 23:00:11 +0000
Manifest this update: Wed 03 Jun 2026 23:00:11 +0000
Manifest next update: Thu 04 Jun 2026 23:00:11 +0000
Files and hashes: 1: L314PIS9EZuLIllvbYG4hWHPUco.roa (hash: oCRJ7CpfVca9XR76mJtqFGhJ4HnpliA09q5+Ns2Ex/4=)
2: mK9kDIIO61-8kigcYRRPEae9cH4.crl (hash: mNiTcC6U2pQCVjKC3ZoqU1LgVbqSQZMPWbgrfjathR8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 22:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8f:b7:3e:3d:4b:06:81:d2:fc:30:2b:32:ff:c8:23:5b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98af640c820eeb5fbc92281c61144f11a7bd707e
Validity
Not Before: Jun 3 23:00:11 2026 GMT
Not After : Jun 4 23:00:11 2026 GMT
Subject: CN=6c014caeed11eb78507f46ae9b0fea8822830a1e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ac:16:8b:4e:ef:70:37:ae:a6:ff:07:91:21:
07:b3:bd:51:f7:b0:4e:39:20:ae:53:a1:f7:07:b6:
a6:e4:da:47:43:8f:53:2b:a2:a8:63:d6:5b:61:82:
aa:b4:44:f6:3c:43:b1:f0:e5:0a:ac:66:6c:be:5a:
c8:d1:42:a9:5d:da:2e:d1:8c:96:7e:81:ad:37:6a:
e9:dd:d0:bc:80:53:17:d4:a2:5b:26:ea:b0:02:d1:
1a:ed:04:28:7f:db:89:3e:84:be:a9:67:50:5a:63:
ac:3d:4c:08:90:e9:c9:a3:b5:87:6b:e3:62:55:ca:
46:50:b2:fb:97:8a:86:28:c6:bc:fe:37:b1:02:46:
9d:d0:12:dc:31:06:3a:6a:5e:7a:22:82:6d:85:1a:
8e:77:47:15:74:c5:e1:25:f3:fb:15:e4:18:3d:02:
94:12:f2:35:d7:64:f3:d0:15:72:e4:10:0f:ff:79:
df:b2:ce:96:c2:d2:6a:f3:c9:62:63:f5:25:9a:74:
cd:51:29:b0:7f:b0:fa:f2:b5:71:3e:a2:0e:ef:3c:
b2:9a:72:90:d7:57:0c:69:ee:25:76:a8:13:13:28:
34:59:70:3c:c9:ea:40:dd:d9:8c:ac:f6:1a:8c:80:
c6:bc:f6:28:6f:1e:aa:d8:b8:b9:93:84:1f:79:5e:
2f:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:01:4C:AE:ED:11:EB:78:50:7F:46:AE:9B:0F:EA:88:22:83:0A:1E
X509v3 Authority Key Identifier:
keyid:98:AF:64:0C:82:0E:EB:5F:BC:92:28:1C:61:14:4F:11:A7:BD:70:7E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK9kDIIO61-8kigcYRRPEae9cH4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/122ff4-c4a7-4698-879f-ecab70ef32da/1/mK9kDIIO61-8kigcYRRPEae9cH4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8e:0c:03:fc:d9:c5:46:90:c9:a6:04:d9:26:b0:22:c1:59:b6:
29:c9:6b:fd:f1:2a:d6:10:bd:97:b1:d2:e8:71:92:6c:e4:a0:
5a:61:7c:08:b0:bc:13:68:cb:15:08:a7:5f:57:e6:c5:55:1b:
57:98:ff:ee:a2:ff:71:3a:e2:4c:d1:68:ff:4e:2e:ad:c4:92:
b7:40:96:9a:62:17:63:77:19:c7:75:0f:14:c7:4a:91:ec:66:
4e:a9:f9:96:16:6f:ce:44:ad:b7:38:8d:6c:31:c8:ef:d9:a3:
1b:7a:af:86:81:ec:bb:cc:cb:98:ca:c5:84:74:56:ef:56:a4:
46:b2:fc:a1:c2:6e:74:ed:2e:d1:b9:8a:7d:33:2a:66:72:40:
52:fb:b2:78:ac:71:26:e3:29:36:00:6c:46:63:7d:9f:d8:3d:
0e:21:f1:31:e2:08:ef:25:96:86:bb:0e:91:0f:e7:c6:47:91:
c2:1b:b0:4c:72:21:a2:63:5e:e4:50:fa:db:c9:4e:29:4a:70:
2a:58:dc:bb:71:6a:70:c9:a9:01:1f:63:37:ba:74:be:ce:85:
3c:cb:4b:3c:66:61:87:d9:f8:a0:74:48:7d:1d:ca:08:25:5c:
a2:aa:a7:30:dd:d5:ff:41:7b:e5:b1:4e:69:a0:f5:43:9b:b5:
fa:fb:12:e0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 4 07:59:37 2026 by rpki-client