Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
File: S2T4wOGznYqO-OjItaD_7itTtYc.mft (raw, json)
Hash identifier: 792fV9s17pYTAvTwkY0Qg6/Ki2cpFPIXnscQEgDMuf8=
Subject key identifier: C2:3C:0B:F8:1D:6E:EF:84:5E:7B:B6:16:DE:A4:58:07:49:39:45:29
Authority key identifier: 4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
Certificate issuer: /CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Certificate serial: 019EB8EA5E98AA55A8522733B34019DAFC6F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
Manifest number: 0A82
Signing time: Thu 11 Jun 2026 23:00:27 +0000
Manifest this update: Thu 11 Jun 2026 23:00:27 +0000
Manifest next update: Fri 12 Jun 2026 23:00:27 +0000
Files and hashes: 1: 76Y2-HUPTiLdTCSIpYCkR2ZgGcQ.roa (hash: aIEXIJxpvH5c1txE7w8Ef9ChmAewpEGy4MTuP+uMjCA=)
2: S2T4wOGznYqO-OjItaD_7itTtYc.crl (hash: bRrxxp1+62cVbP/1UDcAkCBIvijkfejBq7OfSWVvzis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:5e:98:aa:55:a8:52:27:33:b3:40:19:da:fc:6f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b64f8c0e1b39d8a8ef8e8c8b5a0ffee2b53b587
Validity
Not Before: Jun 11 23:00:27 2026 GMT
Not After : Jun 12 23:00:27 2026 GMT
Subject: CN=c23c0bf81d6eef845e7bb616dea4580749394529
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:a6:3d:e0:b9:a9:c5:02:ad:5f:12:2f:2f:64:
5d:ac:3a:e4:bb:1b:8f:f1:82:1f:81:0e:3a:79:8f:
70:8f:0a:ee:18:90:08:e2:56:29:5f:29:80:8f:c2:
1d:0d:78:f9:d1:ce:7f:ef:e8:7b:d8:66:cf:52:b7:
58:c1:c8:80:c1:00:15:10:a8:f8:ed:32:5f:72:88:
84:f9:10:6d:30:02:3d:2f:4b:62:9f:d9:35:0d:f3:
b1:f9:91:3c:5b:95:9f:8e:bc:43:b6:8e:8c:bd:9a:
06:2e:c3:f0:c5:52:6e:86:d0:3b:ae:79:42:47:28:
69:b9:74:a1:f8:0b:8d:af:20:b4:cb:42:5c:0f:80:
78:49:0a:2c:ce:ee:74:2c:0d:a3:91:28:31:c0:cb:
b3:63:f7:57:a5:a1:a5:c5:b1:bc:10:cb:93:89:57:
14:b0:8b:66:3a:8d:d3:7a:4b:98:88:00:07:c0:bc:
6c:5d:08:f6:bb:2e:d3:5c:9a:0b:02:3f:96:79:18:
81:30:e7:2c:77:3b:cf:89:58:eb:ff:b3:6d:e4:a9:
94:a0:b7:3b:09:b4:82:47:b4:4b:25:30:e1:01:ad:
0d:79:96:02:9d:b0:45:5f:d3:5e:4a:82:cb:ca:3e:
bc:b5:83:f0:eb:c3:eb:2f:22:54:f5:e4:de:ce:67:
a9:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C2:3C:0B:F8:1D:6E:EF:84:5E:7B:B6:16:DE:A4:58:07:49:39:45:29
X509v3 Authority Key Identifier:
keyid:4B:64:F8:C0:E1:B3:9D:8A:8E:F8:E8:C8:B5:A0:FF:EE:2B:53:B5:87
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2T4wOGznYqO-OjItaD_7itTtYc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/c497be-f3b1-4c9b-859e-95d5e16cddef/1/S2T4wOGznYqO-OjItaD_7itTtYc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
bb:06:82:24:ae:cb:2f:84:cb:36:75:91:1e:7e:f7:b1:ce:61:
6c:38:7f:36:43:ea:ce:61:f4:b4:3c:02:85:35:36:2a:10:eb:
a7:9d:3c:95:ea:72:7b:9d:aa:41:40:2f:d8:4a:68:ee:77:c1:
6e:25:9a:03:81:26:ac:ec:9a:16:e8:df:05:3b:62:63:56:22:
81:86:b2:c9:5f:dd:53:23:88:84:d5:d1:a0:be:e2:8a:20:30:
67:2a:7a:16:63:a6:54:88:72:07:1c:d2:89:c1:49:39:68:e6:
eb:dd:c2:d5:4d:5e:1a:8b:5f:b9:39:80:69:e5:85:3d:6c:20:
6e:1d:f9:9a:ca:19:24:05:7a:20:0d:ea:c9:e7:39:db:f0:64:
18:8e:b5:65:c0:54:a5:56:d2:38:da:6f:58:67:82:87:d4:5f:
fe:db:63:aa:c3:94:3e:ad:fb:b0:49:c3:6e:2c:23:6c:65:9c:
69:5b:28:85:0f:da:61:49:9f:40:4a:72:af:22:12:8e:df:b8:
88:12:d6:52:f8:e3:f0:bb:fd:84:ba:29:d3:21:90:ff:52:67:
5f:53:97:0d:b5:ec:29:3a:9f:6c:57:af:3c:b6:c7:f9:4d:47:
74:3a:01:35:6e:ed:97:99:cd:77:50:0f:5e:3b:91:71:e2:8e:
48:e2:c8:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:39:21 2026 by rpki-client