Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
File: gEH-6hI_ywfocqjLS92at7jaL88.mft (raw, json)
Hash identifier: Aab1vLfC4CyH4ybUmDVZooLioFBoyoyKIzlszUgA+Oc=
Subject key identifier: 34:D5:99:97:0E:AC:64:60:B9:6A:3A:8E:83:C4:7D:B0:0B:5F:C7:41
Authority key identifier: 80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
Certificate issuer: /CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Certificate serial: 019F11F88A301BB5FD829C0154BA8CBF670E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
Manifest number: 0D9D
Signing time: Mon 29 Jun 2026 06:02:08 +0000
Manifest this update: Mon 29 Jun 2026 06:02:08 +0000
Manifest next update: Tue 30 Jun 2026 06:02:08 +0000
Files and hashes: 1: TtXo5-QRvXwKIgknKnZ4_4t2vL8.roa (hash: mXHeMxujxsacK8/QlflktbO+DxAXX0UCko2MtIwDM0I=)
2: gEH-6hI_ywfocqjLS92at7jaL88.crl (hash: gU5UXOoOBvtU27cyh1TEIIH+mjU6fJVyAPYA0X04xs4=)
3: pbTK5peLIyvXvbiyDRGHdQgVdNA.asa (hash: Wtfdhvq2K7gS1UXNM4URBttcFhHoJO+q7bKyWG4w/Nw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:f8:8a:30:1b:b5:fd:82:9c:01:54:ba:8c:bf:67:0e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8041feea123fcb07e872a8cb4bdd9ab7b8da2fcf
Validity
Not Before: Jun 29 06:02:08 2026 GMT
Not After : Jun 30 06:02:08 2026 GMT
Subject: CN=34d599970eac6460b96a3a8e83c47db00b5fc741
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a4:b7:c2:fa:0f:2b:01:c8:61:f1:d2:d0:2e:65:
80:6a:b6:60:9d:b0:a2:b9:fb:8c:d4:2a:ac:ba:98:
a2:67:4b:ea:f4:53:aa:59:83:5d:f3:85:c6:5d:01:
b4:82:09:05:6c:91:df:4a:d4:42:3b:db:3f:fd:96:
9f:78:21:34:ec:29:3d:e2:3c:25:cc:0f:66:bf:01:
a7:55:1e:77:5c:af:e4:e4:fe:a3:f5:a5:12:f6:c7:
c8:af:3a:d7:97:c0:ae:91:31:22:6f:31:4d:0c:35:
34:80:38:46:38:f8:14:81:da:26:94:8d:ca:e1:a0:
68:d8:c1:19:96:28:61:77:bc:07:5e:79:06:ff:0a:
a8:50:f3:7a:e5:9b:50:fa:7d:e8:0f:6e:41:e7:cb:
5e:1c:aa:1b:39:6f:f3:e6:7f:51:6a:9e:b0:cc:8c:
8c:80:99:3b:7c:e6:17:11:92:4e:c5:54:95:ef:f4:
1e:4c:b1:6b:0e:70:5a:59:5a:af:6b:df:e9:8c:57:
16:e8:d9:64:fc:e5:37:f7:bb:e8:44:96:72:a2:bd:
77:ed:c9:3a:10:3e:1c:58:63:7b:3c:e2:98:e1:dd:
24:78:8c:ae:e1:7d:ee:ad:b3:fc:a6:88:a6:1c:dd:
12:8f:9c:b5:a8:4d:fb:3f:16:73:4a:2e:bf:43:be:
78:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
34:D5:99:97:0E:AC:64:60:B9:6A:3A:8E:83:C4:7D:B0:0B:5F:C7:41
X509v3 Authority Key Identifier:
keyid:80:41:FE:EA:12:3F:CB:07:E8:72:A8:CB:4B:DD:9A:B7:B8:DA:2F:CF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gEH-6hI_ywfocqjLS92at7jaL88.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/d317ca-3961-4fe0-bde8-f7c501418e56/1/gEH-6hI_ywfocqjLS92at7jaL88.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ad:77:f1:ac:62:6c:cc:64:84:7d:17:83:b7:3d:0d:cc:a9:76:
8e:01:7b:b7:4a:e4:d3:76:8b:bf:ba:5a:f2:ca:6b:62:00:42:
2b:7d:61:04:52:7d:98:76:a2:f0:eb:4d:43:f2:4d:48:54:35:
c0:3b:05:c2:9a:79:74:48:ac:02:8d:2d:bb:29:59:88:37:c7:
3a:27:cc:e5:f8:08:e1:a1:20:e5:4a:af:dc:13:fc:29:e7:b2:
22:19:66:7d:81:9a:b7:6b:16:58:2d:da:54:96:64:a6:1d:e5:
88:16:31:98:67:ad:6c:7b:61:0f:f2:a3:0c:41:67:44:e2:87:
53:f9:db:f6:65:00:c9:c5:2d:a8:4d:c9:2a:ff:07:79:e8:c3:
b9:b3:63:76:51:47:f7:db:51:c0:82:46:cd:09:49:6e:28:96:
0e:47:b0:5c:35:67:37:4d:61:43:dd:8c:ba:5d:57:05:48:cb:
2c:b8:2f:86:67:fd:1c:44:84:7b:5c:b4:24:0a:d9:d2:49:67:
bd:64:7d:6d:3f:8d:73:87:9a:8f:95:ea:09:da:07:18:5f:75:
8a:69:88:2d:b8:14:34:14:95:06:3f:67:f4:82:35:4e:05:2f:
0b:89:20:69:9f:3f:51:09:84:a4:1f:96:8e:1a:24:47:5a:9f:
56:02:f0:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:42:30 2026 by rpki-client