Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
File: 0RIqXLBkP3NsfseWGAmiWThmjw4.mft (raw, json)
Hash identifier: 4vljuUBQ/Tz0eAKMf7gEMmBWRd8DyN9GT27Rwn11Ux8=
Subject key identifier: 10:79:A7:40:36:A7:DE:DC:CE:F6:43:9C:B4:3C:1B:90:46:9F:38:A4
Authority key identifier: D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
Certificate issuer: /CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Certificate serial: 019F0E88555854F5E5B8B5BBCAF10D80DC4C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
Manifest number: 1987
Signing time: Sun 28 Jun 2026 14:00:43 +0000
Manifest this update: Sun 28 Jun 2026 14:00:43 +0000
Manifest next update: Mon 29 Jun 2026 14:00:43 +0000
Files and hashes: 1: 0RIqXLBkP3NsfseWGAmiWThmjw4.crl (hash: y1f/yGxXov2cjz1/bbU/bRXepTfL/P2+RMnG5laWnuo=)
2: ZKAPBlDYrEd2yjmsfMSMceCY9TA.roa (hash: F0+H6qDixU/03vN/UlEJN6xAxFU7ewgK1yqAztFgQS4=)
3: fSmn7fdIQV-BhV-TX9ikmCr8pz0.roa (hash: aPwivrJczNCFzMJcf0LFQLamq3ppdLsG7e6V+tPBFE0=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 29 Jun 2026 14:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0e:88:55:58:54:f5:e5:b8:b5:bb:ca:f1:0d:80:dc:4c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1122a5cb0643f736c7ec7961809a25938668f0e
Validity
Not Before: Jun 28 14:00:43 2026 GMT
Not After : Jun 29 14:00:43 2026 GMT
Subject: CN=1079a74036a7dedccef6439cb43c1b90469f38a4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:66:84:a5:2a:af:76:a4:31:79:ab:13:cb:4b:
88:d8:09:eb:c2:91:17:4b:c7:fa:86:c3:d5:68:a5:
4d:00:8b:e5:c8:fe:c0:aa:8b:7f:f2:22:c5:35:48:
14:9f:7d:ce:f6:9f:e8:35:b0:51:fd:7d:a6:fc:d2:
2f:ab:e5:79:af:e4:d1:d2:54:bc:8c:9e:d8:f7:7e:
54:08:d4:ff:de:28:0d:5e:23:7b:a1:d6:67:28:57:
d8:f8:f0:70:58:a0:06:7f:a9:4a:40:6d:84:cc:ed:
6e:60:5a:0e:7d:6d:27:7d:ce:c8:25:b0:df:38:e2:
10:87:fb:32:41:0e:26:17:00:c3:11:56:78:fd:cf:
65:f2:08:76:6c:da:fa:bd:af:ae:d9:40:22:63:62:
bf:0f:a1:54:11:a4:47:78:da:b1:c7:b0:7b:3e:ae:
9f:b7:5a:17:5a:26:5d:12:79:61:54:42:1f:be:49:
2b:a7:b9:7d:21:fa:5d:c4:21:40:32:a3:bb:f6:51:
78:be:85:69:03:65:d3:23:0d:94:68:6c:5f:12:47:
27:c8:41:74:5d:6a:0b:25:8b:33:1d:40:e7:df:c1:
73:84:81:a8:c2:6d:f2:68:d8:84:4f:c7:e6:c9:ef:
3f:d1:52:dc:4e:14:e4:23:5d:7b:3c:39:00:92:2e:
1c:31
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:79:A7:40:36:A7:DE:DC:CE:F6:43:9C:B4:3C:1B:90:46:9F:38:A4
X509v3 Authority Key Identifier:
keyid:D1:12:2A:5C:B0:64:3F:73:6C:7E:C7:96:18:09:A2:59:38:66:8F:0E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0RIqXLBkP3NsfseWGAmiWThmjw4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/23/accd38-0ae6-4b43-a168-1152f4393020/1/0RIqXLBkP3NsfseWGAmiWThmjw4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5c:ca:9e:28:e2:9f:ed:26:be:a8:bf:1a:b5:7b:94:0e:dc:c0:
61:13:29:4c:7a:17:4c:16:1f:51:14:bb:69:3e:41:f8:0a:0f:
6f:e3:7a:6a:e4:ce:a7:12:b8:76:b1:f6:fd:48:86:36:99:fa:
99:a3:34:a2:6b:87:6b:a8:66:2e:e7:da:27:fc:bb:fa:a1:8e:
bd:71:a5:d5:06:17:bb:b2:6d:19:7a:53:60:c7:39:00:28:ee:
49:34:ea:6f:c5:2a:72:13:d5:fe:35:d8:c5:fd:ee:8d:9a:b3:
20:da:ea:a9:1c:3f:b6:27:68:1c:8c:21:24:f2:2c:a3:de:c5:
61:ea:2e:0a:dc:b2:2d:fe:9f:94:7a:25:af:75:67:02:5b:f2:
04:ac:97:6e:45:6b:48:43:d6:79:49:7c:69:ac:d1:68:fc:de:
b8:7c:99:72:58:38:d2:42:ad:6b:6a:9e:82:1a:8e:97:b3:b0:
2b:c9:19:a7:10:4e:5b:ab:64:4c:85:e3:0c:73:99:fb:87:98:
e2:a1:29:d8:f0:5f:25:c0:a2:75:0a:b2:56:38:7c:23:24:24:
50:e6:67:24:28:fa:a7:7f:3b:f5:88:21:e9:7d:8f:db:83:ec:
a1:a7:f4:1d:a9:bd:5f:2a:f7:55:38:c4:d8:f6:74:3c:73:30:
30:b6:f9:4b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 21:06:39 2026 by rpki-client