Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
File: f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft (raw, json)
Hash identifier: 9NbOhEIZWVqrhvzrzNkHsSCsBBlJLIH5DwkgHjOz3xs=
Subject key identifier: 04:BA:B4:35:91:17:1A:A9:45:EB:51:72:A2:59:5C:A7:8A:E3:7B:84
Authority key identifier: 7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
Certificate issuer: /CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Certificate serial: 019EFC4C03C1FBB47D286FCB9961156A2D8C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
Manifest number: 08C9
Signing time: Thu 25 Jun 2026 01:01:40 +0000
Manifest this update: Thu 25 Jun 2026 01:01:40 +0000
Manifest next update: Fri 26 Jun 2026 01:01:40 +0000
Files and hashes: 1: f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl (hash: eCwiOwksqdAupXA8JAQhpuDHPNghkfzBbGQEt7TCEbE=)
2: mRB5Hkvcj1hKYhRgNGxK5sq7CD0.asa (hash: OW2a5vSieuRwC1YjVzbLfoP6BZPPRx+bPmnYVgXy6P4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fc:4c:03:c1:fb:b4:7d:28:6f:cb:99:61:15:6a:2d:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7f4ae57ee6e0a9c5101fc14a87a5334150bbab46
Validity
Not Before: Jun 25 01:01:40 2026 GMT
Not After : Jun 26 01:01:40 2026 GMT
Subject: CN=04bab43591171aa945eb5172a2595ca78ae37b84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:8d:4a:4a:0b:38:eb:66:8a:06:48:c0:df:f9:
f0:53:0f:cf:29:51:d3:8d:c3:3a:40:aa:21:04:92:
44:21:95:d0:fd:87:fb:51:63:32:28:d3:f0:b1:c0:
ff:50:28:69:66:d7:37:5b:89:f0:86:94:63:91:8f:
82:69:03:d3:a3:e8:a1:bb:a2:20:e3:a6:e2:f5:15:
4a:e1:65:e3:3d:10:b0:c0:ca:06:57:72:de:da:29:
c8:cc:63:50:ad:94:61:37:28:72:b7:22:29:51:6c:
8e:b7:d9:43:e5:a3:aa:31:e5:1b:b1:78:68:df:de:
51:04:a7:4c:8f:dd:ad:7a:f5:f2:7d:0d:52:7b:b7:
79:b2:91:10:54:07:4a:c1:0b:a7:bd:03:04:67:12:
54:fe:d7:6b:aa:eb:ea:e7:ef:c8:fd:07:67:bc:95:
36:cd:a8:22:c4:f4:14:02:4d:4c:d9:22:0e:87:7f:
cb:0a:f7:ad:7d:65:e4:71:d3:ec:f8:c1:b9:c1:3a:
c4:54:49:a9:30:45:04:02:43:a1:42:28:37:28:1c:
e0:51:41:34:da:4f:90:97:66:1c:d1:eb:77:21:96:
69:e9:55:6e:fa:15:30:e8:77:78:5b:63:cb:b8:14:
0c:b8:db:a7:f1:4b:53:c8:38:f1:10:7c:cd:bf:91:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
04:BA:B4:35:91:17:1A:A9:45:EB:51:72:A2:59:5C:A7:8A:E3:7B:84
X509v3 Authority Key Identifier:
keyid:7F:4A:E5:7E:E6:E0:A9:C5:10:1F:C1:4A:87:A5:33:41:50:BB:AB:46
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0rlfubgqcUQH8FKh6UzQVC7q0Y.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/11fa44-8879-4d19-b468-5b5d98f5361e/1/f0rlfubgqcUQH8FKh6UzQVC7q0Y.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:9a:2e:c7:c9:d0:a8:09:c3:e7:14:7a:18:d8:ee:24:29:64:
75:1f:11:bb:93:1c:47:95:50:37:e5:9e:13:7c:41:a9:d0:47:
08:a9:98:be:95:54:4b:e5:3f:a2:55:dc:82:0a:b0:4d:6e:b9:
ac:c9:61:d2:4d:93:ab:96:f9:d2:8a:c4:47:41:e0:fc:80:95:
52:a1:e3:f4:c1:4e:99:c0:e8:01:85:d2:16:9d:d5:38:2d:18:
3f:e2:ef:50:15:d9:da:e3:55:c4:3b:db:57:cf:5a:cb:e4:b7:
b8:51:7b:b6:cb:a9:d0:2a:33:1c:61:98:de:1a:e1:7b:41:02:
dc:37:95:c3:b6:1e:02:d7:3e:54:6e:68:f8:f2:7e:85:70:20:
91:15:95:49:12:03:13:c4:f3:e6:05:43:3a:d4:62:15:4d:9b:
ce:e3:c2:c8:fa:e0:73:98:f3:b5:74:c1:86:9a:c5:53:d6:5f:
2a:b2:19:f3:9c:6a:b1:9f:c9:1d:13:1c:f3:ef:d0:79:b0:e2:
8c:29:b3:e2:2b:54:c1:d3:9a:de:ac:86:4d:87:c2:79:00:0f:
91:cf:e1:69:69:dc:1e:cb:11:71:01:f7:79:8e:38:ab:15:05:
9a:b7:be:2a:24:a8:9c:a7:4e:9d:18:2b:d5:64:67:96:b2:4c:
61:96:da:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 08:35:33 2026 by rpki-client