Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
File: 0PFLigjLX4BX1IsD5T9Fi44f7tY.mft (raw, json)
Hash identifier: glzDOxhFEdS0JEx/2m5HrcGxNrA143k4I1q0IwLS5oQ=
Subject key identifier: 6C:5D:5F:1B:FA:C9:1C:F1:D9:0D:C8:9F:2F:E3:F0:59:BF:C9:AA:3A
Authority key identifier: D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
Certificate issuer: /CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Certificate serial: 019F1867F22621FC32906CDAC2858D62E217
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
Manifest number: 05D7
Signing time: Tue 30 Jun 2026 12:01:32 +0000
Manifest this update: Tue 30 Jun 2026 12:01:32 +0000
Manifest next update: Wed 01 Jul 2026 12:01:32 +0000
Files and hashes: 1: 0PFLigjLX4BX1IsD5T9Fi44f7tY.crl (hash: +WylH9cvVDeVn4OG4AbSVYCc2oWuEVIAhHGsz1uKvQ0=)
2: d47T8ORHHk4caoplxkWo9jdbvBo.roa (hash: O+AW/XVQJP2vo9oGn03UxDaB3BH61OdIhMeMe+ELWp4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:01:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:f2:26:21:fc:32:90:6c:da:c2:85:8d:62:e2:17
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0f14b8a08cb5f8057d48b03e53f458b8e1feed6
Validity
Not Before: Jun 30 12:01:32 2026 GMT
Not After : Jul 1 12:01:32 2026 GMT
Subject: CN=6c5d5f1bfac91cf1d90dc89f2fe3f059bfc9aa3a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:2a:c0:e2:22:34:21:5b:9f:89:8e:b6:73:ea:
db:2c:c6:24:aa:6e:43:e0:cd:c2:da:d0:96:e0:ee:
6c:15:ce:c5:7f:20:29:8a:14:c2:6e:1f:a1:17:fc:
4b:cb:cf:85:f0:ac:19:29:ee:b4:0d:87:95:86:ee:
95:f9:85:b7:24:01:70:4f:2c:b7:99:0e:b5:f0:82:
7a:de:49:65:f1:3f:62:10:8b:e3:ec:36:39:3f:0a:
99:f3:a4:3a:a5:f2:4e:dc:2e:19:22:fa:2e:96:e3:
a7:c4:f6:67:61:08:80:41:f4:a3:78:82:9b:f9:51:
8c:47:77:db:b7:26:32:fb:81:5f:ff:f3:2b:62:63:
1e:63:78:b1:2e:33:db:16:76:ad:53:67:43:47:82:
33:1f:5d:f7:57:4e:ce:2d:ea:21:41:32:2e:bb:77:
0f:cd:79:1e:b8:3f:69:6d:9f:bc:66:34:b3:6b:eb:
de:7d:45:b2:61:6a:3a:3b:33:cf:67:2d:fc:bf:27:
9e:36:09:5e:d9:bd:7d:d0:b8:43:26:86:33:28:d3:
c0:be:79:e8:b4:54:88:4b:01:03:fd:c9:8b:92:9a:
85:07:37:6d:21:38:77:60:a1:0c:d4:7d:ba:cd:0c:
e2:e4:99:4f:81:15:11:ce:c8:ec:99:e7:21:b9:e5:
a3:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:5D:5F:1B:FA:C9:1C:F1:D9:0D:C8:9F:2F:E3:F0:59:BF:C9:AA:3A
X509v3 Authority Key Identifier:
keyid:D0:F1:4B:8A:08:CB:5F:80:57:D4:8B:03:E5:3F:45:8B:8E:1F:EE:D6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0PFLigjLX4BX1IsD5T9Fi44f7tY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/38/21bdbb-856f-41dd-aad9-066ddf32bfcc/1/0PFLigjLX4BX1IsD5T9Fi44f7tY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:34:a0:d4:03:e0:57:41:ab:9b:80:da:9a:1f:ca:e0:96:dd:
0d:30:ae:d8:6f:2e:88:ff:b1:70:12:2b:e2:2a:c9:3e:f3:06:
81:02:eb:fe:4f:ef:eb:b9:33:a0:57:54:d8:1b:26:74:8f:7f:
66:e4:7c:87:dc:19:bf:25:90:ad:f2:e0:f2:97:c4:16:08:37:
0b:53:3c:0f:05:7f:93:27:b2:3f:24:99:df:56:2f:30:4c:7e:
5f:3a:e8:93:c4:03:c3:de:32:b5:17:ad:9e:00:6c:d9:7a:82:
02:60:56:ae:05:e7:44:e0:cd:77:06:63:a1:0a:88:ae:ac:3f:
1b:fa:78:e5:fe:40:db:fb:16:9e:84:7f:b2:fc:6c:55:f3:9d:
ef:66:f1:5d:ba:6b:d8:e1:43:02:75:a2:06:1b:52:8e:2f:0f:
c6:56:a0:94:c4:78:4f:1c:0f:a7:be:71:81:c8:e4:17:1a:13:
88:f5:cf:88:c4:ce:60:a5:69:82:16:d4:5f:43:f6:41:0c:16:
86:cb:9e:7d:36:1f:38:a3:88:9b:2a:04:55:d5:04:fd:f5:4d:
a7:4d:0c:1b:36:c4:57:66:c9:51:97:7b:24:9e:ac:f9:d3:7b:
ec:5f:53:e7:7b:48:89:74:28:4c:d0:a3:6b:ad:db:6f:67:b4:
e2:31:81:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:56 2026 by rpki-client