Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
File: mKUzMIdAu70he_adzpCz9UEghFc.mft (raw, json)
Hash identifier: c+D7QngwyV1b7ArgRKouW8mFdVNki/xNyG1PqQ+H/94=
Subject key identifier: A4:46:AA:15:C9:00:96:DA:7A:06:06:E3:6E:95:1E:22:EE:60:B7:B3
Authority key identifier: 98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
Certificate issuer: /CN=98a533308740bbbd217bf69dce90b3f541208457
Certificate serial: 019F16B07086E0F716D4407961773C87B3D5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
Manifest number: 198A
Signing time: Tue 30 Jun 2026 04:01:29 +0000
Manifest this update: Tue 30 Jun 2026 04:01:29 +0000
Manifest next update: Wed 01 Jul 2026 04:01:29 +0000
Files and hashes: 1: 07lXNimrQBF3__ddGT3TZzLhskg.roa (hash: eoEGjhgMY6OcoxgLUe7rr3k+ew/IBEiDnKUPvz0TNYw=)
2: T3vBUADVziYVCPfMjFB5sh1dYd0.roa (hash: K9dDJUVzUK8TiZfC61uyK9tw2jY/KL9Z0G2brWNRTIY=)
3: mKUzMIdAu70he_adzpCz9UEghFc.crl (hash: 7pE+onUowSkfF8JylZBlQvn+32PJ6TxX49vXbuXZYio=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 23:00:24 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:16:b0:70:86:e0:f7:16:d4:40:79:61:77:3c:87:b3:d5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=98a533308740bbbd217bf69dce90b3f541208457
Validity
Not Before: Jun 30 04:01:29 2026 GMT
Not After : Jul 1 04:01:29 2026 GMT
Subject: CN=a446aa15c90096da7a0606e36e951e22ee60b7b3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:8b:e4:1a:04:84:91:6e:13:da:f7:7a:c1:94:
a0:0f:69:3f:78:c0:e1:13:31:8a:6c:91:b4:cf:3a:
7d:15:94:dd:72:61:35:e1:67:d0:72:b3:d8:35:4a:
b2:93:a2:18:49:6c:88:71:38:68:1c:3e:13:f9:64:
1e:bb:66:db:c8:e3:2c:71:97:cd:ca:d4:dc:c6:f9:
45:68:fc:79:3f:cd:d5:18:a1:3e:f1:07:71:02:20:
bc:07:11:16:30:08:d3:60:16:b2:05:7b:f0:5f:7b:
dc:a7:75:d1:66:4e:75:b8:9c:25:32:26:84:f4:5b:
51:8c:43:d6:ce:31:6d:47:51:02:7a:72:94:38:11:
c8:90:88:bb:6a:53:c1:46:be:4f:a2:29:64:30:24:
a2:02:05:6c:6b:00:e3:00:ca:09:6b:ba:1c:85:4a:
a6:b0:b1:16:80:37:fb:19:2f:f7:41:92:13:2a:df:
62:fe:64:59:c2:58:7d:69:2b:8e:73:7a:df:db:92:
1d:8b:3d:43:2a:c8:05:ce:99:ae:99:79:94:e5:e5:
c5:aa:3b:80:d5:db:de:fc:42:01:67:30:29:76:9a:
24:26:7a:4a:1a:51:b0:a5:ce:ca:d4:34:f8:95:af:
71:5a:52:a8:08:d5:b4:3f:1b:44:54:ec:9c:bb:48:
6a:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:46:AA:15:C9:00:96:DA:7A:06:06:E3:6E:95:1E:22:EE:60:B7:B3
X509v3 Authority Key Identifier:
keyid:98:A5:33:30:87:40:BB:BD:21:7B:F6:9D:CE:90:B3:F5:41:20:84:57
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKUzMIdAu70he_adzpCz9UEghFc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/6a5394-0b05-4538-b0cd-9f6890f92e60/1/mKUzMIdAu70he_adzpCz9UEghFc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
75:4e:ef:79:8a:dd:02:16:13:d6:66:e7:a8:81:b6:07:30:8d:
3e:1e:30:7f:cd:64:52:c5:e6:cc:82:72:72:62:ce:14:9f:c4:
0e:ab:81:36:5d:a3:dd:20:92:d1:93:bc:4c:4c:d1:be:71:89:
50:89:7b:a0:3e:07:56:6d:9a:89:f2:1d:46:c5:79:ed:0c:6e:
05:88:18:26:b7:9f:e4:65:28:06:6c:0c:f4:40:18:fb:58:60:
54:6a:dc:04:fb:28:dc:2a:c3:51:83:50:8a:c8:57:68:55:3d:
c3:04:af:9e:46:60:73:c8:b6:aa:b6:99:10:e1:f0:7f:1f:53:
26:af:d0:29:dd:66:85:12:1a:9e:37:1e:fb:a6:ab:b0:65:5f:
6a:2f:88:61:d9:29:24:1c:84:a9:b0:77:f6:d2:a6:5c:ee:a6:
38:ea:a7:62:7c:ff:a3:dc:8d:ae:81:01:34:06:d3:72:3c:cf:
a3:91:1c:f4:46:82:90:ff:73:28:05:d2:e4:3c:fc:55:3a:5a:
75:c2:48:a2:20:e3:0e:c9:b8:63:7e:71:b5:3e:c8:96:d4:3c:
b0:69:9b:fd:6f:5e:21:13:06:7d:a1:43:4e:5f:f4:9a:60:c2:
91:c1:cf:29:74:2a:e3:1a:87:e4:db:be:7e:97:86:34:60:d2:
a0:86:7f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 08:28:23 2026 by rpki-client