Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
File: SrfcA3ifWGIbJejdDZJdyRtKWqI.mft (raw, json)
Hash identifier: FhE9qtjVDnZpDIMDgpLCVTC4XHP93K/6uCYkdbJuKZs=
Subject key identifier: 1C:B9:51:D4:09:C2:DC:B2:BA:76:6A:C2:00:E9:3F:1C:63:E7:20:AC
Authority key identifier: 4A:B7:DC:03:78:9F:58:62:1B:25:E8:DD:0D:92:5D:C9:1B:4A:5A:A2
Certificate issuer: /CN=4ab7dc03789f58621b25e8dd0d925dc91b4a5aa2
Certificate serial: 019E8D253AD80050F4DC759802C181F1CDC9
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SrfcA3ifWGIbJejdDZJdyRtKWqI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
Manifest number: 0DE5
Signing time: Wed 03 Jun 2026 11:01:27 +0000
Manifest this update: Wed 03 Jun 2026 11:01:27 +0000
Manifest next update: Thu 04 Jun 2026 11:01:27 +0000
Files and hashes: 1: PsulLIoJ2K5yIXwpqDT_vBbetoI.roa (hash: g6k+9r2f7VE361y/QPPTNZq47JKvyoKEVsQ41jGm2AM=)
2: SrfcA3ifWGIbJejdDZJdyRtKWqI.crl (hash: vvLinzRF3RBxa9/To++F1mOclc9GKKn3AOaOyttHL44=)
3: xPJTQ1B0b58IM-swEMoKUaok-jY.roa (hash: 8WLFOKN87EOL1HNV9YM46I3DeHkcz7BwooQlJCjXH2s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.crl
rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
rsync://rpki.ripe.net/repository/DEFAULT/SrfcA3ifWGIbJejdDZJdyRtKWqI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 04 Jun 2026 11:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:8d:25:3a:d8:00:50:f4:dc:75:98:02:c1:81:f1:cd:c9
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4ab7dc03789f58621b25e8dd0d925dc91b4a5aa2
Validity
Not Before: Jun 3 11:01:27 2026 GMT
Not After : Jun 4 11:01:27 2026 GMT
Subject: CN=1cb951d409c2dcb2ba766ac200e93f1c63e720ac
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a6:0d:c0:9c:11:4a:77:cf:4e:f7:89:61:9c:ac:
c0:40:7a:84:1e:23:b1:cc:65:2f:bb:12:52:8f:b3:
6a:ee:c1:21:9a:38:c3:62:54:78:f0:bb:03:13:f2:
d7:f9:bc:e0:68:b0:a8:c2:a0:33:c4:00:8c:8e:96:
9d:0c:1f:4a:a0:a6:7b:dc:cb:4c:bb:df:2c:9e:8b:
06:34:34:59:f7:84:0b:a7:88:7d:06:6c:92:a3:47:
91:09:f7:9b:9c:fb:77:3b:04:32:69:3f:88:70:34:
53:2d:e3:c3:70:2d:73:34:ac:a7:f7:41:41:14:e8:
2c:82:fa:ec:bd:e7:79:57:e6:17:81:14:e0:46:08:
f5:97:aa:d7:9d:bb:75:12:79:b7:93:6f:ea:65:f8:
b1:37:7a:ac:06:27:84:5c:15:c7:01:bc:7c:0f:9a:
e8:5f:65:7c:46:50:7c:95:5c:66:a8:99:50:c3:5d:
35:e0:c3:96:56:bf:64:bb:32:da:76:a0:77:45:fb:
7c:b3:48:ac:4e:da:d2:c2:64:fa:2d:14:a2:e0:1c:
c2:d4:cd:30:65:f5:82:b0:40:be:4a:f8:2a:b4:d1:
64:9d:8a:cc:a3:b1:35:05:48:8b:04:15:d6:b7:4a:
66:ab:18:3e:72:bb:27:fc:23:7a:95:b1:9f:ff:68:
34:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B9:51:D4:09:C2:DC:B2:BA:76:6A:C2:00:E9:3F:1C:63:E7:20:AC
X509v3 Authority Key Identifier:
keyid:4A:B7:DC:03:78:9F:58:62:1B:25:E8:DD:0D:92:5D:C9:1B:4A:5A:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SrfcA3ifWGIbJejdDZJdyRtKWqI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/44/8a59db-5ad8-4f3f-97c2-f38bcbd93390/1/SrfcA3ifWGIbJejdDZJdyRtKWqI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:48:00:88:cc:b5:54:ea:16:ca:60:80:b2:88:65:10:aa:c0:
bc:fb:88:fa:46:11:a6:94:48:6e:c8:38:27:a8:6a:a0:f5:69:
7c:7d:23:1a:48:25:ec:c3:bc:d4:6c:2c:07:fc:6b:be:e4:46:
f0:d4:7f:99:2b:4e:9c:cf:f3:82:4c:f1:e4:46:13:3e:33:23:
bb:57:db:14:a2:80:e5:69:46:75:c0:41:c0:78:10:a2:b9:1d:
b4:8e:d9:87:37:63:8b:46:0b:e8:ae:72:43:f9:21:da:3d:74:
4a:6a:43:2f:3c:50:ec:fb:f5:ab:b3:22:32:55:cc:30:de:31:
42:47:5a:1b:5e:89:5d:8d:5b:59:86:a8:ab:08:9b:84:1a:92:
fc:dd:ea:31:5c:8c:b0:58:89:ac:15:6e:5a:10:74:20:5e:f9:
bd:07:0d:79:02:eb:85:7a:e8:0d:4e:56:1a:ed:e1:c6:06:97:
e1:f2:9a:6b:99:4e:b4:9d:13:96:8f:e2:14:08:c2:15:fe:86:
34:e7:e5:26:9b:6f:bc:9d:ab:fb:a7:76:cb:ce:32:8d:c1:6f:
ae:31:72:3f:0a:dd:35:67:40:be:85:70:09:b8:f8:ab:35:40:
a3:17:cd:7b:05:c6:00:15:d7:58:92:f8:35:ad:81:c1:8b:5f:
3d:68:04:cb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 3 21:30:10 2026 by rpki-client