Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
File: s90R00a2O7HrIqB8JswSkaKgaJU.mft (raw, json)
Hash identifier: ZICNoTAuLC2QLtJhXtEygcwEhYUiVK0WC20PryWKqso=
Subject key identifier: 3F:93:F3:51:4C:20:42:39:E4:05:99:3C:80:CD:2C:E7:92:93:26:C4
Authority key identifier: B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
Certificate issuer: /CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Certificate serial: 019F111C719203199B1D2B441F32A14F3965
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
Manifest number: 1192
Signing time: Mon 29 Jun 2026 02:01:44 +0000
Manifest this update: Mon 29 Jun 2026 02:01:44 +0000
Manifest next update: Tue 30 Jun 2026 02:01:44 +0000
Files and hashes: 1: W1I4zwk5u62kEWKU3w3ttcGBy2k.roa (hash: m2lBjL0FDEr7OnguUKCR+j/T0K4u4HNIAXm6k1LnPZo=)
2: s90R00a2O7HrIqB8JswSkaKgaJU.crl (hash: e3lLwAnyipM3mGeRsZefj2Gq8PsY9VKjgA+Og2xSQSA=)
3: xJY_AM5c5mqbzDMlBNgNsWz_lug.roa (hash: B551H0yQy3AcP1JDauGu2ZmstUvG2dDmNnX6HF0awWo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1c:71:92:03:19:9b:1d:2b:44:1f:32:a1:4f:39:65
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b3dd11d346b63bb1eb22a07c26cc1291a2a06895
Validity
Not Before: Jun 29 02:01:44 2026 GMT
Not After : Jun 30 02:01:44 2026 GMT
Subject: CN=3f93f3514c204239e405993c80cd2ce7929326c4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:09:27:bc:5d:4d:4c:64:67:98:d0:88:c1:05:
91:f1:75:85:b5:f2:b5:b9:bc:f9:bd:4f:97:ee:64:
58:54:27:05:ec:57:8e:a5:72:fc:aa:ae:f1:19:9e:
b2:3b:f6:6c:90:10:b7:4f:63:8c:6a:3e:b0:f2:7d:
ef:6e:79:28:b9:57:7e:d3:d3:d5:d1:a6:fd:96:2f:
e7:45:60:5a:7b:03:5e:09:63:68:fd:60:5e:ae:4c:
dc:1c:8c:a9:91:86:34:0d:7e:c1:b3:40:a8:17:13:
13:62:61:c6:e1:65:0a:be:71:11:a1:10:b6:0e:4e:
3c:ee:e5:93:3d:2e:55:7f:c7:fa:6d:c2:b9:f4:14:
c1:b5:55:6d:2b:64:93:10:9c:a3:58:db:e9:2b:b9:
40:c2:a9:c7:66:89:ae:44:a8:7c:ef:29:5c:aa:9a:
c0:12:54:1b:6a:20:c5:20:ec:4e:d0:c4:5a:74:4a:
fe:77:de:d7:b7:19:36:e1:e3:5e:6a:ba:37:61:4a:
90:62:1f:bd:11:28:91:cb:c3:c7:3f:58:c0:ce:e3:
90:f8:61:40:b3:74:af:ae:79:5d:fa:90:e8:57:48:
50:b1:a1:26:24:42:7c:f1:1e:98:5f:e2:e2:4c:d4:
b2:33:7e:06:ee:e5:80:54:02:e9:70:b7:46:db:f6:
d8:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3F:93:F3:51:4C:20:42:39:E4:05:99:3C:80:CD:2C:E7:92:93:26:C4
X509v3 Authority Key Identifier:
keyid:B3:DD:11:D3:46:B6:3B:B1:EB:22:A0:7C:26:CC:12:91:A2:A0:68:95
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/s90R00a2O7HrIqB8JswSkaKgaJU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/47/a41898-da08-469d-be1a-8bbc226e6c45/1/s90R00a2O7HrIqB8JswSkaKgaJU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
aa:91:16:7e:a1:be:6a:af:e8:4e:12:b3:43:93:c6:52:66:72:
a7:45:97:bb:e8:52:53:6a:d9:fe:d9:db:d2:07:22:5e:fd:1c:
04:d1:3c:47:71:70:8e:c9:6a:67:e6:d6:2a:02:f0:41:dd:c8:
37:f1:4f:32:e2:9d:3e:2d:c2:98:ac:5b:5e:1e:31:b5:09:13:
d2:27:37:76:36:ea:8d:54:51:77:2c:94:05:71:ed:61:23:ed:
f6:9d:c5:96:03:2a:68:e0:d2:78:0e:8d:46:3f:ad:92:c2:9f:
a6:eb:20:f9:9a:0b:9d:c5:7d:25:fc:d0:1a:15:24:a3:9e:06:
80:32:e7:f1:73:96:8f:2a:a9:b4:82:2f:e6:9e:db:f4:31:11:
5d:84:cc:b8:68:cc:2f:f3:5c:aa:9d:41:9c:b8:67:34:c6:37:
4c:46:2a:cf:d1:4d:43:5f:de:9b:4b:52:cb:d1:e6:88:0e:40:
55:10:10:1f:9b:44:dd:b6:b3:01:23:ed:8f:0e:3f:81:e6:02:
ee:87:c8:c4:d8:2c:81:95:59:5d:c9:68:c4:3b:67:5e:d9:77:
80:48:7e:82:8b:8f:cb:ce:48:eb:8a:42:87:8f:be:96:c4:36:
b5:f7:5e:52:86:f6:90:67:38:ec:46:f0:11:a5:7d:49:f8:4b:
4f:8c:a2:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:09:32 2026 by rpki-client