Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
File: 86GuCwfNBe4khPTuvNRWhHNHNBQ.mft (raw, json)
Hash identifier: fZrgH4F7BYuwTxzdffSrwkuDwQwDWSD8mqX0YFgWq5I=
Subject key identifier: D1:0C:D2:B7:B2:64:62:A2:A4:F7:70:5A:9E:BD:BF:B8:7E:27:27:B6
Authority key identifier: F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
Certificate issuer: /CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Certificate serial: 019F178BB19C3F70278B12C31416D467A647
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
Manifest number: 198B
Signing time: Tue 30 Jun 2026 08:00:58 +0000
Manifest this update: Tue 30 Jun 2026 08:00:58 +0000
Manifest next update: Wed 01 Jul 2026 08:00:58 +0000
Files and hashes: 1: 86GuCwfNBe4khPTuvNRWhHNHNBQ.crl (hash: /rBZrWyWpDHBgBgrZ0ggbfkf/14AO2MQcD767QizAAQ=)
2: WL12YdHQF4v--TkqLhD3Ng1t2wY.roa (hash: 2kBmQB016zd0/AsZ8Bq22A6ptaprPzQDHPqGp8rEVlA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 08:00:58 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:8b:b1:9c:3f:70:27:8b:12:c3:14:16:d4:67:a6:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f3a1ae0b07cd05ee2484f4eebcd4568473473414
Validity
Not Before: Jun 30 08:00:58 2026 GMT
Not After : Jul 1 08:00:58 2026 GMT
Subject: CN=d10cd2b7b26462a2a4f7705a9ebdbfb87e2727b6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:fc:23:4c:23:49:16:dc:ad:f9:a6:df:9c:36:
df:ba:88:f1:f4:54:af:40:55:45:a5:95:82:32:a1:
22:48:f6:4e:0a:37:63:48:6b:bc:2a:c1:95:2d:27:
f1:71:8d:32:82:7c:8f:e0:89:bd:fb:17:c6:dd:45:
3b:98:f8:33:24:09:be:fc:80:79:f1:b0:41:59:b8:
32:5a:b3:e5:55:db:85:db:c5:04:ec:fc:28:71:51:
b9:66:f8:f1:94:3c:a7:58:77:06:a8:67:1e:9a:ad:
4e:bc:c7:9d:c7:52:6b:98:81:12:ff:d4:99:91:34:
96:c3:5f:f2:ba:44:81:99:4b:b7:58:ca:a9:2f:90:
d3:30:8e:71:87:2c:5a:f1:aa:f0:bc:ae:ed:6c:e0:
1b:3f:9b:42:57:71:73:3b:ec:74:b4:24:36:6d:59:
d2:53:91:14:74:3a:16:a8:45:6f:b8:6e:24:d7:8a:
ed:f5:e9:2b:9a:75:2c:9e:fa:2b:3d:04:a8:6e:a2:
05:46:8a:19:f7:80:2e:eb:1a:6c:d3:e2:1c:c5:58:
dc:c8:fb:db:c8:c1:14:bd:e1:0c:e3:79:72:04:40:
60:aa:fe:fa:b0:b7:f0:fa:68:31:b1:76:3d:a3:3f:
7b:b4:d1:a6:b9:64:92:a2:69:01:6a:b6:35:ff:c5:
c0:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:0C:D2:B7:B2:64:62:A2:A4:F7:70:5A:9E:BD:BF:B8:7E:27:27:B6
X509v3 Authority Key Identifier:
keyid:F3:A1:AE:0B:07:CD:05:EE:24:84:F4:EE:BC:D4:56:84:73:47:34:14
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/86GuCwfNBe4khPTuvNRWhHNHNBQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2162d8-e9de-4981-b1ca-b8477f5073c1/1/86GuCwfNBe4khPTuvNRWhHNHNBQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
9a:0b:e0:46:de:91:f5:04:e9:36:8a:f3:d8:4a:b8:80:c6:45:
82:51:76:fd:b8:e2:27:fc:f1:aa:71:19:bb:df:55:8d:b9:63:
c9:72:4a:b5:db:3b:85:37:73:3e:b9:c1:f7:42:cb:db:fd:70:
38:28:66:05:1b:75:4d:46:95:de:b4:61:22:1f:18:28:d8:ca:
10:98:a4:c9:14:4d:e4:65:29:86:00:12:c2:f3:42:ee:b9:56:
78:32:32:a0:c8:20:c1:74:1c:e9:10:c8:b4:48:5b:c0:63:11:
1b:ac:6c:51:85:4d:a5:88:9a:82:3e:7b:e3:b1:c4:9c:20:31:
24:6e:2c:fe:e1:47:8c:46:08:1d:13:b7:58:95:cd:a6:33:f0:
aa:74:1d:1b:83:74:29:06:d3:c2:c2:4a:8d:61:d9:94:47:27:
f7:d2:eb:b7:3c:35:68:a4:6c:c3:77:43:d7:a7:72:c2:f8:57:
41:2a:c1:a5:72:35:05:15:f9:ae:45:2f:9f:94:85:f5:7d:20:
b4:17:38:6b:17:45:8f:ea:1b:a6:5c:80:45:52:23:7f:69:ab:
97:43:91:8c:19:a6:2a:8f:f9:af:61:8f:3a:19:5e:63:e8:24:
72:7a:e2:8b:33:ed:60:72:2c:00:b2:73:14:c3:27:78:fa:7a:
29:7a:05:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:22 2026 by rpki-client