Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
File: 23uiovC_o6dvXJkaR82YaMbR674.mft (raw, json)
Hash identifier: 9hBYQ19AQkflTNMb4U31wYVk1l4zaGUir0Mx+Ueyryk=
Subject key identifier: 8C:95:BE:D0:98:48:2C:CE:82:F6:20:C0:BD:0F:41:FE:E7:F1:CD:07
Authority key identifier: DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
Certificate issuer: /CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Certificate serial: 019F18D63E64E12E7C7633A934AA2AD84E16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
Manifest number: 163A
Signing time: Tue 30 Jun 2026 14:02:01 +0000
Manifest this update: Tue 30 Jun 2026 14:02:01 +0000
Manifest next update: Wed 01 Jul 2026 14:02:01 +0000
Files and hashes: 1: 23uiovC_o6dvXJkaR82YaMbR674.crl (hash: H8IXlHEkcpBmgDJQQGeUAArw/AVxfH9T0MbVwZD3p8k=)
2: NRwgJUwXk3BWkcpGjCMp97lO_U4.roa (hash: cqI/kILVJcAeJ0Tz95y2zzvYBTUTuf7X5Zw7I2eBtl8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:3e:64:e1:2e:7c:76:33:a9:34:aa:2a:d8:4e:16
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=db7ba2a2f0bfa3a76f5c991a47cd9868c6d1ebbe
Validity
Not Before: Jun 30 14:02:01 2026 GMT
Not After : Jul 1 14:02:01 2026 GMT
Subject: CN=8c95bed098482cce82f620c0bd0f41fee7f1cd07
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:d8:20:d1:f1:04:69:e2:d8:23:9f:cd:e5:64:
2d:38:3a:75:a8:2e:84:84:88:c6:50:5a:10:74:5d:
da:2c:8a:8f:e2:de:c1:2d:b7:14:ef:1d:58:81:1a:
64:f8:e7:97:a8:5c:93:c3:1e:93:d6:6d:89:fd:b1:
b1:cf:9e:c4:ae:ef:88:f4:cf:2d:4c:60:c8:87:37:
bf:7b:ca:80:7f:c9:31:1a:fe:10:65:2d:29:1f:05:
a5:22:98:53:ef:23:e4:c7:7e:eb:95:7c:3c:3d:26:
f1:30:72:0f:9b:05:84:07:10:de:1b:b9:9e:c2:92:
ab:77:d7:aa:c4:47:8d:9f:cd:c0:47:e0:8c:54:6c:
d4:0c:89:59:10:03:72:01:8b:25:a5:8c:82:67:3f:
b6:d0:d5:1f:db:4b:5a:da:e6:4e:e1:13:55:a9:35:
8b:3f:33:3b:a0:13:a6:47:76:70:dd:ae:e4:2c:fb:
80:3a:be:29:d3:02:2e:5e:30:73:d9:ac:61:51:1a:
99:f8:91:f9:64:77:09:5d:1d:31:f7:fb:8a:aa:d0:
a4:03:58:80:3c:02:c7:24:22:9d:93:a4:7f:81:39:
06:79:99:09:f8:62:5f:64:43:2b:0a:46:63:1c:a1:
51:6e:3f:13:59:54:e6:30:6c:ee:38:7d:ae:c7:2b:
95:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8C:95:BE:D0:98:48:2C:CE:82:F6:20:C0:BD:0F:41:FE:E7:F1:CD:07
X509v3 Authority Key Identifier:
keyid:DB:7B:A2:A2:F0:BF:A3:A7:6F:5C:99:1A:47:CD:98:68:C6:D1:EB:BE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/23uiovC_o6dvXJkaR82YaMbR674.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/617a9f-3fb2-4cbb-99fa-f22eb65fcc72/1/23uiovC_o6dvXJkaR82YaMbR674.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8a:df:da:24:e1:a9:ab:93:90:8b:7a:df:0b:3b:19:eb:a1:a6:
24:52:a6:98:dc:b9:4b:75:c0:f5:6d:80:bd:90:d9:68:a2:9c:
64:5b:db:10:1d:22:c9:6c:24:d4:62:80:8a:7d:6f:b7:d4:e1:
6d:31:80:2b:73:54:61:65:d4:9b:d1:0a:15:df:cb:8e:71:9c:
dd:1f:bb:87:c2:07:fd:f1:33:ea:b9:0a:8b:b0:c3:4d:ef:a9:
b0:fc:84:4f:80:4a:30:18:10:e2:37:0d:ee:89:ab:b6:93:15:
6c:33:28:6e:b3:de:9c:4c:2c:46:b8:35:d8:9b:6c:25:f3:43:
6b:20:88:21:ac:ba:f3:3d:d1:ce:17:40:30:97:d7:bc:2a:ec:
3d:e6:2e:9c:bc:f3:b5:3e:d4:f1:33:10:94:43:dd:dd:25:4f:
61:3d:20:4d:b2:06:ad:03:49:22:0a:2a:06:48:3f:41:e3:e5:
57:42:1e:21:8e:f7:55:e7:83:30:f2:ee:34:c9:c7:36:f3:fd:
f9:d2:34:83:16:0b:10:54:5a:15:87:6a:3f:91:85:61:0a:56:
f3:7f:ac:68:50:67:b7:98:9c:3e:52:ff:c7:e0:dd:27:ff:f2:
cb:a9:f5:97:81:a0:2c:6f:66:87:57:a7:e6:e4:8d:88:24:30:
9e:6e:f3:14
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:17:43 2026 by rpki-client