Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
File: 0fbkNwERz7-WhASFQie4CShRRQ0.mft (raw, json)
Hash identifier: 8HYIAiQ/XIOiZpWatH2PnKl6nI1XOowxD6LmIO7uFm8=
Subject key identifier: 7C:82:39:FF:63:F8:66:71:CA:5A:55:54:22:71:D7:AF:DD:55:07:C9
Authority key identifier: D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
Certificate issuer: /CN=d1f6e4370111cfbf968404854227b8092851450d
Certificate serial: 019F190CFD2CC51D380B8B28B2C3D25109A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
Manifest number: 11EA
Signing time: Tue 30 Jun 2026 15:01:49 +0000
Manifest this update: Tue 30 Jun 2026 15:01:49 +0000
Manifest next update: Wed 01 Jul 2026 15:01:49 +0000
Files and hashes: 1: 0fbkNwERz7-WhASFQie4CShRRQ0.crl (hash: MH50fC+D5tmiMMH0sZBSDVNNYLadTkjJAvRMZ7/puoQ=)
2: b6CRhvSRccrFASwHzAqv1fJ2-PM.roa (hash: /4u/ccQkL47poEfRTb46UuOnLyPJ5g8IGlvoOu1fxd4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:fd:2c:c5:1d:38:0b:8b:28:b2:c3:d2:51:09:a2
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d1f6e4370111cfbf968404854227b8092851450d
Validity
Not Before: Jun 30 15:01:49 2026 GMT
Not After : Jul 1 15:01:49 2026 GMT
Subject: CN=7c8239ff63f86671ca5a55542271d7afdd5507c9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:00:51:a3:11:60:4e:49:e4:3b:b7:40:83:22:
3f:ba:2b:33:bd:1c:56:6e:98:b0:5e:fa:4c:e8:68:
d0:1b:1b:b0:2c:ab:14:1d:06:d7:f5:b9:fe:b0:ee:
0f:44:a0:f7:a4:0d:f2:10:9e:18:18:47:06:d2:94:
11:ed:05:a9:fc:d7:b5:91:c1:b9:7c:6f:99:04:59:
39:f5:61:c4:d4:60:f1:90:57:e7:88:52:6f:b3:48:
63:46:d6:4f:12:5b:8a:5d:90:e6:3d:62:a2:e2:23:
b2:f5:f6:e4:cc:f1:01:54:c3:67:17:33:c7:f2:e9:
ab:b1:94:4f:9c:14:df:2b:3f:4b:a2:5e:9f:4a:00:
47:6a:5f:87:45:c9:87:c6:c6:52:9f:2c:b1:be:e8:
1d:66:f3:de:f7:ef:a7:20:b7:a7:a1:4a:e2:c3:4d:
97:1a:2a:65:33:03:f5:24:c5:5b:ad:88:ba:63:64:
8c:ae:ec:21:29:d5:02:d5:1c:2a:11:33:7e:aa:54:
eb:f0:fa:ec:e7:8c:f7:50:60:08:30:8b:68:fd:f6:
03:42:ab:23:76:79:ad:d4:84:68:74:89:2c:da:4f:
e5:66:71:3c:c9:32:1a:f6:06:5b:29:96:3a:e3:21:
7f:fe:3e:cd:12:f1:a9:ca:fb:92:03:c9:45:0c:90:
27:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:82:39:FF:63:F8:66:71:CA:5A:55:54:22:71:D7:AF:DD:55:07:C9
X509v3 Authority Key Identifier:
keyid:D1:F6:E4:37:01:11:CF:BF:96:84:04:85:42:27:B8:09:28:51:45:0D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0fbkNwERz7-WhASFQie4CShRRQ0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/57/59d4e9-662c-435a-b351-4aa539a30d21/1/0fbkNwERz7-WhASFQie4CShRRQ0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
00:8b:7c:5b:b2:fa:2f:78:34:c9:bb:a1:d8:36:2b:62:87:2f:
7f:02:ca:81:10:00:99:f5:89:3f:36:ac:2e:8b:98:f6:51:c5:
89:6a:87:a8:95:c5:d1:e9:98:0d:39:04:99:c1:f9:8d:d5:bf:
0b:08:89:19:c4:ba:a3:be:c0:95:a0:3d:0f:6b:05:35:18:f5:
e0:29:b9:1a:bb:53:37:d9:d1:fa:b8:14:0a:db:a1:32:ba:4d:
34:59:46:46:29:39:9d:e0:b8:60:55:82:47:9f:f6:7f:88:1a:
c0:d8:37:ae:df:af:cf:4c:3f:77:b0:06:c9:a6:a9:68:bc:52:
8a:f3:fa:19:e4:d8:7f:92:14:cf:06:4e:28:45:9f:b5:05:2f:
79:31:ca:6a:10:a9:54:93:9a:5a:e7:7e:af:84:da:9e:77:1c:
64:6d:55:be:e9:a8:33:39:c0:37:6b:dd:13:e5:08:c3:5a:b1:
af:c3:76:45:74:85:a2:b1:39:bf:fb:9f:2c:67:1a:f9:99:e5:
e9:37:c4:c0:fb:f4:a8:c4:0c:43:a0:be:0a:b6:60:18:81:44:
28:ca:9d:f0:35:91:6e:16:76:97:ef:e1:ab:a4:6e:b6:c0:e8:
80:c2:1b:78:a4:5a:0d:d2:05:ff:92:a9:73:b9:bc:e0:00:bf:
91:e7:b4:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:49 2026 by rpki-client