Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
File: 39D7xN6B7icnq6PpEK_NKlOmZAw.mft (raw, json)
Hash identifier: EnjWTCOSSjtYoK2d5CDpn/ENM9vneqOP/AGA8eCPasE=
Subject key identifier: 13:6D:7E:F5:EC:A5:1D:75:2A:3E:0D:01:B8:1A:EC:8C:8D:DF:22:D3
Authority key identifier: DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C
Certificate issuer: /CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c
Certificate serial: 019F0AE2C28C8BF321EA2B9C52A8D2C1205A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
Manifest number: 0283
Signing time: Sat 27 Jun 2026 21:01:00 +0000
Manifest this update: Sat 27 Jun 2026 21:01:00 +0000
Manifest next update: Sun 28 Jun 2026 21:01:00 +0000
Files and hashes: 1: 39D7xN6B7icnq6PpEK_NKlOmZAw.crl (hash: RYEhQDdk+R/0XcCyPTRmFqsOvBQqKLQ4oHSmz54isxs=)
2: 3_WOSnpd_DmYlCPJ_IFRim5NhZk.roa (hash: sOMgzGx8D+jagL2hwOlgBVbXLz9AMFtBb5Q7En33UDE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl
rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 18:43:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0a:e2:c2:8c:8b:f3:21:ea:2b:9c:52:a8:d2:c1:20:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=dfd0fbc4de81ee2727aba3e910afcd2a53a6640c
Validity
Not Before: Jun 27 21:01:00 2026 GMT
Not After : Jun 28 21:01:00 2026 GMT
Subject: CN=136d7ef5eca51d752a3e0d01b81aec8c8ddf22d3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:dc:d2:f5:f0:db:f9:b1:a5:3f:f2:38:9d:5c:
6c:e8:2a:25:93:36:5d:a4:69:6f:e0:93:56:d6:5d:
f4:a9:1f:f4:9b:e2:38:8c:94:7a:bd:58:d3:ee:c0:
c4:20:39:bb:95:41:3a:3c:ba:33:8b:8e:d7:5e:68:
ee:54:f3:9b:2e:f4:71:fb:5f:52:b1:97:4a:b9:d8:
88:4a:a2:8e:68:9a:ca:c6:0b:62:ca:e0:c0:68:55:
f8:fa:1f:b1:83:aa:be:87:69:dc:34:9c:99:be:f5:
a4:e3:ea:b5:8e:5c:1c:c5:5e:da:ac:55:70:df:39:
cb:c9:81:35:62:c7:76:8a:a5:bc:54:de:ab:ae:4a:
ec:9e:f8:e8:b3:78:13:fa:15:a7:74:f3:0d:1e:7a:
ac:9a:2e:e3:34:78:e4:51:98:cf:db:7d:39:78:c5:
79:69:1b:81:d8:22:6e:fd:77:a6:49:17:cf:f5:86:
98:99:77:30:3c:df:63:d7:fb:b6:3b:e5:16:59:bd:
f9:9f:24:d3:c8:0d:53:30:78:bf:65:69:63:1f:57:
ec:e5:cc:14:76:61:33:dc:50:a3:78:fb:ec:e5:4a:
dd:16:e2:3c:dd:88:b2:cd:89:14:a8:3d:34:a8:06:
86:f3:3e:63:3a:b8:e3:2d:da:f2:9c:54:71:ff:a3:
d7:1f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
13:6D:7E:F5:EC:A5:1D:75:2A:3E:0D:01:B8:1A:EC:8C:8D:DF:22:D3
X509v3 Authority Key Identifier:
keyid:DF:D0:FB:C4:DE:81:EE:27:27:AB:A3:E9:10:AF:CD:2A:53:A6:64:0C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/39D7xN6B7icnq6PpEK_NKlOmZAw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/245873-1ca7-4b71-b220-edb0418cac4d/1/39D7xN6B7icnq6PpEK_NKlOmZAw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
21:13:1b:65:c3:a8:48:01:f9:40:69:78:36:7a:3c:f1:9b:84:
3f:79:f0:8f:cd:f7:d1:e7:23:7d:c6:0a:02:79:69:05:e5:77:
75:88:56:8b:6a:46:fb:77:3b:a7:72:d9:a3:2f:c6:91:db:ec:
20:52:8f:be:c8:de:df:d9:20:ed:98:9a:44:16:c9:9b:23:06:
ee:c7:74:3c:dc:f9:5c:69:c8:29:9e:df:6b:d9:14:16:6e:01:
d4:e9:0d:46:dd:8d:1c:98:e2:ca:cc:1e:74:f3:aa:cc:48:43:
09:52:5c:29:25:ac:4e:f4:09:16:a0:4a:ce:b1:05:81:25:31:
e6:14:76:99:b5:1f:1c:d8:50:a2:61:1a:7f:b5:68:92:11:d8:
61:c0:5f:72:4a:e9:07:67:0e:d8:6d:0c:4e:fb:83:01:9c:46:
9e:9a:cc:e0:d6:21:2a:af:0f:14:32:b1:04:18:5d:87:7d:78:
d3:a0:48:15:7e:6f:82:95:64:92:aa:08:8f:b8:57:e1:fc:a1:
41:0f:de:74:f4:f7:70:f7:b4:97:9d:0f:d3:54:b9:5a:fd:96:
ea:98:a5:10:9b:f5:39:46:42:03:32:98:32:61:c8:20:f7:bd:
d0:c1:f1:95:48:46:20:f9:7d:18:17:36:0d:f3:58:9a:e7:18:
ac:0e:d2:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 04:31:52 2026 by rpki-client