Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
File: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft (raw, json)
Hash identifier: iKgxlJE9MObKfFHa3R+9eqmlN6QfxVqFFWVp92v9eOg=
Subject key identifier: 41:56:D9:03:C0:AF:62:91:B8:83:C8:67:CE:AA:26:C0:CC:4D:09:BE
Authority key identifier: A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
Certificate issuer: /CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Certificate serial: 019EBD6C396893ECA6AE0D8AD038B623EF2A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
Manifest number: 0D4C
Signing time: Fri 12 Jun 2026 20:00:46 +0000
Manifest this update: Fri 12 Jun 2026 20:00:46 +0000
Manifest next update: Sat 13 Jun 2026 20:00:46 +0000
Files and hashes: 1: jbAqNXtEEA5VMmJmYWIDy0wpLeE.roa (hash: heA9ElftnVcEx/Z56cUQXfy2JpdBhi/Gw5ToPa737lc=)
2: pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl (hash: dLsAFhn3fbOgftfnmP5T8Bas+c42fvYW6DcvYe2994Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 16:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bd:6c:39:68:93:ec:a6:ae:0d:8a:d0:38:b6:23:ef:2a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a647893fb5b348e68a66d55a28f278cbf3931df4
Validity
Not Before: Jun 12 20:00:46 2026 GMT
Not After : Jun 13 20:00:46 2026 GMT
Subject: CN=4156d903c0af6291b883c867ceaa26c0cc4d09be
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:76:35:a0:b9:d8:87:bc:2c:11:f8:a9:c6:8c:
02:12:ac:29:4b:c1:ca:ca:25:e5:fc:be:48:f8:77:
8c:60:1a:58:22:f3:9a:6a:2b:71:3e:09:b5:a6:fd:
99:05:ad:e2:87:37:5e:1a:93:49:fb:ed:28:01:81:
7b:73:8c:c7:ab:1c:25:66:92:77:21:51:56:42:60:
18:06:d7:3d:fe:22:a2:de:69:a0:fc:90:59:04:cb:
31:e0:dd:ef:95:86:5f:a6:30:6c:90:61:ea:54:9c:
d2:4e:d0:21:2d:7d:f6:71:84:6d:e4:8c:8a:c6:c6:
81:e3:fe:2a:ed:77:4d:39:c3:ce:c4:14:72:c6:05:
34:e1:a1:b5:52:df:56:36:66:ef:e5:9d:49:f4:9b:
8d:3f:e5:05:d8:d0:32:27:36:99:04:7d:5b:0b:f5:
83:9b:6c:36:c8:ff:11:6a:0f:ca:12:a5:1c:e9:38:
16:8d:a1:d6:fb:49:33:b6:7c:db:ce:25:75:ba:86:
29:17:d2:66:ea:d2:7b:52:6c:21:93:df:66:96:e8:
84:76:65:6a:f4:2a:b2:4c:b3:2c:0f:41:60:86:41:
16:4d:e8:8f:7b:31:66:3c:ba:72:4e:a5:70:33:cf:
c0:92:45:b9:3c:65:07:6c:1f:61:55:b7:e8:a3:5b:
71:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:56:D9:03:C0:AF:62:91:B8:83:C8:67:CE:AA:26:C0:CC:4D:09:BE
X509v3 Authority Key Identifier:
keyid:A6:47:89:3F:B5:B3:48:E6:8A:66:D5:5A:28:F2:78:CB:F3:93:1D:F4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/63/da8cb1-1bfc-43fd-a0d2-d624496ddcc8/1/pkeJP7WzSOaKZtVaKPJ4y_OTHfQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
65:e6:ad:1a:b0:2f:d6:10:a8:8b:58:9d:f7:d5:a1:56:8c:c7:
0f:2b:59:b5:bc:0f:1b:0c:43:f2:28:ab:16:96:5b:a3:a7:86:
da:96:b6:f4:03:33:ca:57:3c:19:da:20:ca:ab:2f:d0:ac:9d:
0b:9c:c0:7b:bc:86:ed:ec:2c:b4:79:09:56:87:b6:ef:25:b0:
db:7f:e2:59:28:fe:f4:e4:14:62:76:ec:ed:77:db:9c:45:34:
cb:6c:c7:a5:da:e9:ef:18:6b:c7:30:9d:96:18:9f:84:d3:05:
fb:e9:71:30:57:33:b1:d0:25:e4:48:3d:79:1c:22:93:38:91:
7b:4d:36:d1:af:d7:05:a8:91:7c:22:c9:5b:29:bf:76:e5:4a:
ce:71:da:38:7c:1a:11:ea:e8:cb:f3:ce:10:50:a9:76:a7:69:
a1:00:38:26:93:05:b4:ed:0b:e8:4e:00:ab:4f:50:cc:b4:67:
6d:e5:7d:91:51:14:40:a1:df:ad:55:3f:9b:25:70:f6:5e:94:
73:5e:e1:96:ce:96:67:34:db:12:bd:85:be:42:b7:44:f7:44:
e9:1b:46:21:1e:67:20:15:26:58:6c:df:83:e4:f1:db:71:b4:
b7:f4:3e:98:25:44:29:28:d9:38:0b:e1:53:3d:6c:10:15:ac:
a1:ed:d2:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 02:21:01 2026 by rpki-client