Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
File: sda67LY65G_uowyrhiHUbFn3KAg.mft (raw, json)
Hash identifier: xQt/pKOHwB2tUyNZMv5oItsuKhnw9kHn07Tj0q6UTTc=
Subject key identifier: 2D:66:DB:F2:D4:9C:28:0D:7E:48:94:B1:E9:06:2C:3F:9F:83:A6:00
Authority key identifier: B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
Certificate issuer: /CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Certificate serial: 019EB8EA81937B00F78345F9865C198717E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
Manifest number: 16A8
Signing time: Thu 11 Jun 2026 23:00:36 +0000
Manifest this update: Thu 11 Jun 2026 23:00:36 +0000
Manifest next update: Fri 12 Jun 2026 23:00:36 +0000
Files and hashes: 1: 8JPDTRJcWjJC1p6Bup8VRe1Gagc.roa (hash: /UT/Fa23tq8Vnw8GXuEzSsDokpGGbDVoxclf2hd11P4=)
2: sda67LY65G_uowyrhiHUbFn3KAg.crl (hash: NLpWe0Xm+Ukus+GgQAf3f2MEZvaQoJD8iVZQItVZ3oQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:81:93:7b:00:f7:83:45:f9:86:5c:19:87:17:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1d6baecb63ae46feea30cab8621d46c59f72808
Validity
Not Before: Jun 11 23:00:36 2026 GMT
Not After : Jun 12 23:00:36 2026 GMT
Subject: CN=2d66dbf2d49c280d7e4894b1e9062c3f9f83a600
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:0d:28:e6:6b:9f:1a:64:0e:32:f9:5b:c8:d1:
67:42:e8:f7:4e:b7:61:0d:1c:d0:d4:31:c3:08:30:
b1:11:ad:ed:7c:4d:84:db:da:ee:37:0a:68:23:e6:
db:4e:b3:cc:53:9b:a3:2c:58:d3:07:e6:93:ee:2b:
cd:8e:a3:c2:6e:7e:f6:d2:e5:df:88:56:2e:c2:55:
4f:97:ad:9f:ea:82:f7:3b:ba:52:e8:be:16:4d:7a:
52:31:98:22:8b:35:ce:c8:d5:c5:8f:d6:4c:ef:85:
4f:2d:eb:8d:ed:5c:81:bc:8c:b8:68:e8:c8:97:69:
84:0b:4b:95:0e:59:55:c3:6f:00:98:9e:28:82:68:
73:9f:dc:a2:1a:8b:20:98:5a:a3:3a:75:ba:96:bc:
58:6b:dc:f5:ae:59:0a:36:d6:52:f1:bb:ba:9e:5e:
e9:a8:a6:f8:fb:e0:6c:87:cc:a1:d9:08:df:2e:83:
93:3f:dd:b8:49:a5:e6:3b:97:9e:c7:a7:66:5b:c4:
10:9c:9a:56:54:5c:76:64:1c:54:9c:3a:31:cd:7e:
fb:21:70:e7:e7:cf:9c:e6:03:8b:20:ee:ac:34:65:
d9:1d:6a:c6:37:61:4c:a3:8f:8e:4a:25:22:e9:ec:
30:fd:e0:ac:55:94:4c:82:82:69:c7:b5:0f:04:2d:
1b:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:66:DB:F2:D4:9C:28:0D:7E:48:94:B1:E9:06:2C:3F:9F:83:A6:00
X509v3 Authority Key Identifier:
keyid:B1:D6:BA:EC:B6:3A:E4:6F:EE:A3:0C:AB:86:21:D4:6C:59:F7:28:08
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sda67LY65G_uowyrhiHUbFn3KAg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/67/703d96-e34b-4c24-9c9c-7af79daa69b9/1/sda67LY65G_uowyrhiHUbFn3KAg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
18:fc:64:0b:c4:5e:17:30:8a:b6:6a:1a:ea:34:d6:ff:61:3b:
ed:f8:2e:63:80:0a:85:36:eb:bc:97:4a:ba:c4:09:5b:34:ee:
ca:34:db:ce:c7:72:02:76:15:65:a2:f8:ec:de:1a:6d:25:62:
ea:00:66:6f:ab:f9:d8:ec:23:9e:4d:12:d5:20:ba:7d:74:15:
25:16:5e:53:a4:6b:56:64:56:79:62:4f:3b:c4:6b:d0:d4:fa:
a8:c0:94:26:8f:35:e1:dc:c8:b4:e2:a3:59:6d:b6:35:83:5d:
cb:dd:00:b5:a7:b9:63:77:0a:d3:97:26:c9:05:c6:0c:e6:49:
4b:84:11:75:e1:ba:f8:f4:f2:7d:96:5a:70:68:a9:cd:be:6c:
09:a5:e9:6a:28:33:36:5e:0f:f4:f4:e1:50:da:f4:3d:42:5d:
e5:4d:06:d4:bd:59:fb:38:e1:b4:e9:2f:80:fb:07:7f:ce:03:
d1:5c:16:81:1c:ef:41:e4:61:8c:a0:76:a7:70:83:98:26:2d:
c3:8a:3a:c8:a9:a3:11:33:20:bd:04:eb:ed:f1:9a:a2:26:28:
2b:60:3d:29:dd:b3:85:7b:53:74:27:af:d2:91:d0:16:a1:23:
85:28:2d:af:ec:d5:6c:83:98:4e:59:36:ed:7a:87:e2:47:2e:
58:18:1b:25
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:52:22 2026 by rpki-client