
Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
File: rS044g8k0OMLhszYJhrAAX8XpaQ.mft (raw, json)
Hash identifier: qJmo3Pn3p3peVccUG0a0nnw+U4Ee7aEUD2T3ps7X86A=
Subject key identifier: 6C:40:63:93:E9:8E:64:7A:29:64:19:BA:88:0D:34:33:10:3A:41:4F
Authority key identifier: AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
Certificate issuer: /CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Certificate serial: 019F420875DB5A11B52E4AB43AD3505DF047
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
Manifest number: 0C6B
Signing time: Wed 08 Jul 2026 14:01:18 +0000
Manifest this update: Wed 08 Jul 2026 14:01:18 +0000
Manifest next update: Thu 09 Jul 2026 14:01:18 +0000
Files and hashes: 1: 9tGzK-FCrgGlyf8btSGObHH6Jkw.roa (hash: NlammvVp7/v8P1KUtxpc69bkMW7FgZFFOJxxoLecI3k=)
2: NJAtBEz3Ixv_CCYeRvRJJECYvnk.roa (hash: 8VY+OH2qENoVZQA8QBMe/XGjN1hAsUDKuWI2emaWxMU=)
3: rS044g8k0OMLhszYJhrAAX8XpaQ.crl (hash: n5c2w/YHsXNAPAzE8mzye25IVWZ9GCbTTMV3RgGpmhk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 09 Jul 2026 13:45:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:42:08:75:db:5a:11:b5:2e:4a:b4:3a:d3:50:5d:f0:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad2d38e20f24d0e30b86ccd8261ac0017f17a5a4
Validity
Not Before: Jul 8 14:01:18 2026 GMT
Not After : Jul 9 14:01:18 2026 GMT
Subject: CN=6c406393e98e647a296419ba880d3433103a414f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:d7:45:59:02:80:b5:01:10:65:6e:1e:3d:52:
1b:a3:07:a5:47:bb:69:5b:9d:4e:30:3c:22:4a:26:
ac:da:cf:46:af:b5:e1:d8:a8:74:08:72:8d:86:2c:
fa:29:2c:8e:53:cf:53:4d:84:83:57:fa:ac:4e:2b:
0b:29:3c:97:ca:39:c9:c3:b0:c8:b0:61:2c:b1:3f:
a1:67:df:42:3c:d6:0d:95:57:7e:3a:58:c4:dd:bb:
7e:00:6b:73:ac:b3:be:b7:9f:a9:79:a0:d1:66:a0:
dc:0e:74:06:f5:5f:04:1b:70:d5:45:0a:29:18:26:
eb:2b:8d:2b:b6:e8:8c:08:5c:bb:7a:7c:18:ea:19:
99:20:d7:63:12:28:6a:ec:69:43:5f:5f:0e:64:39:
46:ac:b0:5e:9b:cb:5a:cf:eb:48:7b:1b:86:49:f7:
da:30:24:39:44:2d:fe:80:c7:52:c8:31:ed:06:3e:
84:4e:1d:5e:bf:c9:4f:03:41:cf:44:cd:e0:e4:6d:
65:7b:32:8f:5e:7f:9d:86:49:6c:3d:d5:99:2e:b7:
9c:d2:31:5e:92:31:43:b7:36:52:32:1f:34:83:c7:
93:bc:52:d9:2d:0e:b5:b6:aa:c8:b7:34:64:80:1c:
2d:ce:a1:95:07:de:20:4e:e3:2e:f8:3b:8b:c6:3e:
73:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:40:63:93:E9:8E:64:7A:29:64:19:BA:88:0D:34:33:10:3A:41:4F
X509v3 Authority Key Identifier:
keyid:AD:2D:38:E2:0F:24:D0:E3:0B:86:CC:D8:26:1A:C0:01:7F:17:A5:A4
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rS044g8k0OMLhszYJhrAAX8XpaQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2d8761-229f-4a37-87b1-42995323c03d/1/rS044g8k0OMLhszYJhrAAX8XpaQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:c0:44:b6:08:6c:e9:c0:e9:29:9c:5e:31:9c:3c:9a:56:b4:
f3:ac:ff:8d:eb:1b:01:b1:d5:c1:10:1f:18:6f:07:17:10:d9:
b4:af:e4:1d:af:e9:1b:56:04:e4:5c:9b:c7:34:a9:03:f8:c8:
ba:84:ae:3d:2b:98:91:fc:59:2e:02:b3:79:ae:08:d8:ae:e3:
15:75:26:fd:1d:5c:e4:9e:b3:3b:a8:f6:9d:c3:95:d1:df:b7:
e8:ec:80:c3:0b:7e:78:27:37:da:be:af:96:45:86:d2:26:78:
80:08:4f:0f:f3:05:b3:d2:80:78:5f:eb:cc:32:1c:6a:76:e6:
46:e8:7a:f5:f6:68:a4:73:3e:ea:03:5c:d2:bc:ef:f9:52:be:
08:5b:97:b5:37:f0:32:01:94:8c:8b:12:f9:92:56:8d:fb:7c:
ba:87:9e:28:83:66:0d:33:bd:e3:88:04:fb:ab:14:7f:b0:d5:
c2:3d:a8:4c:34:98:7d:8d:67:64:09:87:1c:1e:26:48:2a:e0:
d3:60:b1:10:4c:dc:b3:e4:69:43:08:ed:af:1d:5d:71:00:df:
9a:d3:90:5e:05:ae:07:8c:e7:75:f9:19:3d:d2:8e:80:21:b5:
47:bf:2f:7e:93:44:43:71:fa:7c:59:a8:02:73:81:1a:5e:67:
25:5b:1e:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 8 18:41:35 2026 by rpki-client