Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft
File: 5k3j63dco74tVQPJyc07crvNpJs.mft (raw, json)
Hash identifier: QRrUq8AQGM8k1uKYfy1vSjqDSKGMoPoPLKLnIjLeeUs=
Subject key identifier: BC:D0:95:29:D7:AA:2C:8B:73:22:78:C0:6A:A7:AC:A6:04:64:FD:99
Authority key identifier: E6:4D:E3:EB:77:5C:A3:BE:2D:55:03:C9:C9:CD:3B:72:BB:CD:A4:9B
Certificate issuer: /CN=e64de3eb775ca3be2d5503c9c9cd3b72bbcda49b
Certificate serial: 019EB7D847EBA96A0DF8CEAD0426C33D5863
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft
Manifest number: 0209
Signing time: Thu 11 Jun 2026 18:01:05 +0000
Manifest this update: Thu 11 Jun 2026 18:01:05 +0000
Manifest next update: Fri 12 Jun 2026 18:01:05 +0000
Files and hashes: 1: 5k3j63dco74tVQPJyc07crvNpJs.crl (hash: pjPkmmvaPH7dWvbDWSrjj0DKccd0TXsw7Zzm/fcAvJU=)
2: tfwhmbNUeb70v_DXkuhRwPo_elo.roa (hash: VbIkneiXqdXvw+KPGB3c+sh95KU6gx9gOTx0TPGcPy8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft
rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 18:01:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:d8:47:eb:a9:6a:0d:f8:ce:ad:04:26:c3:3d:58:63
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e64de3eb775ca3be2d5503c9c9cd3b72bbcda49b
Validity
Not Before: Jun 11 18:01:05 2026 GMT
Not After : Jun 12 18:01:05 2026 GMT
Subject: CN=bcd09529d7aa2c8b732278c06aa7aca60464fd99
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8a:50:09:44:95:38:e6:87:0a:2e:d9:72:75:78:
ea:68:14:2c:67:9e:ba:b8:e1:f5:92:c3:69:6b:f4:
e5:8b:c5:fa:10:8c:d5:0f:a6:cc:d0:e5:a3:dc:31:
2d:ef:8a:57:40:17:66:b8:0b:e1:8b:a4:a6:d5:eb:
d8:b7:9b:ca:e4:3c:49:89:64:13:b4:73:bf:e8:1c:
31:f8:f0:a4:c2:16:d7:3c:74:1a:7c:7c:99:5f:1a:
d8:22:1c:1c:e5:1b:bd:df:b2:cb:4c:ce:bb:3c:ef:
3f:99:99:0e:9e:ff:c9:53:69:5c:d2:3c:d2:fc:1e:
92:d9:fb:9d:b1:4c:3a:32:22:0a:a7:52:34:c7:2c:
47:49:68:c5:fa:1a:1c:8b:19:ca:31:cf:3b:84:a4:
cc:88:82:26:35:5f:41:09:1f:88:3e:8c:e8:62:e0:
87:09:a9:91:9d:31:ae:08:d2:6a:44:27:e1:f7:12:
c2:e3:1c:01:2c:cc:dc:00:b5:c3:8b:61:24:2d:2c:
34:01:fb:6e:96:6c:1c:f8:b7:65:2d:61:8e:80:b4:
0c:2b:fc:3c:d8:b5:12:95:0b:d4:cf:ed:c7:47:2e:
93:16:53:2a:54:d4:77:51:69:27:e9:53:41:c8:47:
71:93:5c:14:6f:81:9f:ec:9b:fb:ef:b5:0d:93:dc:
c9:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BC:D0:95:29:D7:AA:2C:8B:73:22:78:C0:6A:A7:AC:A6:04:64:FD:99
X509v3 Authority Key Identifier:
keyid:E6:4D:E3:EB:77:5C:A3:BE:2D:55:03:C9:C9:CD:3B:72:BB:CD:A4:9B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5k3j63dco74tVQPJyc07crvNpJs.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/05ce9d-6dae-4709-971f-341658243b4e/1/5k3j63dco74tVQPJyc07crvNpJs.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
73:34:f9:35:94:32:0f:47:2a:76:0e:15:b2:5f:8a:ce:8c:fe:
42:01:47:01:5a:67:d7:32:7f:21:27:ae:06:ee:8a:50:88:92:
d2:92:9c:f2:64:93:e1:cc:a2:b8:6f:a6:67:3d:e2:23:08:c7:
cc:bd:19:24:ee:db:e9:41:d0:c7:03:2b:58:0a:fd:c7:91:c2:
29:2e:c2:02:2a:5b:23:ac:fa:c3:80:6b:fa:ce:23:a9:7b:49:
3d:81:8a:fc:22:2f:c6:5b:d8:8d:93:08:af:64:78:cd:75:59:
f9:c1:46:ea:d4:f6:d1:36:f8:4b:28:24:fa:df:8c:33:64:3a:
c6:df:57:76:cb:e0:4d:0c:fd:02:00:c8:f3:f7:bd:bd:72:aa:
6e:7a:8c:33:a1:3a:f5:d2:c1:33:be:43:7c:03:c3:10:21:07:
65:b2:cb:31:46:ab:60:9d:7e:4a:18:b3:40:49:05:34:11:43:
4f:aa:ef:a9:16:24:bc:b8:46:db:57:35:d2:bb:2b:dc:67:b2:
d1:af:37:ac:f7:a7:3e:4c:16:e3:2c:97:c0:22:89:51:7b:85:
3f:b8:47:e1:51:a3:f0:6a:9e:25:9a:04:d9:c5:5b:dc:b9:cd:
41:79:33:af:27:bb:7a:0a:eb:f0:bf:e1:36:a3:20:fe:43:e2:
fc:fb:7f:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 01:33:18 2026 by rpki-client