Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
File: J0PbfuNKwtTtV49JXgCWy5iv9xw.mft (raw, json)
Hash identifier: eETM339T22euidmm4xLargOluIXdsRXdGRyXfXHXVzo=
Subject key identifier: AE:C1:DF:17:6C:C1:BB:0C:B9:5D:EA:16:7A:57:69:75:94:6C:54:8C
Authority key identifier: 27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
Certificate issuer: /CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Certificate serial: 019EB8459DA714FC772E575D11D7A62E0705
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
Manifest number: 04A1
Signing time: Thu 11 Jun 2026 20:00:30 +0000
Manifest this update: Thu 11 Jun 2026 20:00:30 +0000
Manifest next update: Fri 12 Jun 2026 20:00:30 +0000
Files and hashes: 1: FSCr9rK0vEudDS9_bQ3O-hGkqrk.roa (hash: ddVmg0mXECaptmy2zncQhSGmVK6AKxm9h3sGTc6VHOM=)
2: J0PbfuNKwtTtV49JXgCWy5iv9xw.crl (hash: enFwxwkOsv3k7uxPWuiN4rjdNdi9r/mQ2uVqPxLTU2I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:9d:a7:14:fc:77:2e:57:5d:11:d7:a6:2e:07:05
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2743db7ee34ac2d4ed578f495e0096cb98aff71c
Validity
Not Before: Jun 11 20:00:30 2026 GMT
Not After : Jun 12 20:00:30 2026 GMT
Subject: CN=aec1df176cc1bb0cb95dea167a576975946c548c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:85:98:9b:6a:65:6a:07:f8:37:76:47:35:b2:
70:cf:4a:3b:51:41:e7:8f:3b:14:b3:da:1e:20:d0:
50:f0:0c:7b:17:e3:3b:68:cb:1d:b4:dc:6a:9a:53:
1d:a3:63:a0:60:c5:e9:b3:60:94:71:fb:72:f1:fa:
1d:c7:3d:59:be:be:dd:3e:f0:cd:ec:03:27:63:a9:
29:fd:3e:71:81:13:98:20:51:d4:d2:00:eb:5e:74:
bc:4b:b6:6a:80:df:17:7d:bf:cc:3d:9a:ed:7c:28:
08:c5:63:f0:e9:a8:eb:b4:4a:8a:b7:57:81:c4:3b:
f9:47:b5:25:ac:5e:96:a8:32:66:09:a3:4c:da:28:
a4:ee:b1:3a:18:6d:3b:d7:0f:13:1d:53:cc:0e:2f:
f4:53:46:f3:16:f9:b1:f8:c1:2e:72:29:c0:eb:2e:
26:83:ef:8e:dc:a7:b1:95:2c:52:9e:7d:76:35:a7:
56:63:ec:d1:7d:db:76:4a:65:02:75:d2:a1:7d:0d:
0f:f0:ed:fe:83:81:ea:f1:13:aa:86:32:6e:27:f8:
cf:32:b1:82:27:52:45:aa:70:c2:7a:85:61:4a:ce:
73:e0:f9:f7:08:2b:2a:e3:58:5e:e0:78:31:62:da:
43:0b:27:d8:7e:3a:10:7a:42:7d:fd:87:5c:80:6d:
e6:63
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:C1:DF:17:6C:C1:BB:0C:B9:5D:EA:16:7A:57:69:75:94:6C:54:8C
X509v3 Authority Key Identifier:
keyid:27:43:DB:7E:E3:4A:C2:D4:ED:57:8F:49:5E:00:96:CB:98:AF:F7:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J0PbfuNKwtTtV49JXgCWy5iv9xw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/75/2fbc67-d6f8-4ea4-bde3-53b31044ed5b/1/J0PbfuNKwtTtV49JXgCWy5iv9xw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
88:13:f2:0a:12:90:90:6c:1a:59:21:71:84:a8:0e:35:33:7f:
49:2a:f5:83:7f:46:a6:a8:48:98:25:8a:d4:6c:e6:a9:fa:36:
c8:e4:ed:bf:a4:8e:a9:b1:bb:65:7a:3a:90:d5:89:f3:90:c3:
7d:aa:ab:67:57:d4:5b:0d:db:f5:ef:90:e1:8a:d2:6f:f3:3f:
0d:78:4a:e5:52:7b:ad:13:0d:d5:78:6d:17:b9:e0:70:95:1e:
10:1d:ac:c4:68:67:4a:c8:27:f1:45:6d:f5:aa:42:9d:5e:1b:
b6:a7:d6:8f:86:4c:0f:e1:40:55:20:16:e2:e9:e2:34:e2:23:
d4:66:cc:72:5a:86:11:1b:96:ea:39:41:28:ed:d5:5b:5f:1f:
20:97:89:5f:73:68:0b:54:d5:78:5c:e2:80:17:c9:f2:d0:82:
19:52:b0:ee:b8:39:80:14:cb:67:9e:1f:13:93:bf:12:aa:7d:
32:c7:47:c7:3e:4b:54:af:ee:72:56:0a:6a:b7:37:be:51:e1:
73:ab:4a:4b:3e:b7:8c:af:b6:f9:b3:5d:a0:34:d9:db:fa:d0:
e2:a4:bc:5f:00:b3:b3:f7:39:a5:65:1e:95:dd:1c:5f:eb:92:
5c:e9:44:49:84:b7:cd:03:72:d5:c5:11:87:fb:10:fd:38:09:
3c:60:29:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:38:27 2026 by rpki-client