Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
File: cF5128zl_N2R2KmeWhssmVuBJ3U.mft (raw, json)
Hash identifier: nK4fJi/6A4X8oCn3rViwYwF+C9T0KLUBQ4m2q14CxxM=
Subject key identifier: 44:32:C5:5C:AF:BC:F6:E9:F3:82:CE:DD:22:46:1B:26:23:23:A8:66
Authority key identifier: 70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
Certificate issuer: /CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Certificate serial: 019EB845BF503634A49C67EF1B15293069C1
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
Manifest number: 195C
Signing time: Thu 11 Jun 2026 20:00:39 +0000
Manifest this update: Thu 11 Jun 2026 20:00:39 +0000
Manifest next update: Fri 12 Jun 2026 20:00:39 +0000
Files and hashes: 1: OtqwT00KNG8ocLQ5lsbZa477HJU.roa (hash: 3OLEihhSTZHcEQMRGGKnC6MAqTjm7MFUfykjVMW1buE=)
2: cF5128zl_N2R2KmeWhssmVuBJ3U.crl (hash: iAYS9zRMUYJnxnni9UJQDkEPwM5eBTmdrj0tuSPsbXs=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:39 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:bf:50:36:34:a4:9c:67:ef:1b:15:29:30:69:c1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=705e75dbcce5fcdd91d8a99e5a1b2c995b812775
Validity
Not Before: Jun 11 20:00:39 2026 GMT
Not After : Jun 12 20:00:39 2026 GMT
Subject: CN=4432c55cafbcf6e9f382cedd22461b262323a866
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:f5:ad:04:b7:91:f7:47:0c:61:c4:09:4e:d0:
8d:c5:5d:5b:c7:a2:38:e2:e8:7c:4a:87:9d:fb:96:
00:1f:a9:95:00:0b:bf:2b:bc:40:43:06:0e:9f:dd:
6b:9a:88:b5:ab:32:25:46:19:5d:ee:51:1f:ca:55:
bb:b3:df:a7:50:b5:9f:e1:8c:1e:58:32:f4:23:57:
0a:92:54:52:a1:53:02:56:71:fb:35:38:54:9e:ab:
2d:eb:a6:52:a7:ae:4f:c5:76:d8:77:cd:f4:b9:4d:
dc:a6:a4:69:04:ac:ad:f6:f7:1c:69:f9:5a:43:ee:
30:c7:f3:94:d9:8d:02:62:b6:19:14:21:45:48:5c:
9a:38:bb:1a:ca:e2:b1:a8:4c:c6:ea:02:69:38:70:
f4:58:64:f1:b4:45:8b:f8:0d:e3:1e:78:d4:42:b6:
e7:9e:ba:06:08:ae:30:e1:54:6a:65:a2:08:42:c9:
04:69:e7:7e:10:7d:05:92:20:d7:2b:d6:02:2d:01:
6f:9e:c0:d2:8b:5a:96:f9:98:62:53:8a:00:b5:34:
9c:a0:69:80:08:a1:1a:f1:42:7d:52:58:3d:aa:fc:
79:52:1d:72:4c:27:be:7b:a9:d8:89:68:3b:72:38:
eb:de:da:92:7e:26:f6:96:47:1b:60:e3:80:f2:8b:
95:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:32:C5:5C:AF:BC:F6:E9:F3:82:CE:DD:22:46:1B:26:23:23:A8:66
X509v3 Authority Key Identifier:
keyid:70:5E:75:DB:CC:E5:FC:DD:91:D8:A9:9E:5A:1B:2C:99:5B:81:27:75
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cF5128zl_N2R2KmeWhssmVuBJ3U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/7d/c1f448-8808-4a2f-bffa-f8b48baccd9b/1/cF5128zl_N2R2KmeWhssmVuBJ3U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a8:99:f0:41:58:6d:b5:29:ba:eb:66:b2:ff:fe:8e:11:e5:e6:
d5:d0:36:0c:64:75:bf:dc:39:b9:cf:58:c2:cc:fd:ec:80:91:
b0:16:f3:20:83:e5:f2:cf:da:10:8f:33:ae:2e:32:45:a7:f2:
74:a6:9a:fc:dc:8e:2a:b2:ce:d3:5c:08:35:9e:13:84:fa:63:
13:5d:68:9b:7d:c3:20:cc:c4:03:45:8e:0c:a3:e8:7a:5c:f2:
66:90:21:c6:26:07:f6:6c:f7:b4:ad:bd:0f:9c:ab:43:10:19:
fc:30:c4:ef:79:3c:b2:75:80:28:53:6a:ec:68:fa:be:c6:82:
9e:98:5d:ef:98:8d:ef:76:6b:ca:30:e9:66:76:de:32:5e:df:
98:d6:9d:d9:69:9c:9d:90:4b:ac:11:81:a6:84:f7:b2:4b:f3:
ac:6a:f2:3a:51:52:50:6a:39:d1:8f:8f:fb:98:38:c9:a1:8c:
9b:69:c9:4f:68:e3:a6:2d:b9:15:44:bf:c9:56:41:6c:6c:9d:
c8:c5:95:66:6f:f0:1c:da:d3:33:0c:f2:41:61:fe:84:54:69:
bb:72:46:d1:91:b6:ff:37:3e:4c:48:18:20:f5:db:11:32:2d:
bd:53:d1:d0:e3:97:58:84:c7:77:c7:dc:e6:66:55:3c:74:85:
3c:86:61:1b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:55:54 2026 by rpki-client