Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
File: Tom7FOgJr_PsljCL2a6GUafndio.mft (raw, json)
Hash identifier: Hdq2eUx5jnEfM7PoH5GEtTPwWygTHFKd9YhQM+gpGkA=
Subject key identifier: 07:65:99:D4:D3:C5:17:49:04:F8:DC:DD:2A:63:9A:D4:FE:E8:5E:5C
Authority key identifier: 4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
Certificate issuer: /CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Certificate serial: 019EB8EAA529FA772ED2B6EC1D7E2F92F393
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
Manifest number: 1956
Signing time: Thu 11 Jun 2026 23:00:45 +0000
Manifest this update: Thu 11 Jun 2026 23:00:45 +0000
Manifest next update: Fri 12 Jun 2026 23:00:45 +0000
Files and hashes: 1: Tom7FOgJr_PsljCL2a6GUafndio.crl (hash: b406otq4M0P5iCIxtViaG6IUR68p/ThAUN6d96QsbXE=)
2: ocvm0IdE2g81VMWQHWvGerIOuso.roa (hash: vva88+yWqRlVE96LUlXUKJ3JPb4q0jP0+58DLgtlF9A=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:ea:a5:29:fa:77:2e:d2:b6:ec:1d:7e:2f:92:f3:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e89bb14e809aff3ec96308bd9ae8651a7e7762a
Validity
Not Before: Jun 11 23:00:45 2026 GMT
Not After : Jun 12 23:00:45 2026 GMT
Subject: CN=076599d4d3c5174904f8dcdd2a639ad4fee85e5c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a1:13:d4:18:06:ea:5b:f7:19:4c:8e:e3:6f:
08:ac:de:ff:31:e6:ad:d2:49:be:28:45:7d:26:1f:
25:95:90:f6:f1:71:42:3b:9f:e7:97:09:fa:18:07:
65:74:2a:68:32:54:36:42:44:96:00:aa:c5:22:fc:
e4:1b:44:b2:2b:ee:94:2e:3b:9e:76:46:04:cc:e4:
40:3c:00:bb:ef:ec:53:a3:17:32:c9:e1:52:68:ef:
6d:5f:f5:8e:02:35:f7:9e:e6:c9:f3:79:58:2e:67:
d6:55:5c:e5:c4:df:d1:87:cf:a2:99:f3:1e:3b:a8:
f1:a7:70:df:b1:0f:56:5c:97:cc:58:59:a8:3a:ff:
6a:17:c0:14:78:3e:22:df:f6:ec:a4:43:a9:b8:aa:
26:74:7b:a4:9c:a2:46:43:79:bc:48:9f:38:9d:71:
94:56:6e:ca:d1:d8:2a:76:ca:5e:23:55:fa:a1:d4:
88:68:db:12:5a:3d:a6:e0:57:4b:8b:32:7b:7a:08:
df:da:f2:cb:24:09:08:96:f5:ea:8a:1f:97:92:8d:
2f:98:2e:fd:32:41:4c:7c:20:51:d0:e6:62:8c:b3:
6c:c7:92:a0:61:06:1e:eb:5a:56:e6:48:bb:19:a8:
1b:a1:33:58:15:c8:45:37:b8:73:f0:c5:55:51:2a:
c2:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:65:99:D4:D3:C5:17:49:04:F8:DC:DD:2A:63:9A:D4:FE:E8:5E:5C
X509v3 Authority Key Identifier:
keyid:4E:89:BB:14:E8:09:AF:F3:EC:96:30:8B:D9:AE:86:51:A7:E7:76:2A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Tom7FOgJr_PsljCL2a6GUafndio.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/86/ae3cc8-ce74-4d57-819a-9fa02cc248e5/1/Tom7FOgJr_PsljCL2a6GUafndio.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7f:63:d3:ab:b4:c4:2f:ff:56:0a:8f:0d:b3:f3:d4:1d:fc:1d:
1a:6b:73:65:f6:40:d3:92:c9:65:1d:b8:e0:f3:69:91:fd:74:
18:1a:2d:b4:70:5f:72:c4:94:07:58:99:dc:84:75:8c:52:ee:
4c:71:61:fe:89:f1:88:81:48:fb:ad:c2:7d:bb:ab:50:f6:2c:
0f:a0:9b:ec:4e:c0:89:58:95:b2:bf:71:72:0c:66:62:1d:fd:
d3:e9:90:88:86:2f:13:71:8c:3e:17:a3:f0:37:ec:5d:17:64:
f4:5e:30:aa:29:b2:60:13:ad:59:4d:d2:48:2e:89:03:24:fe:
71:51:91:1d:2a:4a:43:30:b4:c7:b5:ab:e0:20:40:41:75:13:
ec:2a:69:92:ab:88:f3:6b:c9:62:cd:8e:bd:77:55:1c:b9:ef:
e8:95:8c:e0:3b:d6:0d:e8:04:4f:88:4d:82:6d:e7:41:d1:13:
83:5b:2c:69:15:ab:a6:ae:78:51:83:c1:df:4f:f4:76:48:c9:
26:c1:f7:1f:1b:b1:41:70:b1:1d:dd:60:85:94:4d:57:f9:90:
7e:1b:02:71:53:57:f8:db:7c:79:d9:1c:d7:61:7f:aa:12:40:
ce:da:48:6e:48:40:86:ad:43:8b:5a:6c:a0:dc:c3:4a:cb:08:
66:12:ee:8a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 02:45:11 2026 by rpki-client