Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
File: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft (raw, json)
Hash identifier: M7C+12Yh/EPCfeg42+pUocftoGxLX46G+WvGnKBh7/c=
Subject key identifier: 74:68:65:6E:01:36:1A:A4:CE:97:F6:9C:A9:70:0D:D1:24:1C:23:75
Authority key identifier: D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
Certificate issuer: /CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Certificate serial: 019F14C1A8DECBE29E97C5ABDF1DFCE9005C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
Manifest number: 1987
Signing time: Mon 29 Jun 2026 19:01:03 +0000
Manifest this update: Mon 29 Jun 2026 19:01:03 +0000
Manifest next update: Tue 30 Jun 2026 19:01:03 +0000
Files and hashes: 1: 0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl (hash: KpUUZsacNhFM4rETLmODUVBGrHWHi0BBUVRSgqrttfQ=)
2: ufg8Cy-npLiG4EP7oeE-jAY168k.roa (hash: mWJPH552eZGzUsrCNb54v4U4ffZaIGFDBWjHB1EftzA=)
3: ut5dpGeCvxjJRpLmR_ipxil5ZUA.roa (hash: PaeXiU3oIApbKxkYqCqS8/5Z6kGo2lJVdWVbX8L9K5M=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 19:01:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:14:c1:a8:de:cb:e2:9e:97:c5:ab:df:1d:fc:e9:00:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d0ee0389687dbd445de6f9239c1d02c3770cf574
Validity
Not Before: Jun 29 19:01:03 2026 GMT
Not After : Jun 30 19:01:03 2026 GMT
Subject: CN=7468656e01361aa4ce97f69ca9700dd1241c2375
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:d9:40:65:3d:e4:fa:d2:76:39:0b:8b:ca:31:
46:70:eb:d3:2d:e1:99:e4:5f:23:6c:67:ca:93:81:
0f:e3:b8:1e:6e:1c:ac:d8:6f:90:ae:1f:cd:92:a0:
a7:7b:95:3f:aa:a5:c7:7d:c4:ca:cf:03:cc:11:3b:
f8:c9:36:91:5e:97:0a:3d:32:9b:1a:f6:af:12:7a:
29:35:c3:94:e7:4e:ad:41:06:ef:ae:ad:be:a6:ca:
84:8f:86:a0:9e:52:7a:09:f4:f2:1c:76:da:ac:aa:
42:ce:69:d0:dc:08:e4:9c:dc:4b:55:9c:fb:a2:56:
c2:e1:36:09:43:b9:63:14:61:ce:df:6b:c7:cf:44:
99:2b:5c:a9:d2:90:01:33:75:0a:6c:a9:c5:4e:41:
bc:20:61:e8:74:23:76:5c:98:2b:c1:51:63:9e:94:
5b:07:f4:fb:88:f2:42:df:56:0d:67:b7:a8:73:ea:
37:1b:c1:02:25:27:6a:5b:ab:bc:8e:d7:f2:ce:9f:
a0:52:f9:34:b0:8f:78:50:18:93:c5:3d:73:3a:c0:
8d:5b:4b:33:9a:a7:02:2f:f1:12:0d:7f:dc:92:c3:
6f:39:27:1b:df:22:32:2a:c1:5d:e2:3e:e4:74:99:
bc:91:21:d7:e5:7b:8d:a4:d2:4a:e3:39:88:bb:6a:
ae:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:68:65:6E:01:36:1A:A4:CE:97:F6:9C:A9:70:0D:D1:24:1C:23:75
X509v3 Authority Key Identifier:
keyid:D0:EE:03:89:68:7D:BD:44:5D:E6:F9:23:9C:1D:02:C3:77:0C:F5:74
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/95/a11417-6abc-4c0d-8afa-1a29a448d309/1/0O4DiWh9vURd5vkjnB0Cw3cM9XQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a5:02:e3:b6:d1:d0:7e:c7:61:c0:31:35:c5:cb:bb:b3:ac:67:
0e:fb:b3:85:0a:57:b4:23:f3:7d:a3:fd:da:52:49:df:92:07:
d1:1e:8d:6d:78:de:5b:08:ed:6d:4d:76:90:68:28:1b:77:98:
ef:9c:b6:cc:ee:bc:1b:e8:f0:40:5b:15:9e:66:d4:34:d3:98:
68:23:a9:45:ef:92:94:4a:dc:d8:ce:83:5a:71:32:0d:16:bf:
48:41:43:aa:77:e7:17:d9:29:23:0b:97:51:3f:82:ca:92:5e:
50:a3:32:65:bc:36:ef:2b:07:36:b4:85:9d:69:a4:f7:c6:50:
ad:29:03:9c:6b:f3:7f:a1:fe:b3:b2:4b:0c:15:ec:03:a4:67:
3f:51:87:ab:23:69:85:be:a6:16:80:79:ff:23:43:91:66:e1:
3c:39:07:16:9b:6b:11:2b:d1:9d:af:a8:e9:9d:1a:14:d0:5b:
d6:0c:7c:bd:72:d5:f2:a4:d8:0c:d7:1f:30:ca:e7:6c:ed:a7:
ed:1c:3e:b0:6d:b1:40:8e:66:77:03:a1:ea:ca:4e:e1:c2:18:
af:2f:01:c8:35:74:85:3c:07:75:c3:41:83:6d:f1:8d:26:8b:
fe:29:7f:0b:75:bf:8f:18:d5:5e:2a:df:b0:54:be:f5:0f:08:
2a:41:52:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 02:27:18 2026 by rpki-client