Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
File: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft (raw, json)
Hash identifier: YZgTkeyTzGs0GCw1k6cvPvY7ft0v5zO7AFC3/zSifhY=
Subject key identifier: 07:60:E5:98:F4:44:D6:1C:64:D4:D6:89:A6:CF:6C:FD:E4:95:97:A0
Authority key identifier: FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
Certificate issuer: /CN=fad7e14a262560191c66576998e9c69b89c3c136
Certificate serial: 019F197A5CCBFA2DB7F352907BB6319B22CC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
Manifest number: 0E18
Signing time: Tue 30 Jun 2026 17:01:17 +0000
Manifest this update: Tue 30 Jun 2026 17:01:17 +0000
Manifest next update: Wed 01 Jul 2026 17:01:17 +0000
Files and hashes: 1: 1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl (hash: C8btjd0xPUmPqQTI345Kk6NEA/2RlHi3d3Cqo9HE/fY=)
2: bocz5SG9Zj4HkXUBKia2cUoBHTI.roa (hash: kxCpDn7CCZ/6SqGTk6+uT7aXJeJIuhuC431y0OFAOkk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:7a:5c:cb:fa:2d:b7:f3:52:90:7b:b6:31:9b:22:cc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fad7e14a262560191c66576998e9c69b89c3c136
Validity
Not Before: Jun 30 17:01:17 2026 GMT
Not After : Jul 1 17:01:17 2026 GMT
Subject: CN=0760e598f444d61c64d4d689a6cf6cfde49597a0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ac:b6:85:ff:b4:7d:65:94:da:eb:ed:02:a4:94:
60:38:98:5d:d8:69:5f:b7:ca:45:26:aa:56:f7:93:
95:92:b4:be:22:56:8c:6a:aa:73:d6:68:d5:4e:5b:
70:04:d9:95:8f:5d:dd:8e:ae:eb:dc:73:5f:2d:b5:
0e:c8:e6:cb:94:d0:9d:51:16:56:f7:86:a7:61:c1:
33:15:91:cb:dc:56:85:fa:29:55:c8:75:4a:af:e0:
97:1b:6a:07:cd:08:b1:fc:d9:58:d9:f2:77:e4:9b:
0f:1e:55:74:2e:0c:d7:86:e9:2a:b8:0b:cf:d6:1f:
25:2a:e7:62:39:5b:f6:f1:63:b6:17:90:e7:66:be:
31:cb:2e:e1:22:79:78:62:1f:2e:df:b1:61:56:f9:
57:e2:47:dc:85:98:1d:68:10:11:0b:fc:a1:ab:f9:
22:1e:c5:28:7e:3e:57:1a:88:e4:be:c0:ee:8b:a6:
32:db:9e:dd:b3:71:fe:e3:37:5a:c9:9f:0a:e4:05:
c7:10:6d:ab:df:f2:28:87:60:12:d8:e5:d9:f4:8b:
c7:c2:b9:a7:6c:1a:31:e5:8e:3d:ff:4c:16:f3:0b:
3d:b3:57:77:29:80:87:0b:5e:d2:55:20:dd:19:0a:
31:02:71:3e:09:b6:e4:de:33:a5:10:d8:59:b4:bc:
8c:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
07:60:E5:98:F4:44:D6:1C:64:D4:D6:89:A6:CF:6C:FD:E4:95:97:A0
X509v3 Authority Key Identifier:
keyid:FA:D7:E1:4A:26:25:60:19:1C:66:57:69:98:E9:C6:9B:89:C3:C1:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-tfhSiYlYBkcZldpmOnGm4nDwTY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/e6656b-80c8-435e-bc1d-d6e715523f39/1/1-tfhSiYlYBkcZldpmOnGm4nDwTY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:cd:72:f3:88:23:c6:9f:27:60:bd:13:19:f9:28:25:14:4a:
a9:05:62:9e:cb:e4:2b:b3:3b:c0:cf:29:25:6c:28:4e:62:fe:
68:ff:0a:15:d8:01:be:c1:da:90:f5:ac:6b:fc:ee:12:ef:1d:
bf:4b:a7:22:22:18:50:0c:f3:5d:6a:0e:c1:8f:53:64:60:eb:
eb:20:7f:54:2d:f6:a7:5c:a1:eb:c9:51:72:7a:4a:ce:d8:bb:
9a:c7:e4:39:d1:5b:91:d2:b0:a3:78:22:d0:c6:74:0e:cc:6f:
b0:46:b3:9d:41:0c:32:10:50:a7:63:df:84:a1:85:ae:6c:ea:
e3:ee:24:91:6b:10:32:cd:11:2f:8b:06:61:3c:2a:89:82:65:
70:49:2c:3f:c2:32:ad:49:1b:b9:a5:7c:50:d0:75:ba:87:1f:
39:ed:7f:a4:17:7b:0f:b5:25:7e:cd:a9:61:a3:c6:75:72:d4:
c0:fa:f3:82:69:0d:8d:60:0f:b6:de:81:75:24:86:cc:b2:7b:
e6:bd:db:aa:cd:7d:db:f0:c2:98:11:35:3e:0e:a2:e0:a1:fb:
26:68:02:f8:6f:9e:4b:80:5a:3d:3c:5f:d8:3f:7c:11:09:d1:
12:be:e2:3e:63:4e:10:8c:cd:0d:fa:a4:5e:7f:d8:54:45:c0:
00:89:c9:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:17:18 2026 by rpki-client