Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
File: S21-pBAzg38IwoxHQphLgrj0Q98.mft (raw, json)
Hash identifier: A0pmhPmtMlbiUHvVrytHYoptaxY4t8P6I6+ES79YeRc=
Subject key identifier: 1E:92:F1:67:C3:E8:59:95:1C:DE:90:6A:10:0D:31:4B:15:F7:AD:7B
Authority key identifier: 4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
Certificate issuer: /CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Certificate serial: 019EB76A4A1503D61F57C1716D0C7C274846
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
Manifest number: 1586
Signing time: Thu 11 Jun 2026 16:00:56 +0000
Manifest this update: Thu 11 Jun 2026 16:00:56 +0000
Manifest next update: Fri 12 Jun 2026 16:00:56 +0000
Files and hashes: 1: 4y1EBk6dbLscu7TuubVQpj3p-s8.roa (hash: TBvo1eP+imsTzppJhBpYDx8zDpINfxOs1/vehmwqpe0=)
2: S21-pBAzg38IwoxHQphLgrj0Q98.crl (hash: Kl/aXe0wYccVyF3YIuGPJYWi6eJeyUyes5o9BZjZJYk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 13:27:16 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b7:6a:4a:15:03:d6:1f:57:c1:71:6d:0c:7c:27:48:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b6d7ea41033837f08c28c4742984b82b8f443df
Validity
Not Before: Jun 11 16:00:56 2026 GMT
Not After : Jun 12 16:00:56 2026 GMT
Subject: CN=1e92f167c3e859951cde906a100d314b15f7ad7b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:7f:36:21:a1:1b:4d:77:f5:eb:f9:26:ac:09:
59:95:16:59:8c:43:b6:ba:ff:83:21:47:c4:3f:57:
c3:9b:b1:b0:19:d9:e9:df:b5:2f:38:27:d3:27:18:
cb:73:e3:4c:e4:79:a0:54:0a:6c:52:0e:ed:49:0d:
f6:81:9a:04:21:4d:3d:ae:b1:04:78:db:59:c6:71:
53:7d:59:a8:e0:93:26:71:09:47:ff:e4:da:43:c6:
e7:0c:c8:36:9d:91:a2:51:2a:a2:d2:fe:47:b5:e2:
22:e1:ad:fc:bf:71:74:ab:b9:ed:19:53:da:bd:51:
6b:00:67:91:70:99:1f:d9:75:63:e4:1b:ca:7c:f6:
f3:d1:94:a6:48:6e:a4:88:47:28:6c:68:c9:d2:36:
6d:d3:f4:a9:4b:68:cf:64:f4:57:b5:8a:d0:04:86:
88:c9:c7:08:03:79:ea:47:0d:28:02:81:71:38:f5:
ef:cc:2e:2e:ad:67:86:99:79:9a:d5:3e:4c:2f:94:
e5:52:56:55:92:86:f8:2a:a8:d0:41:b9:45:e3:c0:
58:55:d4:40:02:c0:df:01:bd:b5:f2:96:cf:c7:ea:
63:b1:3a:b8:8b:17:1c:e6:1d:e6:08:26:86:de:71:
8b:4b:a0:26:c2:c9:4c:5a:9a:88:92:2b:8e:27:3d:
75:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:92:F1:67:C3:E8:59:95:1C:DE:90:6A:10:0D:31:4B:15:F7:AD:7B
X509v3 Authority Key Identifier:
keyid:4B:6D:7E:A4:10:33:83:7F:08:C2:8C:47:42:98:4B:82:B8:F4:43:DF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S21-pBAzg38IwoxHQphLgrj0Q98.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/1d0681-fe20-47a3-94df-5ee8721c1cfc/1/S21-pBAzg38IwoxHQphLgrj0Q98.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
4c:8b:49:e2:70:dc:fa:67:27:a2:3b:f4:f5:1b:78:b3:ea:9f:
f1:9f:df:0f:85:69:9c:61:df:5b:d4:8c:c1:f6:f2:ea:63:2e:
62:bf:33:7c:38:ce:12:52:f9:5d:90:a3:59:c6:36:6c:7d:a4:
a6:d7:a6:e0:f4:d5:15:67:4e:8b:55:56:30:07:0c:50:1f:42:
13:c1:13:dd:d4:7f:8c:25:de:0e:67:4c:90:ee:8c:18:97:7c:
c4:13:50:45:13:95:91:f2:c0:07:d6:9f:cb:4f:e3:87:47:6c:
bf:e9:04:19:3e:de:3e:c9:0a:5c:62:57:c3:00:ab:d3:e7:ca:
b9:6c:f9:ce:9d:86:90:21:dc:bc:ae:11:ba:23:90:f4:be:07:
72:49:f2:16:00:12:ea:3a:a2:28:22:44:b2:66:cc:11:a4:5f:
fb:98:77:e9:21:6d:61:95:49:c7:4a:1e:ff:fa:d7:18:90:5c:
50:d8:9b:87:f6:b7:ea:f2:ee:88:79:03:33:22:9b:df:ff:7d:
bd:f5:bd:64:e7:9c:8c:b1:af:c1:93:75:65:73:ab:c6:49:da:
f1:00:e0:3a:f0:f2:2a:09:e1:2d:25:95:60:51:1a:b2:8a:76:
8c:f1:fe:b8:1e:28:73:bf:c1:05:3a:13:b1:17:06:5f:3f:9e:
b7:a0:99:29
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 11 19:02:46 2026 by rpki-client