Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
File: 1kgpREOu0W0GuGrxT1pfClCDd0o.mft (raw, json)
Hash identifier: rKH1YvidAddVDk4NYTXjTq9XJDq85kPI7smNEKd/W8Y=
Subject key identifier: AE:6E:E2:62:AB:89:92:48:82:60:E8:D2:3E:BA:3E:9B:77:90:B4:AD
Authority key identifier: D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
Certificate issuer: /CN=d648294443aed16d06b86af14f5a5f0a5083774a
Certificate serial: 019F189EE9168D83B7AA24CF91ADA0C1A639
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
Manifest number: 1987
Signing time: Tue 30 Jun 2026 13:01:35 +0000
Manifest this update: Tue 30 Jun 2026 13:01:35 +0000
Manifest next update: Wed 01 Jul 2026 13:01:35 +0000
Files and hashes: 1: 1kgpREOu0W0GuGrxT1pfClCDd0o.crl (hash: 5USS0kUBfBaujx33zZpU8414U3bj6afF/xUk5AtkJj4=)
2: dMl0CEajkrxcgLNcfpnLA8OuL7A.roa (hash: CYX2WX+QfrhOpGiBFy1DWZkIM2JKpSw/oiXkQ7UpKFU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:e9:16:8d:83:b7:aa:24:cf:91:ad:a0:c1:a6:39
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d648294443aed16d06b86af14f5a5f0a5083774a
Validity
Not Before: Jun 30 13:01:35 2026 GMT
Not After : Jul 1 13:01:35 2026 GMT
Subject: CN=ae6ee262ab8992488260e8d23eba3e9b7790b4ad
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f7:d5:bf:e9:54:4b:de:cc:d7:60:7d:2a:57:90:
87:ff:b2:7f:a9:85:8d:7b:45:4d:cb:8a:75:9e:51:
2e:7e:16:b0:2a:3d:f1:56:97:4e:98:de:f8:36:89:
8b:53:58:6b:44:17:c7:da:02:6c:de:46:fd:17:6d:
19:8d:e7:f5:2e:42:2b:a1:27:c8:aa:a6:9d:f0:be:
a8:4e:97:3b:41:54:c3:68:a0:1d:fe:64:2a:d8:af:
2b:8d:c6:09:75:d3:23:31:9b:b9:40:f5:15:ba:2d:
08:68:af:de:93:77:f9:84:7b:95:41:33:4d:a7:3c:
1f:c1:9f:e8:03:09:85:5d:67:bb:b2:b4:e2:63:99:
72:1a:83:50:87:de:56:05:56:a2:19:46:7f:05:9f:
93:a8:2c:d7:de:5e:d5:99:52:23:3a:b2:2a:00:3e:
35:23:42:60:84:2c:34:a9:56:b5:c7:9f:d2:0b:94:
22:94:91:78:a2:a0:2d:78:6f:5f:51:ca:90:bc:e3:
7c:45:94:85:18:2e:dc:11:31:24:b0:0f:96:05:d6:
7a:cf:5a:53:1e:d1:ec:a3:0b:57:66:14:30:0e:bd:
ab:85:17:ab:49:d4:b5:0f:e9:6f:93:9d:28:e0:a0:
78:de:42:63:79:9c:3f:dd:35:81:29:9a:0b:b0:a1:
13:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:6E:E2:62:AB:89:92:48:82:60:E8:D2:3E:BA:3E:9B:77:90:B4:AD
X509v3 Authority Key Identifier:
keyid:D6:48:29:44:43:AE:D1:6D:06:B8:6A:F1:4F:5A:5F:0A:50:83:77:4A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1kgpREOu0W0GuGrxT1pfClCDd0o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/b587e9-33a9-4a86-8cd9-e57cc81f5233/1/1kgpREOu0W0GuGrxT1pfClCDd0o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
06:43:a8:8a:d2:e9:97:7a:0e:42:18:84:f1:1d:78:bb:ab:28:
e4:a4:a8:ed:6d:9a:df:5a:bc:25:73:b1:d1:81:f8:e5:6f:15:
2c:49:40:64:cc:3d:6b:49:b1:9f:56:6a:ab:27:1c:80:df:d5:
3f:f3:86:b7:61:9a:fe:0e:43:e7:c5:33:9f:c7:fd:95:64:84:
be:92:07:44:09:0c:b4:1f:88:09:b3:b2:cf:1b:96:af:04:40:
c5:14:36:5f:f4:dd:70:4b:60:c6:4e:13:4e:59:0b:cd:a5:82:
8e:27:4b:a5:c8:01:ef:56:54:1f:c6:68:6a:64:02:31:e2:31:
26:e5:89:95:27:76:a9:da:7b:81:fb:95:3c:28:83:55:09:ce:
46:10:e4:aa:f0:5f:a3:e2:27:63:27:c0:97:da:6e:b1:da:fe:
4c:7b:2c:7a:1c:a1:65:05:30:ad:4a:a1:4e:16:6a:f2:9d:52:
6d:8f:33:6a:02:41:5a:41:e2:ae:44:e5:eb:ce:41:c3:8a:94:
0c:60:9f:47:58:15:8b:3f:15:60:70:88:de:13:ec:99:d8:40:
00:f6:6e:1b:b1:8b:df:b3:18:1c:ff:cb:f7:04:68:cb:7b:7e:
27:f5:3d:c5:95:a1:e9:4c:16:d8:20:28:bf:d4:86:0a:5e:ac:
31:62:6e:e0
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ8YnukWjYO3qiTPka2gwaY5MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2NDgyOTQ0NDNhZWQxNmQwNmI4NmFmMTRmNWE1ZjBhNTA4
Mzc3NGEwHhcNMjYwNjMwMTMwMTM1WhcNMjYwNzAxMTMwMTM1WjAzMTEwLwYDVQQD
EyhhZTZlZTI2MmFiODk5MjQ4ODI2MGU4ZDIzZWJhM2U5Yjc3OTBiNGFkMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA99W/6VRL3szXYH0qV5CH/7J/qYWN
e0VNy4p1nlEufhawKj3xVpdOmN74NomLU1hrRBfH2gJs3kb9F20Zjef1LkIroSfI
qqad8L6oTpc7QVTDaKAd/mQq2K8rjcYJddMjMZu5QPUVui0IaK/ek3f5hHuVQTNN
pzwfwZ/oAwmFXWe7srTiY5lyGoNQh95WBVaiGUZ/BZ+TqCzX3l7VmVIjOrIqAD41
I0JghCw0qVa1x5/SC5QilJF4oqAteG9fUcqQvON8RZSFGC7cETEksA+WBdZ6z1pT
HtHsowtXZhQwDr2rhRerSdS1D+lvk50o4KB43kJjeZw/3TWBKZoLsKETtQIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFK5u4mKriZJIgmDo0j66Ppt3kLStMB8GA1UdIwQY
MBaAFNZIKURDrtFtBrhq8U9aXwpQg3dKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDkt
ZTU3Y2M4MWY1MjMzLzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9hMC9iNTg3ZTktMzNhOS00YTg2LThjZDktZTU3Y2M4MWY1MjMz
LzEvMWtncFJFT3UwVzBHdUdyeFQxcGZDbENEZDBvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABkOoitLp
l3oOQhiE8R14u6so5KSo7W2a31q8JXOx0YH45W8VLElAZMw9a0mxn1ZqqyccgN/V
P/OGt2Ga/g5D58Uzn8f9lWSEvpIHRAkMtB+ICbOyzxuWrwRAxRQ2X/TdcEtgxk4T
TlkLzaWCjidLpcgB71ZUH8ZoamQCMeIxJuWJlSd2qdp7gfuVPCiDVQnORhDkqvBf
o+InYyfAl9pusdr+THssehyhZQUwrUqhThZq8p1SbY8zagJBWkHirkTl685Bw4qU
DGCfR1gViz8VYHCI3hPsmdhAAPZuG7GL37MYHP/L9wRoy3t+J/U9xZWh6UwW2CAo
v9SGCl6sMWJu4A==
-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:14 2026 by rpki-client