Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
File: 1-TmwPxKU69NaOxXWldfpH4y0H6A.mft (raw, json)
Hash identifier: qnCYqY5S/bh0ztXwEfNvIhr6x2lxl0KtrAcHzbvcjuI=
Subject key identifier: 68:46:DB:EE:B9:A1:23:59:66:C8:DF:65:87:84:E2:9C:3A:A5:65:64
Authority key identifier: F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
Certificate issuer: /CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Certificate serial: 019F18D68016E1238E47808550CEE3BC154A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
Manifest number: 15D4
Signing time: Tue 30 Jun 2026 14:02:18 +0000
Manifest this update: Tue 30 Jun 2026 14:02:18 +0000
Manifest next update: Wed 01 Jul 2026 14:02:18 +0000
Files and hashes: 1: 1-TmwPxKU69NaOxXWldfpH4y0H6A.crl (hash: ZlQDWgbA9EUc9sWBpCRZTvI236kjAmkemjGhOx95dZQ=)
2: fBLAHwUkRrn6HYBRnTV7FYQGNDQ.roa (hash: 2J5IIevOI4AOjVlKsCvjgqwg6VuZoErPwilBziOfEkw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:02:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:d6:80:16:e1:23:8e:47:80:85:50:ce:e3:bc:15:4a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=f939b03f1294ebd35a3b15d695d7e91f8cb41fa0
Validity
Not Before: Jun 30 14:02:18 2026 GMT
Not After : Jul 1 14:02:18 2026 GMT
Subject: CN=6846dbeeb9a1235966c8df658784e29c3aa56564
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:42:32:b8:9c:b4:93:ca:35:80:89:62:94:1c:
18:75:f4:50:7a:24:64:c6:39:4e:19:1e:a8:6c:f5:
03:c3:8c:5b:c5:1e:27:90:47:38:12:6e:88:4c:bd:
81:bc:eb:b5:d7:8a:72:f3:f7:8f:92:b5:ee:1d:a8:
d5:e7:01:75:42:8e:9e:b1:1e:90:10:8b:ed:f2:8a:
b6:a1:10:47:b1:66:72:38:a2:aa:f5:43:84:0f:3e:
02:53:ef:72:ea:b5:39:06:29:34:bc:f4:fe:62:41:
0a:a6:3d:96:6b:1a:19:c1:6d:5b:5b:dc:c7:f0:0c:
d2:5e:37:d9:78:2d:18:e5:48:f7:a8:bc:6c:00:8a:
78:f9:87:2b:1d:05:a4:ee:e6:32:cb:b1:ba:53:ed:
b1:7d:a7:bc:c3:e1:50:1c:73:29:d0:c0:d7:df:c0:
af:f3:28:63:1a:72:0a:a4:4e:94:c5:06:3e:6f:2d:
af:02:8b:5e:a2:5c:2b:44:13:96:6f:cf:a6:6d:20:
69:4b:45:c5:17:53:93:b0:70:c3:68:5f:eb:11:f9:
ca:56:88:36:a7:94:db:a2:2a:c6:d0:00:87:cc:67:
1b:20:a0:a3:7c:b1:63:7f:69:64:e2:ba:2d:b2:b0:
fb:43:ff:cf:fd:f5:52:82:61:55:d0:c1:14:95:47:
46:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:46:DB:EE:B9:A1:23:59:66:C8:DF:65:87:84:E2:9C:3A:A5:65:64
X509v3 Authority Key Identifier:
keyid:F9:39:B0:3F:12:94:EB:D3:5A:3B:15:D6:95:D7:E9:1F:8C:B4:1F:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-TmwPxKU69NaOxXWldfpH4y0H6A.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/0c9de8-cef2-4d8d-a920-76594a19177c/1/1-TmwPxKU69NaOxXWldfpH4y0H6A.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
95:dc:35:23:75:c0:73:d0:da:51:e9:0f:51:3e:e3:84:1b:ca:
6f:93:c6:bb:f4:4f:6a:18:54:a5:c8:2e:a5:5b:38:01:81:27:
0d:b8:a6:89:9d:7d:55:6a:44:e1:00:5c:26:66:67:82:9c:c8:
73:5a:eb:2e:24:10:ff:b3:f7:a5:6c:0d:24:7a:44:f2:42:64:
40:ec:14:84:a8:ee:fc:64:c5:9d:cf:b2:29:31:ed:d0:3b:00:
06:80:1c:59:ef:e2:3f:73:87:be:ec:10:13:f7:7d:d1:5b:4a:
5f:2a:75:40:86:c8:c5:e8:2d:f7:39:9c:7e:8e:76:36:6c:89:
ce:f6:b5:17:1d:4d:65:d9:b6:ae:34:f9:f8:35:4b:9e:c4:da:
2e:df:a3:bd:82:a0:4a:57:2f:56:c5:e4:61:18:ac:d9:93:85:
15:13:ad:06:f1:61:b3:73:5a:c8:c7:fa:2f:c6:f5:4a:ac:82:
a0:85:46:58:96:51:2a:35:d8:51:5e:21:f4:63:f9:f3:d8:d7:
e9:52:30:c3:7a:51:1d:8d:1c:e0:cc:b9:e8:0f:ab:d8:1c:f9:
60:0c:9e:0c:4f:5c:ad:ba:cd:dc:d0:ba:e3:48:82:d7:1f:d7:
4f:d0:a6:f3:9a:f6:ce:4a:cf:46:5b:37:07:e7:28:da:38:c4:
ba:f9:ce:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:23 2026 by rpki-client