Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
File: 1O219t5yQ2FIs1pZA38jNBUN2zY.mft (raw, json)
Hash identifier: UaSnc9pHHR/YawSgk5hOygxiu2m5ooGaeQIlRKFSOCc=
Subject key identifier: 97:A7:79:BF:48:7B:3D:E0:7C:90:DA:74:29:38:F8:62:3A:CE:85:D8
Authority key identifier: D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
Certificate issuer: /CN=d4edb5f6de72436148b35a59037f2334150ddb36
Certificate serial: 019EB9C66E33724B4C8D9E4CF631CA496D27
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
Manifest number: 18EA
Signing time: Fri 12 Jun 2026 03:00:49 +0000
Manifest this update: Fri 12 Jun 2026 03:00:49 +0000
Manifest next update: Sat 13 Jun 2026 03:00:49 +0000
Files and hashes: 1: 1O219t5yQ2FIs1pZA38jNBUN2zY.crl (hash: 0XlAfhJ7wWn5mDOEZncHr9rvZjt91Kh84AENiX5bGw8=)
2: RpCy1JXxo-ZI0wF9fz-fX4KJGZQ.roa (hash: 3/7dLJaax8heeK87EWODxuRiV6OLm+WDskuSJCjvPmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:c6:6e:33:72:4b:4c:8d:9e:4c:f6:31:ca:49:6d:27
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4edb5f6de72436148b35a59037f2334150ddb36
Validity
Not Before: Jun 12 03:00:49 2026 GMT
Not After : Jun 13 03:00:49 2026 GMT
Subject: CN=97a779bf487b3de07c90da742938f8623ace85d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:71:ae:dd:e6:12:22:06:bc:5d:34:40:a3:34:
3c:d1:dc:37:a0:bf:e2:21:ba:90:7d:af:54:a6:ec:
03:ac:41:cd:84:2c:0c:14:af:ba:49:d3:ab:33:0a:
df:d9:b7:27:3d:fb:5f:a3:13:5d:85:46:6e:ac:0b:
a2:fd:00:6c:28:17:13:98:ad:e2:b7:e4:df:95:8d:
8c:ef:28:5c:f4:fb:05:a1:02:54:0f:c9:72:34:e0:
d7:9d:31:ae:63:cd:c9:ec:75:4b:02:f5:36:07:1b:
30:a1:bb:4b:90:a3:99:7d:da:bb:82:7f:8b:12:00:
09:03:1e:65:ca:d0:dd:46:40:7a:cb:43:e3:b1:59:
5c:d9:7a:e7:f5:49:bc:fd:f5:bc:53:b3:e2:e3:a7:
b8:7b:ce:7c:4a:36:a4:c5:7b:d1:95:5f:d5:c5:89:
21:b2:63:1e:95:b9:34:9f:fd:b2:33:25:37:bc:77:
bc:05:2f:8d:f1:c8:91:d5:b0:a0:dd:2f:e5:6e:11:
c3:80:b8:90:3f:71:1b:54:9a:67:46:f9:94:2a:6c:
b1:cc:9f:4e:ea:3f:5c:50:59:ca:42:97:bc:e3:29:
a1:01:9a:58:98:50:97:1b:89:4b:5e:0e:72:e2:47:
27:26:26:b8:53:0a:24:02:be:28:95:1f:b1:6e:a1:
99:0d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
97:A7:79:BF:48:7B:3D:E0:7C:90:DA:74:29:38:F8:62:3A:CE:85:D8
X509v3 Authority Key Identifier:
keyid:D4:ED:B5:F6:DE:72:43:61:48:B3:5A:59:03:7F:23:34:15:0D:DB:36
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1O219t5yQ2FIs1pZA38jNBUN2zY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a8/3a5258-989d-400b-b7b7-454c93c065a0/1/1O219t5yQ2FIs1pZA38jNBUN2zY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
14:6e:d2:60:79:40:e5:7b:80:2e:26:b1:58:e6:04:1f:1d:7a:
3d:ae:65:52:2c:57:9a:75:25:70:52:e4:67:47:02:7b:d6:75:
4b:da:07:9d:28:58:ea:73:8a:04:aa:45:6a:2e:30:3c:a1:cc:
53:30:15:74:73:f5:bc:69:72:0d:6a:3e:82:6b:47:59:1e:20:
06:b3:9d:17:50:c6:2f:fe:59:e2:a7:d9:fb:b6:89:63:b1:8e:
4d:7a:53:2e:e2:32:06:ae:cf:0b:93:96:b5:8a:a8:80:50:16:
fe:33:65:0a:35:cf:be:77:c2:4c:a2:4d:ea:72:bc:0d:0e:40:
9c:33:a9:14:b0:89:82:5a:d7:6f:dc:c9:09:ed:c7:61:3d:ad:
c3:e1:4c:f7:a6:04:83:ed:04:91:ff:12:90:05:e8:a1:9e:ff:
28:3c:c6:3a:12:27:a6:df:c8:84:5d:ea:62:6f:37:35:94:79:
26:ac:88:ad:c9:cb:ba:62:35:dd:0b:78:91:97:36:c7:ae:75:
e8:16:78:9b:22:39:c3:0a:82:35:b9:53:3d:26:42:a8:81:c5:
db:39:f2:a9:a0:b0:67:62:2d:30:46:0f:99:bd:e8:98:34:99:
c9:e4:ef:53:41:75:2d:c5:bc:87:2e:1c:52:3a:3a:88:5d:2b:
15:b6:39:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 08:39:52 2026 by rpki-client