Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
File: 1873Xgl6YxiGszyB9kql67wMMqA.mft (raw, json)
Hash identifier: nA9ZeLSBA+iuC9M8AvGX6e0ytKHVOVrGsRIT4cfJrOQ=
Subject key identifier: BA:A9:33:29:25:A0:D2:35:CC:11:4A:65:F0:C8:80:33:CE:A4:F4:6A
Authority key identifier: D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
Certificate issuer: /CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Certificate serial: 019F17C23A4E626EF937684E716C5D04A3DF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
Manifest number: 07B8
Signing time: Tue 30 Jun 2026 09:00:32 +0000
Manifest this update: Tue 30 Jun 2026 09:00:32 +0000
Manifest next update: Wed 01 Jul 2026 09:00:32 +0000
Files and hashes: 1: 1873Xgl6YxiGszyB9kql67wMMqA.crl (hash: fHJUZuXRMngt+KcLhEy2igHRfJRn66xQ+RzTZlZSgOg=)
2: Lljg_xH1KTEyF8YtQpFDhU2fq9M.roa (hash: G0j8nubF5nQiwgPwwabVEZQZZTMIJxsI563KIITxMI4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 09:00:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:c2:3a:4e:62:6e:f9:37:68:4e:71:6c:5d:04:a3:df
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d7cef75e097a631886b33c81f64aa5ebbc0c32a0
Validity
Not Before: Jun 30 09:00:32 2026 GMT
Not After : Jul 1 09:00:32 2026 GMT
Subject: CN=baa9332925a0d235cc114a65f0c88033cea4f46a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b5:bb:1f:d6:86:e8:78:e6:90:c3:1b:23:f5:
82:88:7e:f8:3b:e0:19:1f:81:2d:51:26:99:09:ab:
da:1c:c5:be:be:52:36:db:ee:20:77:3c:c7:95:56:
b4:78:14:cb:df:30:97:ce:1a:e9:38:fa:62:9f:0e:
9c:da:77:74:fe:a1:f8:11:ff:88:d8:39:35:9f:4f:
be:dc:3a:78:6d:6a:4c:b4:69:1a:76:a8:e7:a4:a6:
5b:4d:a8:b6:2f:dd:67:e7:6d:a0:7c:6e:74:bb:6c:
67:b2:09:19:89:73:95:66:76:b1:b2:c3:e3:7d:ea:
80:fe:17:2b:ac:30:38:f8:d8:69:7c:4d:fd:ff:12:
2e:dc:22:01:11:ba:2a:ea:86:33:50:bf:47:d3:ac:
8a:01:ae:d8:d2:7e:d2:2a:2d:0a:c1:5f:a2:6b:24:
96:c3:67:32:e6:a3:87:48:d2:42:3c:0d:94:c1:42:
b0:cf:b8:bc:43:5a:cd:88:79:18:92:d0:84:cf:3c:
bb:de:6a:49:a0:7e:c1:0b:5e:26:33:0e:cb:0b:28:
c7:d2:6c:12:7a:b0:b5:49:f5:84:32:42:1a:ed:83:
1a:8d:b1:24:39:01:7b:24:2f:b7:10:eb:08:90:6e:
9a:01:0d:04:e7:3c:c8:5c:51:df:0d:da:3e:f4:52:
1e:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:A9:33:29:25:A0:D2:35:CC:11:4A:65:F0:C8:80:33:CE:A4:F4:6A
X509v3 Authority Key Identifier:
keyid:D7:CE:F7:5E:09:7A:63:18:86:B3:3C:81:F6:4A:A5:EB:BC:0C:32:A0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1873Xgl6YxiGszyB9kql67wMMqA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a9/f4f0d5-7e43-46be-b092-5ba501e0b370/1/1873Xgl6YxiGszyB9kql67wMMqA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
55:d0:fa:0f:4c:98:fa:90:15:4e:e0:2a:a4:14:0e:ef:21:8a:
3b:41:b8:ca:36:1f:a6:23:f3:fd:a1:ed:d0:ef:03:ea:44:57:
97:eb:c8:6f:e9:77:7a:ff:f5:2f:15:d5:20:02:78:f8:d1:38:
d3:f4:96:17:33:a0:29:0e:34:3c:50:8f:ec:22:ad:e9:b1:e5:
4f:20:f2:83:cd:2d:08:7f:3b:65:b6:32:9b:ba:d4:46:dd:59:
75:ca:f7:a6:21:09:03:eb:ee:75:d7:04:b1:f3:8b:d2:55:c4:
e1:43:84:32:b1:c5:1a:cc:96:0c:f7:7e:94:b2:2f:af:22:51:
a4:7e:33:c5:9e:92:e9:57:43:29:30:9f:43:f5:c5:eb:06:2d:
f9:21:0a:54:8b:75:0f:1e:0c:88:1e:6e:98:57:7c:91:44:4c:
1c:1b:d6:ae:b3:d1:50:4a:f5:7d:eb:cb:be:92:25:e2:c5:91:
00:13:3d:91:69:25:08:9e:16:20:a7:76:d7:e4:56:e4:d1:d3:
6b:4f:54:a8:f4:d4:7f:6b:cb:4a:13:06:c6:9d:fd:44:74:8b:
ce:ec:2a:8d:f2:7f:4c:19:bd:de:ac:43:99:5b:1a:87:9b:37:
eb:93:7b:ff:a8:f7:42:a8:fc:dd:bb:b6:a3:2d:d6:9b:60:6f:
7a:20:7e:83
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:48 2026 by rpki-client