Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
File: 582m42RtyToNLUKV0esJR2xmvKY.mft (raw, json)
Hash identifier: LzkJ6AHknEH7KxARbmdQOJT8IacHY9yY0jE89ZKpYJI=
Subject key identifier: 48:E5:6D:78:FA:E4:B6:1C:E8:3E:0A:45:F0:2B:EC:B5:78:CD:9C:30
Authority key identifier: E7:CD:A6:E3:64:6D:C9:3A:0D:2D:42:95:D1:EB:09:47:6C:66:BC:A6
Certificate issuer: /CN=e7cda6e3646dc93a0d2d4295d1eb09476c66bca6
Certificate serial: 019F111BD8AABDB037F3C33359E6BD59AE5A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
Manifest number: 06AB
Signing time: Mon 29 Jun 2026 02:01:05 +0000
Manifest this update: Mon 29 Jun 2026 02:01:05 +0000
Manifest next update: Tue 30 Jun 2026 02:01:05 +0000
Files and hashes: 1: 582m42RtyToNLUKV0esJR2xmvKY.crl (hash: co6MYwuKruAqLgQNfCOvaq2iQjsg8hnyOHeN9h7RaXk=)
2: zM4gg4epclePPLRTJtVaIJWeepc.asa (hash: MRTLDlocXHNiWSSlm+nZxDJcnI87lYWJ5A0tSmJ5h6Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:11:1b:d8:aa:bd:b0:37:f3:c3:33:59:e6:bd:59:ae:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e7cda6e3646dc93a0d2d4295d1eb09476c66bca6
Validity
Not Before: Jun 29 02:01:05 2026 GMT
Not After : Jun 30 02:01:05 2026 GMT
Subject: CN=48e56d78fae4b61ce83e0a45f02becb578cd9c30
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:86:e4:59:ff:66:84:b2:07:c7:10:ee:6c:0a:
12:09:46:6c:27:be:2b:07:76:69:d0:48:77:8b:40:
73:4b:a4:e4:61:a3:59:32:b2:91:c5:62:e9:1b:d2:
32:32:81:9d:91:a3:fa:76:f6:5c:a5:c3:d9:0d:07:
06:02:b2:ca:6d:e3:0d:30:38:78:bf:4b:54:ba:48:
4b:33:d0:2e:0e:d8:14:14:c9:84:e4:7c:47:34:3f:
bf:7f:49:0f:b9:50:d5:52:2f:64:fd:ac:68:03:c8:
a8:58:3c:4a:ae:80:04:2c:c0:5b:52:03:bb:51:b4:
0b:21:af:62:66:12:10:00:de:55:e0:9b:e8:43:4c:
59:5b:f6:e7:06:3f:6d:7c:48:c8:49:6e:d3:19:02:
79:28:6b:6c:33:be:ae:70:cf:89:58:7c:81:ed:29:
23:e7:5b:90:41:90:e8:7e:e7:28:bc:86:8c:0c:ba:
f4:70:4a:de:ba:e3:e7:88:3c:6a:43:9c:35:c3:be:
81:23:5c:d0:eb:05:52:27:51:e5:4e:4b:40:a5:b0:
8c:97:bc:29:de:6c:c0:13:b9:ee:ea:77:c4:50:8d:
31:4f:d9:0f:36:d9:6e:29:ca:62:1b:08:03:3d:4f:
29:40:69:67:db:82:b4:1d:da:fe:8c:cd:4d:61:1b:
fe:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:E5:6D:78:FA:E4:B6:1C:E8:3E:0A:45:F0:2B:EC:B5:78:CD:9C:30
X509v3 Authority Key Identifier:
keyid:E7:CD:A6:E3:64:6D:C9:3A:0D:2D:42:95:D1:EB:09:47:6C:66:BC:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/582m42RtyToNLUKV0esJR2xmvKY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/3a6d28-1c43-4b8b-b713-568c407b30f7/1/582m42RtyToNLUKV0esJR2xmvKY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1d:15:61:57:cd:41:2c:4f:af:97:c3:b4:5c:88:b4:27:57:4a:
7a:3c:bc:ec:3b:e6:03:ef:31:71:f6:42:20:5c:33:a5:73:10:
59:78:18:aa:ea:5f:a7:13:94:d3:a7:1c:35:0a:71:d0:7e:40:
be:d9:02:95:fc:29:9f:44:41:7b:34:b2:02:f5:12:f8:a7:9a:
61:e6:27:31:42:a1:c7:64:01:05:2e:96:f7:c8:b3:06:85:b2:
a2:87:e4:e3:5e:33:4c:63:de:a4:ae:92:71:b0:2c:83:96:b1:
d8:31:f0:fd:70:42:e1:38:92:4b:e1:88:ec:1c:95:e9:c8:68:
66:e0:aa:f4:f9:a4:06:f7:5f:41:23:b5:e3:1e:5b:ee:fe:60:
b6:f5:17:ab:bd:92:fd:37:d4:61:ec:b0:50:64:fc:dd:57:f5:
71:1d:36:b0:8c:a6:a6:f6:c6:28:4d:f7:fe:07:15:bf:cf:bd:
73:4f:d7:a0:bc:f1:9f:33:b4:d2:cc:d5:55:06:6c:20:4e:9a:
59:68:6d:1e:0b:f5:94:82:e7:72:1e:f3:d2:7d:96:ed:f6:6d:
ec:35:13:15:a2:5e:9b:62:31:9c:13:53:a7:30:0f:47:2f:1f:
74:b8:d7:5e:79:7b:ea:58:a5:9b:81:20:ef:40:75:57:eb:87:
c0:93:ad:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 11:39:42 2026 by rpki-client