Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
File: Dj8xyerObwpezNuN8rAcc1FWhoY.mft (raw, json)
Hash identifier: wBVVdz5XTXfqiHFYov5fr0xg9uKtCpyDu15jXi2QZ/M=
Subject key identifier: 31:9A:B6:2E:BB:F6:FF:E8:20:57:F0:77:3B:31:AD:BB:D2:63:6A:D5
Authority key identifier: 0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
Certificate issuer: /CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Certificate serial: 019EB98F035559B9F828DE847A12F837D36A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
Manifest number: 1922
Signing time: Fri 12 Jun 2026 02:00:17 +0000
Manifest this update: Fri 12 Jun 2026 02:00:17 +0000
Manifest next update: Sat 13 Jun 2026 02:00:17 +0000
Files and hashes: 1: C4F5FfMfgWqyacqGzJ3BIqWeq0I.roa (hash: AVJL10DYaSQMbWBrbtscpA6ZeIDEl5faz3P30tjrXbc=)
2: Dj8xyerObwpezNuN8rAcc1FWhoY.crl (hash: Nd45bzJ5S4PcaBIDKtAkxJctyNuk73ktWFJJ08FNw1o=)
3: H_7ICe9bA6bKL6KxaXlnbRtE9DQ.roa (hash: myn2XXBsyfDvjK8OtF68llJ02gjDW6IloTyqRTy6l4w=)
4: Hs51wq2_SIQJ1nds1uh8F6Dx3ik.roa (hash: qxptTNT2o/4UgSRP/kpcf65j1wxXKH/EWbmmjxAt01o=)
5: P36bForyKz3A1xYxUt5uRvnbjGo.roa (hash: CVAU2pcmHNPpR0Ea2g62GxYoWi/yJ4n8I1Gjfyzzm7o=)
6: kTAGdAP94XB_eZK0C7vAHDqzJI8.roa (hash: CuJkjxQNxfp3wO54mRyTZ1oYxOazwRwfQjI9X+1M5ho=)
7: r_euWEHWB_wzU16rSDnkg8NIiGM.roa (hash: 12QG/5iTtnjlTjpFN6Uc829CvAhr4LDM2fjYVha8AqA=)
8: uZHn0r02l2agjVRMRfZ3xICbMLw.roa (hash: YR/6cl0OhmlwCiQwg5TQ7bSWNguLPLl/GP2GOc23T+k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 22:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:03:55:59:b9:f8:28:de:84:7a:12:f8:37:d3:6a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0e3f31c9eace6f0a5eccdb8df2b01c7351568686
Validity
Not Before: Jun 12 02:00:17 2026 GMT
Not After : Jun 13 02:00:17 2026 GMT
Subject: CN=319ab62ebbf6ffe82057f0773b31adbbd2636ad5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:5f:16:a5:47:52:50:b1:af:d4:b1:63:3d:9a:
93:bd:1e:7b:06:84:6a:55:de:4f:6f:53:05:c3:86:
6c:95:b1:ec:d5:f6:02:c7:8b:c4:f4:48:08:ae:93:
fb:32:80:b2:18:b0:31:50:c2:88:f2:32:ef:37:26:
e8:27:89:7b:bd:5b:a2:d5:e0:b3:41:7d:16:f6:da:
64:56:e4:57:73:fc:24:ce:b5:90:8d:0b:8b:01:13:
ab:22:f7:ca:da:1d:ec:65:eb:11:4d:fa:e3:a7:af:
4a:01:60:f3:d0:2a:47:f2:d9:64:9e:17:d0:53:f1:
c7:42:ab:93:02:41:b7:e5:27:a5:f5:a5:b2:15:db:
f3:ed:32:d7:b9:c6:ff:33:a2:01:90:ea:db:c6:d4:
20:3b:1f:ec:43:b2:d5:c7:d6:d9:44:a6:7a:5d:8d:
db:c1:b8:e2:92:61:ce:f5:41:cf:f3:e5:c8:bd:6a:
9b:f1:1f:61:65:0c:d5:64:23:98:d3:ec:ae:ae:53:
e7:81:d8:d4:4e:c5:31:3a:43:ff:fc:86:40:24:63:
fd:cb:d9:bd:bd:97:de:6c:ad:16:bc:b6:63:78:8c:
7d:66:70:02:2c:9b:41:4c:99:eb:8a:f6:b1:18:eb:
ca:97:9b:69:0a:6f:7e:06:5a:7d:bd:92:bb:09:a2:
a9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
31:9A:B6:2E:BB:F6:FF:E8:20:57:F0:77:3B:31:AD:BB:D2:63:6A:D5
X509v3 Authority Key Identifier:
keyid:0E:3F:31:C9:EA:CE:6F:0A:5E:CC:DB:8D:F2:B0:1C:73:51:56:86:86
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Dj8xyerObwpezNuN8rAcc1FWhoY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/a6dda1-1b87-4ec3-938f-dd5ddd05db0b/1/Dj8xyerObwpezNuN8rAcc1FWhoY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:94:c9:c3:5e:d1:d4:ad:fa:60:a8:74:0d:d1:61:b2:0b:03:
61:ae:c0:96:9a:bc:ed:29:19:c6:43:94:60:71:3a:f6:23:2a:
03:f7:b8:a1:fe:c0:cb:f1:04:cb:91:21:0b:4a:2d:9b:4e:b1:
cb:f7:d9:95:e0:fa:8d:34:85:76:ca:8e:fe:46:8b:3a:7d:25:
c4:77:78:62:71:ed:4d:1d:0d:0d:24:55:80:84:d4:72:3f:a2:
f6:d9:f6:6b:31:e4:21:ac:90:c7:57:9a:c8:70:b0:57:40:4e:
a3:e0:1e:01:c5:e9:4f:2f:cb:e4:a6:57:89:19:52:0f:17:15:
bd:65:89:25:b1:d8:e7:89:89:6d:05:af:30:fc:3f:ab:00:da:
36:19:ea:e7:b1:44:7e:4c:ab:fc:0c:35:3f:a7:8b:03:49:98:
38:03:84:e5:ea:58:ed:4c:dc:59:30:63:23:2c:9c:af:b2:9b:
ed:df:63:56:4e:45:c2:d8:50:0f:de:76:be:e7:e5:5f:36:c2:
b8:2a:c3:8a:4b:55:f0:7e:48:49:c8:64:89:3a:bc:a1:59:0b:
bf:80:cc:52:c1:5f:e4:3d:79:02:7a:f8:ef:8e:e5:e9:2e:4e:
15:fb:d4:0f:8c:75:32:f8:2b:b5:5d:ea:6f:ed:00:36:fe:13:
b3:ef:6a:9d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 06:51:13 2026 by rpki-client