Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
File: 04nufcekvqjSach0bP59NhmNIh4.mft (raw, json)
Hash identifier: UQ4NY/59mGhdGb76ti0ejJZ3+iy4Nm5prQv8iQY6LaQ=
Subject key identifier: B7:5F:3F:18:40:D0:73:84:F7:89:D2:23:DC:96:61:A2:67:9E:A1:DD
Authority key identifier: D3:89:EE:7D:C7:A4:BE:A8:D2:69:C8:74:6C:FE:7D:36:19:8D:22:1E
Certificate issuer: /CN=d389ee7dc7a4bea8d269c8746cfe7d36198d221e
Certificate serial: 019F129C8C1EBBE43B60FC917475647D1D1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/04nufcekvqjSach0bP59NhmNIh4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
Manifest number: 01B0
Signing time: Mon 29 Jun 2026 09:01:16 +0000
Manifest this update: Mon 29 Jun 2026 09:01:16 +0000
Manifest next update: Tue 30 Jun 2026 09:01:16 +0000
Files and hashes: 1: 04nufcekvqjSach0bP59NhmNIh4.crl (hash: bP4TR4b6kfloNphSn2AZ8V0f3V76i8v9yjTsyqcM7DM=)
2: DMYjGVXF04RFwUn6UCWXk-mgrnQ.roa (hash: 1IKdEVdxinUDX4GEoCU9iDa0wsb9FYEO+VbnWoVZHRQ=)
3: uldmgPFlTuQeBt-ipePLSPYN-eI.asa (hash: kElPpLT8qkmreugOZZKYSI8vXfLFDf0CKmt+bqNFxbU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.crl
rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
rsync://rpki.ripe.net/repository/DEFAULT/04nufcekvqjSach0bP59NhmNIh4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 02:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:9c:8c:1e:bb:e4:3b:60:fc:91:74:75:64:7d:1d:1c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d389ee7dc7a4bea8d269c8746cfe7d36198d221e
Validity
Not Before: Jun 29 09:01:16 2026 GMT
Not After : Jun 30 09:01:16 2026 GMT
Subject: CN=b75f3f1840d07384f789d223dc9661a2679ea1dd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:f5:15:06:9c:5e:2c:10:f6:9b:e2:b4:2f:f1:
e3:c1:e6:2e:51:be:4c:b6:bf:1c:19:5f:81:45:86:
76:90:03:b8:1a:4f:d9:89:7e:bb:6e:49:74:7d:f4:
36:f1:ed:31:00:7a:81:bc:74:19:df:38:e0:50:07:
e6:11:09:f2:ca:41:52:9c:bb:3f:2c:83:fc:78:d9:
bb:7a:40:f4:af:f5:32:16:57:c6:2b:9a:98:4c:a0:
5f:11:dc:7b:00:02:ed:d6:0d:93:18:8e:a5:23:57:
fc:4e:b9:ee:cf:bc:97:77:3c:9e:1b:50:7e:d3:09:
11:79:78:a1:91:15:0c:19:65:9e:57:68:50:c1:f9:
23:07:0e:e3:4b:12:f8:b5:10:ff:d5:bd:b9:95:37:
7d:de:d5:a7:63:34:2e:79:a5:34:9f:93:c0:4a:af:
9b:21:95:d4:3a:6b:b9:f2:b7:4b:4f:60:ef:00:e3:
98:d5:4f:26:29:a4:a8:6a:5a:c2:e9:0e:8c:19:86:
95:1a:50:a4:f4:53:33:4a:6d:37:e9:ae:5e:c5:e0:
45:5f:33:4d:2b:84:bd:e3:3b:60:79:2e:c8:db:2b:
41:78:60:4b:d6:ba:51:7b:be:3c:b5:a6:74:9f:10:
e9:15:a8:f8:a0:f0:9d:40:1a:23:f7:df:3e:1f:f8:
05:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B7:5F:3F:18:40:D0:73:84:F7:89:D2:23:DC:96:61:A2:67:9E:A1:DD
X509v3 Authority Key Identifier:
keyid:D3:89:EE:7D:C7:A4:BE:A8:D2:69:C8:74:6C:FE:7D:36:19:8D:22:1E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/04nufcekvqjSach0bP59NhmNIh4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/338fc0-7025-49ea-a52d-21b034c2f8dc/1/04nufcekvqjSach0bP59NhmNIh4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0d:6b:4f:2f:23:8d:02:30:ba:f8:91:a0:8c:1c:19:b4:82:0b:
4d:63:78:29:25:e8:b0:e0:8e:75:1a:2a:32:96:b7:aa:6b:81:
f5:f2:c4:05:b9:32:1d:7e:ef:b3:dd:c5:37:d1:e9:eb:67:a3:
3a:ce:47:bd:5b:0b:f3:ba:f3:6d:0b:7e:28:ce:58:6d:fa:5e:
4d:84:56:7b:80:e7:de:60:d7:3f:57:a2:d7:4e:2f:89:7b:56:
9d:93:9c:e6:bc:af:28:9a:da:a1:96:27:d2:d6:32:a9:f5:6b:
62:25:ce:ec:a1:5f:53:12:3e:3e:2e:a3:60:b3:fd:ba:35:78:
df:ea:32:ce:fe:62:4d:fd:ac:cb:56:13:6c:06:ff:c2:5c:da:
9a:82:5e:e4:a7:e7:a5:01:24:57:6c:29:33:36:94:d5:f6:0b:
54:75:39:76:d0:0d:f9:60:df:ca:af:62:f7:00:40:10:ea:a0:
09:aa:b5:27:df:c0:5f:b1:03:9f:7c:5a:f6:f2:27:71:de:45:
a3:d1:8a:4c:2f:1e:5f:b8:1f:f2:1c:e8:5a:d8:a0:c9:a7:77:
e1:02:6b:bc:db:0f:b9:ac:3a:12:37:84:df:73:2a:db:75:c5:
df:d3:84:cc:a1:2c:38:6c:a9:36:c2:e1:01:e7:df:c2:85:af:
8b:ab:fb:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 10:39:22 2026 by rpki-client