Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
File: 1a8gwCbeEE2W8XrLr054fvnTAgY.mft (raw, json)
Hash identifier: N7u2EJczysa/8ZThj25lWzO0LlYnhdt06ezAeKopjD8=
Subject key identifier: B0:AC:CC:9A:53:5E:AE:06:30:11:C4:2D:23:88:B3:9A:71:38:E0:D8
Authority key identifier: D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
Certificate issuer: /CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Certificate serial: 019F1830BFF5EE2E22EB78D0B05026F4B15A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
Manifest number: 0DC7
Signing time: Tue 30 Jun 2026 11:01:15 +0000
Manifest this update: Tue 30 Jun 2026 11:01:15 +0000
Manifest next update: Wed 01 Jul 2026 11:01:15 +0000
Files and hashes: 1: 1a8gwCbeEE2W8XrLr054fvnTAgY.crl (hash: Q9TwkUQwiRsIr8UTykYh6e7k7sKD9/9yIUMCts6mSxg=)
2: bbNTfIJmhGsZ2V8DBjEahyC2lWE.roa (hash: /Eg3PukaE2y9AWWE2+6unARGBgb5uWfL7NaM72cQJhU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 11:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:30:bf:f5:ee:2e:22:eb:78:d0:b0:50:26:f4:b1:5a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d5af20c026de104d96f17acbaf4e787ef9d30206
Validity
Not Before: Jun 30 11:01:15 2026 GMT
Not After : Jul 1 11:01:15 2026 GMT
Subject: CN=b0accc9a535eae063011c42d2388b39a7138e0d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6f:61:2b:83:4e:cb:72:a9:fa:56:73:30:c5:
b6:14:86:8c:f3:7b:b6:3b:70:35:26:89:45:85:8b:
45:9d:c3:ab:ee:79:18:84:49:5a:83:95:6c:cc:1c:
85:86:7d:65:be:4f:b9:c0:05:8f:94:a8:ed:73:13:
ad:a6:47:2b:6f:8b:34:24:d9:e5:fa:f4:91:28:4c:
47:21:6e:18:42:6c:8b:70:5f:9a:4b:6a:8a:bb:c1:
1a:a1:81:f9:dd:33:58:57:e5:2a:d4:f0:16:22:90:
df:f7:a6:39:b7:d4:9c:62:99:e3:b3:f9:c7:2a:dc:
22:6d:0e:ba:75:75:a2:2c:ba:d4:0f:d7:3f:e1:3d:
d5:f5:8b:04:14:38:98:20:e8:a8:8d:61:4b:f2:61:
26:b3:fd:e4:46:e0:53:06:8f:6b:f3:58:e4:19:f3:
dc:87:91:aa:e7:c8:38:bd:c4:4c:b0:03:9a:25:5b:
74:7e:d5:ac:12:8e:68:77:a4:61:35:48:f3:fc:a1:
4b:dc:8d:43:2c:df:94:c2:67:fc:f6:48:a3:8a:74:
79:cb:dc:5d:a6:c4:e5:47:e6:ce:49:34:4d:b9:e2:
84:fc:69:d8:0c:68:a8:c4:66:e7:7c:03:17:10:97:
ed:76:f6:84:dd:1e:09:32:ef:47:22:7a:30:1d:3c:
3e:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:AC:CC:9A:53:5E:AE:06:30:11:C4:2D:23:88:B3:9A:71:38:E0:D8
X509v3 Authority Key Identifier:
keyid:D5:AF:20:C0:26:DE:10:4D:96:F1:7A:CB:AF:4E:78:7E:F9:D3:02:06
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a8gwCbeEE2W8XrLr054fvnTAgY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/09d72e-8267-4393-8363-89f1815d4c19/1/1a8gwCbeEE2W8XrLr054fvnTAgY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b8:89:ca:82:97:b9:c3:bf:62:58:a9:81:53:76:ad:bc:90:cd:
a5:16:f2:df:04:02:be:a3:f4:6c:b0:f7:79:0e:b3:37:df:b2:
eb:40:58:04:f3:5b:19:a4:9b:af:4e:00:dc:ef:d3:37:f2:b5:
a4:a4:c6:8b:80:7b:f0:84:4b:9b:0f:99:69:83:56:8f:cc:9f:
f7:8e:6e:03:fc:f4:af:30:74:24:42:55:74:b4:ba:15:8b:ae:
be:64:6f:08:9d:bc:b0:fb:41:52:81:f6:22:46:54:21:b8:17:
b8:e7:8c:cc:33:23:9e:9e:a6:d7:d4:be:98:d6:7f:74:7b:ef:
a5:5a:d5:3c:ad:0f:28:1f:28:af:7d:d9:d8:fe:8b:3b:d0:9b:
0d:2f:71:49:dc:a2:ce:a9:1d:51:ed:4a:97:3f:f1:46:9b:e0:
af:4e:d1:10:6d:64:9d:61:7f:c4:cd:0a:36:f5:77:c0:90:c4:
f4:c3:ca:a8:08:39:f0:21:3a:0f:49:c8:9d:3e:0e:60:77:85:
69:3a:69:7c:95:7d:2c:35:8a:ec:f0:4e:3a:78:cd:3d:43:1b:
af:d7:d0:bf:91:69:26:1a:61:0c:1d:a3:fd:21:12:cb:6f:ac:
04:c9:83:6b:a2:3c:c3:83:5e:dc:52:9a:65:4f:30:d9:e0:58:
20:f2:42:97
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:17:25 2026 by rpki-client