Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
File: 1LkIqddLShCqH0wOiu1qhKO3kAU.mft (raw, json)
Hash identifier: X53YkEiXJ1EgVpmK3iRMjwIqXoT5hFm6OMjosXJSU8s=
Subject key identifier: 1F:68:6C:E4:05:56:A0:15:1F:7D:E5:AB:D5:A7:63:A2:B5:62:2C:D7
Authority key identifier: D4:B9:08:A9:D7:4B:4A:10:AA:1F:4C:0E:8A:ED:6A:84:A3:B7:90:05
Certificate issuer: /CN=d4b908a9d74b4a10aa1f4c0e8aed6a84a3b79005
Certificate serial: 019EFD5FC3BA16232D9FB81C18864231CF76
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1LkIqddLShCqH0wOiu1qhKO3kAU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
Manifest number: 010C
Signing time: Thu 25 Jun 2026 06:02:52 +0000
Manifest this update: Thu 25 Jun 2026 06:02:52 +0000
Manifest next update: Fri 26 Jun 2026 06:02:52 +0000
Files and hashes: 1: 1LkIqddLShCqH0wOiu1qhKO3kAU.crl (hash: GdyA/strRxPnyL3jfInFHecc451E53rGA9sgFm0IvP8=)
2: FEgeYcFLPGsn_DF04vy60HLH3eU.roa (hash: mvXQQ+TxCYuDnGKabkqj9L+d+yyQb/h/Oz4Zigg1PAE=)
3: oMAU4cDFxFwhA1NEpG0dXZO6zCQ.asa (hash: WY020cbiNFXtPn2WDWywnrSUq7C1vkRuGv5i2lQyac4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.crl
rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
rsync://rpki.ripe.net/repository/DEFAULT/1LkIqddLShCqH0wOiu1qhKO3kAU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 25 Jun 2026 23:00:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:fd:5f:c3:ba:16:23:2d:9f:b8:1c:18:86:42:31:cf:76
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4b908a9d74b4a10aa1f4c0e8aed6a84a3b79005
Validity
Not Before: Jun 25 06:02:52 2026 GMT
Not After : Jun 26 06:02:52 2026 GMT
Subject: CN=1f686ce40556a0151f7de5abd5a763a2b5622cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:9b:2d:f4:d0:c3:cf:17:b9:76:88:45:eb:d4:
87:c2:cd:9e:ac:53:3f:fa:68:b9:ce:32:4d:3b:fe:
1e:2a:7e:57:82:10:10:2e:2f:00:56:c5:be:33:fb:
b9:2c:de:d0:94:42:d5:c3:b5:81:7e:9d:33:4f:a7:
8f:57:c2:44:43:a3:2d:f0:74:60:54:da:5c:ea:e0:
39:4b:9f:e6:2d:5f:2a:af:1e:f1:84:b3:42:e3:86:
5c:f0:cd:b5:cb:14:55:5c:82:97:c7:de:8e:0b:15:
9a:92:dd:6e:6f:64:37:67:ea:14:fa:41:92:6e:c5:
27:31:42:b4:71:d5:6c:c7:e6:1f:f0:85:b2:62:46:
1b:0d:9d:77:cd:ae:ce:55:31:0f:52:8e:28:04:4e:
e7:10:ad:08:de:93:15:ac:b1:71:12:56:1e:20:b8:
42:df:20:35:0f:4c:f9:ff:dc:1f:c3:ff:6f:e9:61:
c0:1c:83:88:07:3a:4a:0a:67:fd:19:12:fe:eb:79:
b7:9b:9d:b7:64:fa:0d:76:92:15:f4:bf:cc:67:24:
e9:f3:c8:ba:e7:c6:76:31:92:a2:6e:f5:6e:d5:e0:
83:3f:49:a2:14:9c:3b:1c:ec:b7:95:90:0b:6f:18:
17:49:1d:7d:42:67:7a:80:ad:a3:2f:75:d9:5f:fb:
64:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:68:6C:E4:05:56:A0:15:1F:7D:E5:AB:D5:A7:63:A2:B5:62:2C:D7
X509v3 Authority Key Identifier:
keyid:D4:B9:08:A9:D7:4B:4A:10:AA:1F:4C:0E:8A:ED:6A:84:A3:B7:90:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1LkIqddLShCqH0wOiu1qhKO3kAU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/98e249-797a-48df-a69a-1275efb8b055/1/1LkIqddLShCqH0wOiu1qhKO3kAU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:ec:e4:2d:3e:ca:16:e7:b5:34:94:8c:55:6a:97:28:65:9f:
9d:94:b4:29:e0:2a:04:e2:7a:52:7d:93:73:38:ac:45:4c:b8:
03:5b:85:12:cd:81:0a:9c:f7:de:73:7b:36:f9:f1:e9:0f:ee:
39:75:fa:4a:33:1b:54:a3:2d:db:f3:45:9d:07:e9:6e:1e:37:
fd:c6:a3:23:05:2d:24:f1:9f:b5:a8:93:14:59:fd:a6:56:f5:
a1:1a:1f:62:e3:e7:16:95:5b:7d:c0:db:20:52:25:4b:99:73:
f2:6f:04:00:a8:f7:0f:52:1e:32:0a:b2:96:35:e3:0d:e8:91:
c0:3e:c9:a1:49:7c:d3:d5:b6:6d:10:66:f0:fd:fb:a1:2b:aa:
13:e1:9c:ee:7f:c4:36:e0:83:b0:3a:34:8c:b7:28:c6:d6:0b:
b8:56:8c:59:7a:04:f4:b1:10:cc:1e:a8:c4:83:a8:4f:f6:3a:
22:89:d1:c5:2c:74:56:71:9a:74:5f:7a:a3:53:96:8b:a5:17:
e9:64:98:94:0d:dd:29:5b:5f:b6:a0:2d:15:6c:0d:57:8b:6a:
a7:96:0d:a7:91:a1:11:da:e0:15:ce:05:08:3f:4f:11:59:be:
61:80:58:40:2a:13:21:a3:b9:00:c2:93:eb:67:4c:ca:41:86:
e9:4a:da:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 25 09:40:45 2026 by rpki-client