Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
File: fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft (raw, json)
Hash identifier: xp/tIMRcpyZqgMR2oU8VUz8NU8EObg3p5XWGHaNHAF4=
Subject key identifier: 1F:AB:A1:DA:0D:99:F5:A1:DA:52:05:C6:80:AC:B9:12:37:29:BC:62
Authority key identifier: 7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
Certificate issuer: /CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Certificate serial: 019EBA34AE096378BE41810B037D96711E0C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
Manifest number: 18E9
Signing time: Fri 12 Jun 2026 05:01:14 +0000
Manifest this update: Fri 12 Jun 2026 05:01:14 +0000
Manifest next update: Sat 13 Jun 2026 05:01:14 +0000
Files and hashes: 1: fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl (hash: D+I4sqUQZ+UfXnjvpUhmTqvCQPNwMVL5qkspF/6hWrI=)
2: uuyf9SL1IzQsxC4GwsHv2Aqvi6I.roa (hash: bWBF8Lzkc1fXhVOcL+v1lM3xBjFclLxIjyc/HWhj0fY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 05:01:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ba:34:ae:09:63:78:be:41:81:0b:03:7d:96:71:1e:0c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7d01a5d90dc3a836ceb6381efc7534e129f43a4c
Validity
Not Before: Jun 12 05:01:14 2026 GMT
Not After : Jun 13 05:01:14 2026 GMT
Subject: CN=1faba1da0d99f5a1da5205c680acb9123729bc62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:81:05:ff:29:e0:a2:9d:4c:ae:ad:a6:f9:c1:
6a:d7:28:1e:d4:2f:a3:fe:8b:a3:f6:cb:c9:4e:9d:
2a:88:4f:2c:f2:ed:f6:71:e1:22:b0:ff:3d:ee:bb:
af:c4:80:37:c8:c5:bc:90:15:00:0a:d2:8b:26:e1:
09:47:15:70:7d:9f:67:eb:8c:52:0b:18:7b:6a:1c:
35:85:ed:3c:58:8c:4c:c2:6b:b5:b7:1e:50:25:e8:
31:84:f0:c8:30:f1:98:9c:a1:d4:92:87:08:ea:f6:
35:d5:76:e8:84:ae:c4:67:4e:19:1f:8a:78:00:98:
6f:b4:5c:71:9b:44:3e:b4:78:0f:ee:92:61:16:1c:
a2:eb:8a:41:7f:93:28:bf:61:40:94:e7:3b:df:5e:
d1:f6:e6:5e:b5:7c:ed:20:05:be:9d:fc:3c:9c:a6:
47:39:17:c0:60:18:25:ed:72:5b:31:0b:41:81:10:
08:3d:64:7c:e5:f5:f2:e2:1c:85:7d:c7:df:30:39:
37:43:4c:60:06:86:92:ef:35:38:75:f9:e2:b4:03:
1e:8e:d0:a9:0c:b3:8f:92:ba:5a:57:30:45:24:de:
6c:55:df:90:46:21:8d:cc:d5:7f:78:7e:34:23:0c:
b0:28:04:69:b1:f8:93:65:a9:bc:b2:98:12:87:7b:
75:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:AB:A1:DA:0D:99:F5:A1:DA:52:05:C6:80:AC:B9:12:37:29:BC:62
X509v3 Authority Key Identifier:
keyid:7D:01:A5:D9:0D:C3:A8:36:CE:B6:38:1E:FC:75:34:E1:29:F4:3A:4C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fQGl2Q3DqDbOtjge_HU04Sn0Okw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/21b007-a086-4312-9d23-62f666473b21/1/fQGl2Q3DqDbOtjge_HU04Sn0Okw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:ae:f6:49:7d:81:82:e2:0a:60:ba:1c:ba:98:5f:b8:0d:45:
05:a4:5f:f4:95:0e:3d:b0:d2:c7:5e:e9:86:f4:35:16:8c:89:
87:20:60:03:db:bb:c7:0d:2a:1b:56:27:ec:f5:5b:5b:26:4d:
7b:fa:c9:4d:7f:14:26:15:4e:c7:45:ff:a8:fb:54:20:1c:10:
07:4c:ee:4f:e5:34:20:4a:ac:89:4c:47:58:41:78:12:c6:45:
2e:01:7c:84:6a:a7:a5:82:a7:75:16:8d:bc:e7:37:c6:65:cb:
c6:62:9a:ea:71:83:15:25:36:5c:0d:34:d3:e9:fa:7d:33:3c:
e2:07:f3:95:53:70:47:49:5f:2a:b5:4c:2b:78:a6:7f:29:af:
1c:28:2d:b2:a0:f5:77:00:a7:e7:61:53:6d:fb:66:3d:95:65:
9d:57:64:8b:ce:6c:29:e0:52:14:19:93:5d:fc:5d:f0:26:a6:
4b:08:80:28:55:46:ea:39:bf:13:7f:5c:f3:ee:7a:80:84:c2:
76:e6:61:f2:52:c6:d6:a6:2d:b9:e8:ed:14:01:a9:57:45:de:
4c:72:ff:89:b4:c2:cc:f2:65:d8:ea:b3:13:4c:db:19:89:1b:
13:72:9a:e0:26:47:b8:cc:4b:c3:c2:fa:af:15:77:20:4a:51:
5d:71:46:d3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 12:23:36 2026 by rpki-client