Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
File: h9tx9pGbDvmO78mWSSiodRAjagM.mft (raw, json)
Hash identifier: 8olwWyoEFpRO94v++PnwjJLfW1LAv1+LvGcxLaz3F/E=
Subject key identifier: DF:FE:D4:B1:DA:68:26:34:10:EC:F9:FB:71:E2:89:FD:F3:9F:9C:9D
Authority key identifier: 87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
Certificate issuer: /CN=87db71f6919b0ef98eefc9964928a87510236a03
Certificate serial: 019F197A19D059B94F62426B7BA6E0E6C635
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
Manifest number: 0E3C
Signing time: Tue 30 Jun 2026 17:01:00 +0000
Manifest this update: Tue 30 Jun 2026 17:01:00 +0000
Manifest next update: Wed 01 Jul 2026 17:01:00 +0000
Files and hashes: 1: h9tx9pGbDvmO78mWSSiodRAjagM.crl (hash: /hUDgxIgGxMRQfKyNYZqcHsA40XAJnvZ7mo9i15F8Xw=)
2: ptikDTRhjTNxZI8dkI54eJbGFTA.roa (hash: 3SdSmJMo+FOvr1IMdnku5tDe7K6GsQTnPIBl17tgA08=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:7a:19:d0:59:b9:4f:62:42:6b:7b:a6:e0:e6:c6:35
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87db71f6919b0ef98eefc9964928a87510236a03
Validity
Not Before: Jun 30 17:01:00 2026 GMT
Not After : Jul 1 17:01:00 2026 GMT
Subject: CN=dffed4b1da68263410ecf9fb71e289fdf39f9c9d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:7c:f0:04:6b:48:26:e3:bb:b5:0e:8b:02:eb:
58:5e:ac:bc:e8:08:29:9a:a5:84:3e:75:18:7f:43:
37:50:a2:24:35:65:ee:80:c9:88:14:87:47:c4:d2:
ab:df:8c:b6:f3:76:fc:e7:80:ec:ce:c2:0c:11:a5:
dd:5d:c0:6c:90:05:98:c1:0c:77:63:6c:5d:06:ef:
c8:61:10:b4:ab:e4:ae:14:27:e0:5f:20:24:b7:cb:
d1:b6:99:3d:53:23:0f:f1:47:25:ef:a6:7c:0e:f0:
f4:a6:25:d7:d3:9c:aa:ea:1c:45:cb:bb:f1:8a:80:
c1:2a:81:d0:9c:ba:62:7f:5b:f2:28:08:a7:5c:c2:
ea:18:bb:a2:4e:2e:f0:15:85:4f:b6:8c:da:1d:60:
18:e8:f7:bd:7a:f3:17:c7:86:f8:18:3b:9a:9e:f1:
ec:be:7d:05:54:80:3a:7b:ca:d4:72:5d:bb:e2:68:
81:70:ee:e5:59:67:91:37:ea:8f:df:5b:2c:18:24:
d0:7b:fc:8b:7d:aa:10:55:4c:26:35:d0:ae:d5:9b:
69:31:5b:bf:c3:19:86:1c:a3:eb:fd:95:1f:ce:e0:
13:75:88:86:30:3d:50:db:ef:ef:2f:8b:2c:df:e2:
c3:e2:0b:f3:6e:60:89:ac:d2:9c:e3:4f:e2:dd:1e:
f7:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:FE:D4:B1:DA:68:26:34:10:EC:F9:FB:71:E2:89:FD:F3:9F:9C:9D
X509v3 Authority Key Identifier:
keyid:87:DB:71:F6:91:9B:0E:F9:8E:EF:C9:96:49:28:A8:75:10:23:6A:03
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h9tx9pGbDvmO78mWSSiodRAjagM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/ef6277-70b5-4348-a582-904a08031a9f/1/h9tx9pGbDvmO78mWSSiodRAjagM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
82:35:e4:8d:73:32:13:d9:e3:2f:35:9a:c7:a8:b2:2d:d7:d6:
57:cc:94:9a:20:24:ef:33:78:fe:76:c3:2e:75:fb:0d:7d:93:
b5:95:a1:69:4b:83:d9:62:7b:87:31:2f:93:2f:fa:c0:c9:d2:
a8:d0:3c:9c:5f:ca:04:d6:b8:8b:5b:8b:b3:96:03:4f:b8:89:
f4:da:92:63:07:f9:47:fa:c5:69:b0:4e:a5:fd:47:13:02:be:
62:a1:28:91:db:ab:19:00:e9:f5:2b:fe:0c:4e:7b:19:d2:5d:
3a:49:c1:fd:d5:38:13:7f:ec:aa:88:56:6b:cb:53:d1:6f:63:
df:23:f0:c2:43:de:33:04:c4:b7:c6:7a:04:38:c1:8b:29:ac:
75:e1:37:27:cd:99:aa:3e:cc:94:7c:c7:9f:4f:08:7a:e0:22:
22:6b:a3:8c:1a:6e:0a:38:60:bf:94:e9:97:aa:d6:03:51:14:
48:f8:38:71:27:91:3c:35:13:64:79:1c:d8:7a:67:f8:d9:c3:
d0:ee:2e:21:3e:8b:cf:83:ae:3c:9a:60:f7:07:92:cf:8b:63:
32:83:3f:45:96:0f:55:b9:7a:08:c1:2f:e1:36:c0:bf:0e:4f:
90:6f:d0:94:33:46:63:d3:97:2e:bd:65:4d:9e:cf:76:2d:4e:
bb:49:d2:53
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 23:17:10 2026 by rpki-client