Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
File: 2GucF3igUp7n4jIAPL5cmTw2_ds.mft (raw, json)
Hash identifier: fiosMIigU5fF6EQC+SKVuTSiew+kyqhiF8b91tY5tGg=
Subject key identifier: 68:40:A8:A7:DA:77:F1:3A:B9:4F:C9:5A:8B:B9:E3:57:DC:B3:9A:5A
Authority key identifier: D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
Certificate issuer: /CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Certificate serial: 019EB958481FCB3D44A868BFE743A91C8172
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
Manifest number: 06B7
Signing time: Fri 12 Jun 2026 01:00:31 +0000
Manifest this update: Fri 12 Jun 2026 01:00:31 +0000
Manifest next update: Sat 13 Jun 2026 01:00:31 +0000
Files and hashes: 1: 2GucF3igUp7n4jIAPL5cmTw2_ds.crl (hash: vTEXJP1qPVT71oQ2e8y/qmP1JvEYIrvwl3ApX5SjZLQ=)
2: so3uet9HxmTT1e6-Xaeu7Xu47R4.roa (hash: YS3OlsV7nqbX92XpohfbsDi48e2F2cYz3EHfcdxmOmQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 13 Jun 2026 01:00:31 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:58:48:1f:cb:3d:44:a8:68:bf:e7:43:a9:1c:81:72
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d86b9c1778a0529ee7e232003cbe5c993c36fddb
Validity
Not Before: Jun 12 01:00:31 2026 GMT
Not After : Jun 13 01:00:31 2026 GMT
Subject: CN=6840a8a7da77f13ab94fc95a8bb9e357dcb39a5a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:70:5b:16:5d:99:43:4d:7a:2d:3f:0a:de:7b:
bc:3a:63:9b:d6:80:17:f8:8e:75:5d:47:26:71:94:
78:8e:bb:e2:0c:10:cf:71:84:8d:ec:fd:3f:3e:fa:
a2:ab:f1:0d:20:98:d2:d2:f6:c1:a7:2d:be:c9:43:
89:6c:fb:25:ba:5a:54:c1:f3:68:9f:68:bc:73:41:
19:6c:b8:85:15:27:6f:a9:b6:a4:5d:d2:34:30:08:
10:88:2f:b9:e6:fa:12:2a:ae:56:a8:54:38:50:a6:
80:54:4c:73:ce:6a:c9:92:58:9c:d9:d1:4e:18:0d:
ed:4a:d1:c1:50:fa:03:65:1d:7d:84:b6:f4:18:39:
12:97:31:22:73:50:59:7e:46:a4:c1:af:b6:64:90:
d9:68:e6:05:ad:ba:7b:1d:49:86:27:ba:73:1b:5e:
68:24:5c:69:e9:ad:1f:83:3f:84:49:81:83:4c:3a:
68:a3:bf:70:e6:b5:da:49:45:e7:38:41:5e:b2:16:
78:a0:29:ba:3b:24:7c:e9:4c:87:94:7f:aa:db:8a:
4a:0b:6e:e5:ed:68:c1:cc:72:b6:fd:64:4d:e5:bc:
db:47:cd:e5:68:6a:2a:45:0e:99:bc:0b:73:48:15:
67:93:bb:7a:79:df:fa:9b:c8:9d:1a:2a:bb:b5:c8:
5a:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:40:A8:A7:DA:77:F1:3A:B9:4F:C9:5A:8B:B9:E3:57:DC:B3:9A:5A
X509v3 Authority Key Identifier:
keyid:D8:6B:9C:17:78:A0:52:9E:E7:E2:32:00:3C:BE:5C:99:3C:36:FD:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2GucF3igUp7n4jIAPL5cmTw2_ds.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/970f9a-9480-4fdd-a4f4-a80a95e5a099/1/2GucF3igUp7n4jIAPL5cmTw2_ds.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
19:29:61:0d:52:e6:4c:f1:6f:fa:99:7a:46:ff:42:58:aa:ba:
98:64:28:95:ee:f8:15:5e:42:0b:96:36:9f:dc:f1:5f:16:16:
0b:b5:3b:ad:39:f1:30:1e:97:28:a2:2b:6e:5f:d0:91:18:35:
70:cf:e9:97:eb:d6:70:fa:16:02:66:7c:86:c3:41:37:7d:fa:
b2:7c:2a:c8:51:30:10:27:00:ec:46:43:2c:ca:4e:30:aa:15:
94:38:a9:a6:35:45:0e:7b:b5:ae:12:f9:7e:e8:71:59:eb:96:
95:09:b1:41:d6:0d:c2:c7:fa:34:a4:d0:a7:ed:41:c0:ed:15:
df:12:30:5e:21:a1:12:e0:ad:d3:48:9b:c8:1e:62:de:3f:88:
e5:fe:61:b3:e8:cf:33:da:9d:23:1f:1f:c2:c2:e6:66:25:13:
1b:82:ca:cc:50:1a:e1:7d:cb:f0:b0:95:b1:47:53:a1:7d:ba:
aa:fe:fc:8f:85:4a:0e:0c:6d:54:9f:51:66:b3:b9:bb:f4:65:
e3:8b:17:e2:ff:01:7e:23:d8:be:68:d5:85:7e:86:cf:c9:0f:
dc:2d:fe:2b:e2:50:6d:a1:8e:ae:96:f2:4f:e5:b4:3b:5a:bb:
9a:42:2d:d7:e1:1b:f7:11:70:03:5f:98:f2:f2:80:85:3f:81:
7d:55:48:02
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 09:53:07 2026 by rpki-client