Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
File: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft (raw, json)
Hash identifier: FGvFme5yCXDjPOU5qRHRTACVOgUQUzVX0zaeoLulFyg=
Subject key identifier: 1E:DC:E3:C8:30:CE:36:1D:AE:41:DC:74:66:A9:F1:8D:DC:06:80:B8
Authority key identifier: FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B
Certificate issuer: /CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b
Certificate serial: 019EEDB482DCD8B16117F94084780DF38AD7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
Manifest number: 037C
Signing time: Mon 22 Jun 2026 05:01:30 +0000
Manifest this update: Mon 22 Jun 2026 05:01:30 +0000
Manifest next update: Tue 23 Jun 2026 05:01:30 +0000
Files and hashes: 1: 1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl (hash: 6UK6sXad69iqG1JbF9kO0ie5TUA7zk/QS/rXsLqO2hI=)
2: FKy4QquWDiXsB6434vLtVQiZ1BI.roa (hash: E7KgcSUkFp282kfhM/A9rdhpcSBu+wYieQbkPSRtk8I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl
rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 05:00:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ed:b4:82:dc:d8:b1:61:17:f9:40:84:78:0d:f3:8a:d7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fa14e8153cd3f91c33397f9b7df91bf173c4d16b
Validity
Not Before: Jun 22 05:01:30 2026 GMT
Not After : Jun 23 05:01:30 2026 GMT
Subject: CN=1edce3c830ce361dae41dc7466a9f18ddc0680b8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:f2:01:57:ca:a7:3a:68:b5:4e:03:e4:d9:b7:
8a:ef:81:03:be:08:07:37:8e:29:0f:58:3b:8f:f9:
ea:73:f4:0f:ef:04:53:fa:c4:4a:59:b0:c7:82:c7:
af:5f:da:d7:92:59:37:08:b7:dc:f6:2b:7e:01:d8:
2e:5c:73:2e:89:0e:e8:ff:bd:b7:73:12:36:93:29:
2e:d9:ac:9a:aa:72:60:3c:2a:5c:ef:14:e0:dd:df:
40:c8:34:20:4b:49:1d:74:c7:7c:5f:15:94:5b:04:
98:3b:60:8a:fa:31:b9:6b:da:41:e3:45:be:b8:a2:
c0:1b:af:93:02:a6:d2:fa:bc:bb:81:fa:7b:9d:b2:
2b:51:b0:08:db:3e:4e:34:da:c4:9b:14:2b:61:95:
72:24:9d:dc:83:cd:0f:62:e6:05:da:c9:97:85:f7:
05:07:5b:49:e1:73:1e:5c:72:f0:d0:7d:2b:27:a6:
89:d2:58:8e:a5:2a:5f:cf:e2:3a:6a:93:e3:cd:21:
a8:f1:46:aa:5a:86:b5:d7:3d:71:32:d9:1d:a1:8b:
be:91:47:25:48:0e:62:37:30:98:fe:58:ae:4d:1c:
9e:e8:d9:cf:6b:45:c8:3e:e9:76:12:99:5a:5c:8f:
60:3a:d4:9b:cc:fa:b7:07:0e:cf:36:58:ff:90:1c:
fa:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:DC:E3:C8:30:CE:36:1D:AE:41:DC:74:66:A9:F1:8D:DC:06:80:B8
X509v3 Authority Key Identifier:
keyid:FA:14:E8:15:3C:D3:F9:1C:33:39:7F:9B:7D:F9:1B:F1:73:C4:D1:6B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-hToFTzT-RwzOX-bffkb8XPE0Ws.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/240780-8110-45d7-bd73-fdfd2d72b541/1/1-hToFTzT-RwzOX-bffkb8XPE0Ws.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:ea:f9:bb:e8:21:6a:ae:6a:01:06:cf:41:c8:76:4a:b9:4c:
c4:fb:00:0e:bc:46:73:9a:43:18:34:29:65:69:71:14:25:32:
5a:16:33:99:9f:4e:b7:fa:45:d4:a5:dd:a1:d9:a1:b7:7e:00:
f1:97:fd:33:e7:a3:10:ae:4d:72:8d:a0:69:0c:d9:8a:5e:72:
b9:00:eb:93:a7:f4:26:5e:27:c8:3c:00:fb:e6:85:ce:ab:47:
13:c3:17:14:a2:fe:3e:52:38:08:41:9f:13:f3:99:6f:6c:d9:
bf:4f:cf:e6:70:d9:85:c1:16:b4:50:5f:5d:d4:13:2b:84:51:
65:19:40:c8:c4:e0:38:91:4c:fc:99:ea:7d:6a:99:83:a2:42:
37:82:7e:1a:d9:db:54:51:1b:24:9e:de:24:1e:89:53:31:1c:
a4:dd:72:b9:b2:57:1d:a3:4c:b5:50:e8:c8:74:f9:ef:6b:b8:
d3:f4:04:10:96:7d:a0:51:fd:29:26:ad:5f:fd:25:00:2b:60:
fb:59:45:ea:a4:45:07:6d:87:0a:ba:65:45:a9:67:cc:16:67:
c1:ee:ab:df:da:9f:ee:3e:70:f9:c4:a8:1a:f9:23:0b:c5:41:
1e:19:a6:d5:fb:26:00:e3:ff:93:ee:56:fd:ff:05:fe:87:14:
21:a0:1d:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 15:23:07 2026 by rpki-client