Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
File: Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft (raw, json)
Hash identifier: IGqqHKJDpkk5ZX12ZKQV2ls9Fy8jIFtDh0iHxM9zskY=
Subject key identifier: 3D:41:0F:BC:7C:21:4F:FE:69:B3:1A:49:67:17:0F:1E:4D:E9:10:F4
Authority key identifier: 02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
Certificate issuer: /CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Certificate serial: 019EF3B633AB6A197B098D521308B629FBA8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
Manifest number: 0F7D
Signing time: Tue 23 Jun 2026 09:01:04 +0000
Manifest this update: Tue 23 Jun 2026 09:01:04 +0000
Manifest next update: Wed 24 Jun 2026 09:01:04 +0000
Files and hashes: 1: Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl (hash: zEGs/hSTI6qvVZJqzjx3D5z4YX9nrDE8XojzanMGRp0=)
2: wx4jf3r0v_RD4WGbwjNb9_66YeA.roa (hash: Yg61lLQnPGGlaDhOZEVebkyWouHjvzVXcfasCV97MNE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 24 Jun 2026 09:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:f3:b6:33:ab:6a:19:7b:09:8d:52:13:08:b6:29:fb:a8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=028fdf719d47a10033451a83384a6db68dbd5b0f
Validity
Not Before: Jun 23 09:01:04 2026 GMT
Not After : Jun 24 09:01:04 2026 GMT
Subject: CN=3d410fbc7c214ffe69b31a4967170f1e4de910f4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:64:34:37:f8:e8:14:ef:5c:8b:ef:e6:3f:fb:
e1:2d:72:ff:6e:d2:fd:8d:96:ae:e0:54:20:b2:55:
e1:07:95:0f:f4:8e:22:26:dc:fe:73:ff:c1:36:4f:
47:5a:37:a1:30:70:44:4c:3a:aa:0f:91:05:d0:c4:
04:76:5a:11:08:f0:a1:62:43:a5:45:7d:ee:5b:8c:
21:da:60:c7:90:eb:36:b1:db:17:a8:6a:55:f3:99:
9f:f0:5d:98:a0:de:46:ea:82:eb:c3:9f:06:fa:c3:
ce:79:21:60:3a:80:d3:7b:77:14:c7:7d:bd:c9:e4:
21:45:0e:70:5f:7d:40:d4:dd:1e:c3:8a:29:31:26:
77:e4:9b:46:f5:4a:2d:99:fc:c8:8a:a1:07:e8:e3:
3a:cd:d1:32:33:3a:9f:70:2a:32:2d:77:2e:36:c2:
f7:54:f5:aa:96:f9:e5:97:11:d9:14:d9:9b:bf:9c:
65:f2:f9:60:d3:13:b0:c2:0e:78:ab:d3:66:8b:4e:
73:e1:40:ba:6c:0e:10:90:5c:a6:da:40:5c:a3:6d:
92:9a:ae:5e:ba:70:34:40:49:a1:01:68:03:34:f3:
35:a7:cd:31:4f:b9:87:64:a2:31:a7:88:f2:8d:cb:
13:b9:05:1b:91:ff:fc:aa:fd:33:3c:3b:6d:8e:36:
06:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3D:41:0F:BC:7C:21:4F:FE:69:B3:1A:49:67:17:0F:1E:4D:E9:10:F4
X509v3 Authority Key Identifier:
keyid:02:8F:DF:71:9D:47:A1:00:33:45:1A:83:38:4A:6D:B6:8D:BD:5B:0F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ao_fcZ1HoQAzRRqDOEptto29Ww8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/d49d52-50b1-4948-b1f7-055a9cad8df7/1/Ao_fcZ1HoQAzRRqDOEptto29Ww8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
30:a9:d5:d1:11:ea:78:1c:2d:03:f0:63:a2:99:11:63:fd:1e:
82:eb:12:b9:0e:af:1f:4f:e3:ff:b5:21:01:f0:72:f2:97:98:
37:29:29:42:a4:4f:04:7e:21:d8:7a:d4:50:73:b3:0f:8b:18:
34:90:a7:40:a8:04:ca:65:66:0a:f3:59:7e:c1:65:46:48:1e:
c3:9f:3f:da:b5:90:26:0c:e6:d9:c5:f6:24:49:ec:56:bd:ab:
78:22:f0:71:55:b3:8e:52:c2:65:a4:93:98:00:e2:e8:38:ad:
68:02:21:10:c2:1c:f7:92:a0:c1:4b:0d:eb:58:35:cb:9c:d1:
51:e5:05:27:d5:e3:75:27:b0:80:9a:e0:85:8e:6e:12:0e:3a:
5c:71:b7:de:e0:ab:24:52:11:a1:a0:92:92:c8:0a:a3:f4:90:
ef:43:f8:26:0f:43:15:80:b1:29:77:f2:bc:b0:af:c2:f5:e3:
35:29:4c:47:1d:8e:96:36:c5:8a:43:fc:61:20:36:ef:2d:21:
84:7a:38:ea:08:8e:00:8e:47:04:a8:00:03:e3:31:ff:16:7f:
ee:e1:ce:1c:ac:76:44:6e:e1:25:31:b5:80:c3:fa:7b:39:25:
e4:15:d7:72:8c:4e:37:68:9f:07:a5:3d:7d:80:18:00:5d:e8:
d2:74:fe:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 23 15:44:45 2026 by rpki-client