Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
File: AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft (raw, json)
Hash identifier: qhJPl5TC/bd7nTC8EKiPwLFcPywRI2omnfeYDCC0yhE=
Subject key identifier: D0:69:B8:00:CB:66:88:5B:AD:39:3A:9E:B8:BA:CB:26:C0:6F:19:E9
Authority key identifier: 01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
Certificate issuer: /CN=011d88246ab57e204dea51e9243c67252dcba585
Certificate serial: 019F190D5383E4CFEDAA33857F76E8B4ECB0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
Manifest number: 0DD1
Signing time: Tue 30 Jun 2026 15:02:11 +0000
Manifest this update: Tue 30 Jun 2026 15:02:11 +0000
Manifest next update: Wed 01 Jul 2026 15:02:11 +0000
Files and hashes: 1: AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl (hash: tbyCVw6LZU2i7YmNcJG9KwwxnqwY7EbFXGirQ9ImFlc=)
2: EQLn3HW1S_EC8AUyKNf8y-4dMRc.roa (hash: 8AWgdnyTdQJ3pPK3imIR1EnV54K6sHT0kGjtuqhN4wc=)
3: Jjp2KFwtMPxSLsSW4d1b-JvojqQ.roa (hash: GDfbVOyE0Py9w2hVGKPYN/f02RSF/cLpQ/kkLYZ8PZc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0d:53:83:e4:cf:ed:aa:33:85:7f:76:e8:b4:ec:b0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=011d88246ab57e204dea51e9243c67252dcba585
Validity
Not Before: Jun 30 15:02:11 2026 GMT
Not After : Jul 1 15:02:11 2026 GMT
Subject: CN=d069b800cb66885bad393a9eb8bacb26c06f19e9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8b:8e:cf:a8:67:49:33:ae:af:82:02:90:a5:ad:
df:a8:79:0e:7b:1c:4b:f6:a9:f6:06:37:10:d4:1c:
72:5e:78:fb:0c:56:52:8d:d4:d5:b8:8f:c1:9b:6f:
38:c6:90:b1:fe:4a:90:e9:aa:06:66:32:02:27:d4:
26:19:a6:4d:5b:5e:f9:d9:5f:eb:1b:0d:38:71:5b:
1d:7c:c1:fb:0b:7c:6f:6c:af:51:61:d1:3a:60:10:
84:96:4f:b4:f9:a8:42:ef:b9:cc:85:49:36:30:3b:
ce:39:45:74:0e:a2:07:5a:82:e6:25:ad:fe:f5:29:
1a:18:65:9f:da:97:f9:07:52:f8:f0:7c:6b:d9:02:
04:83:9b:0a:d6:ed:b1:47:81:6a:59:aa:a5:5a:e4:
88:d9:67:1c:08:81:2b:b2:e1:8b:c1:8a:99:40:85:
8c:2f:2c:66:5d:fa:06:e5:97:42:fd:81:25:db:36:
15:6b:34:21:7d:17:82:3b:71:53:95:7f:d8:5a:73:
83:6d:ae:04:70:b7:ce:ab:02:9c:d9:7e:cc:b4:bf:
1d:26:4f:64:62:73:2e:67:be:43:c1:67:97:99:9e:
13:e3:7d:ea:ff:17:44:91:23:ee:2e:37:e8:08:3e:
75:50:35:be:8f:60:1c:71:02:45:99:85:81:f6:06:
51:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D0:69:B8:00:CB:66:88:5B:AD:39:3A:9E:B8:BA:CB:26:C0:6F:19:E9
X509v3 Authority Key Identifier:
keyid:01:1D:88:24:6A:B5:7E:20:4D:EA:51:E9:24:3C:67:25:2D:CB:A5:85
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AR2IJGq1fiBN6lHpJDxnJS3LpYU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/cd9976-2cd2-466f-abe7-008a80f6ff11/1/AR2IJGq1fiBN6lHpJDxnJS3LpYU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
01:9f:cf:76:3a:6b:b7:92:33:f6:f4:d8:97:09:53:1d:2f:cd:
82:46:a2:46:4e:cb:75:f2:dd:08:42:79:55:09:8d:49:f9:62:
41:ba:6f:7d:1b:19:84:c8:29:92:11:aa:33:0f:2e:e5:1a:1d:
0f:75:a2:c1:7a:3c:ca:c1:01:0b:d2:a9:67:4a:a6:11:2b:40:
d0:c5:e3:23:9d:e3:0c:e8:79:75:5b:a8:fd:f6:ad:16:55:aa:
e3:c0:5d:8c:1d:92:eb:7d:f2:81:d9:b9:1b:8c:6d:32:f9:08:
0f:b3:1a:26:d7:68:91:6e:22:e4:e7:0f:6f:9e:90:82:63:ed:
48:e2:78:a7:2f:cd:d2:e2:bf:2f:2f:7d:77:04:4e:a2:0b:a9:
13:49:8c:8b:17:cf:7c:d2:ab:a2:8e:0a:e2:4c:ba:f3:5d:63:
fa:f0:25:2e:ae:c4:8f:d4:99:56:65:19:05:9e:b6:40:e1:a8:
11:d3:ab:92:bc:a1:52:03:40:f9:e7:0d:30:e1:02:27:f1:9a:
2c:79:c8:74:2c:1c:88:94:c6:4b:c8:59:e9:44:a4:1f:eb:64:
d0:98:63:c2:6a:20:9d:5c:e6:b5:57:93:a0:d4:2e:bb:5b:f5:
d1:0a:66:70:3b:c8:16:95:44:ac:72:6c:6f:11:89:97:53:42:
8c:17:bf:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:16:44 2026 by rpki-client