Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
File: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft (raw, json)
Hash identifier: 7REmiAxPv0NWA7OfotVZZA5On3612gAF88D+DGvUCyM=
Subject key identifier: D1:C6:48:B3:AD:6F:5D:9B:B4:2F:3B:CC:C2:DE:C9:7E:36:78:BC:A5
Authority key identifier: D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
Certificate issuer: /CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Certificate serial: 019F1943254A6862B9E4C7D0B074C3B3AFF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
Manifest number: 085E
Signing time: Tue 30 Jun 2026 16:00:58 +0000
Manifest this update: Tue 30 Jun 2026 16:00:58 +0000
Manifest next update: Wed 01 Jul 2026 16:00:58 +0000
Files and hashes: 1: 14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl (hash: B/s2nywcbNA0i2Lok44kfCthXwoEfBIDDX/R7hNInGg=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:25:4a:68:62:b9:e4:c7:d0:b0:74:c3:b3:af:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d788851981cfb3c15624b6e97f60a3d991d6d969
Validity
Not Before: Jun 30 16:00:58 2026 GMT
Not After : Jul 1 16:00:58 2026 GMT
Subject: CN=d1c648b3ad6f5d9bb42f3bccc2dec97e3678bca5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:13:ef:42:33:1c:1d:bc:42:00:67:e1:9b:26:
e7:c4:a3:f5:2f:56:25:e2:60:7a:75:35:ca:aa:97:
9d:5a:15:38:4a:a0:82:74:16:c9:89:a8:cb:b4:f1:
95:da:ad:e0:e5:13:54:4d:e0:b0:0a:71:46:95:4c:
76:25:f5:33:cd:30:66:0a:0c:5f:48:e5:98:a7:38:
2c:22:86:8b:c5:33:4e:84:08:df:f9:04:68:7d:06:
ae:ca:9a:93:6f:26:50:09:ff:c3:6f:46:c1:b7:4c:
5a:2a:1d:ab:f9:5f:0c:a3:07:93:4e:a4:d3:94:61:
d3:30:12:28:22:b6:d6:90:bc:4c:f3:b6:50:f9:8f:
0b:d8:07:68:28:7e:20:7f:a8:6d:7e:9e:6b:5c:96:
d2:bf:c7:9e:31:d3:91:60:ec:f0:a6:d9:af:71:b1:
60:7f:9b:39:71:88:4e:41:27:1d:5a:0f:21:c6:28:
4f:b9:4a:65:24:be:79:88:88:1e:85:73:d5:f3:4f:
82:d1:bf:d9:4a:46:b6:44:2e:40:e5:2d:b8:c2:29:
c5:e9:8d:59:96:53:42:6f:23:05:49:2e:52:14:1d:
69:6f:44:98:23:ea:c2:c0:3c:7c:66:08:2a:65:70:
ae:0b:cb:eb:d5:08:15:2f:bd:41:db:b2:5b:c7:57:
7b:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:C6:48:B3:AD:6F:5D:9B:B4:2F:3B:CC:C2:DE:C9:7E:36:78:BC:A5
X509v3 Authority Key Identifier:
keyid:D7:88:85:19:81:CF:B3:C1:56:24:B6:E9:7F:60:A3:D9:91:D6:D9:69
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/0e2311-f9a1-4896-9d98-d08004493d14/1/14iFGYHPs8FWJLbpf2Cj2ZHW2Wk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
60:2e:e0:00:42:e3:b2:d9:55:9a:48:3c:5a:38:8d:03:bd:cf:
16:a9:45:55:01:9b:31:fd:45:de:40:dc:99:9a:86:f6:d2:a9:
54:dd:5b:d4:04:01:84:13:09:07:39:6c:83:fe:fc:2f:05:91:
6c:ef:64:f6:ec:52:e8:46:d6:6a:4e:6c:b4:cd:f8:cb:2e:79:
5a:b0:dc:7e:9b:3c:42:30:4f:03:f9:86:e7:6c:97:e0:91:73:
2f:c4:cb:7e:a5:7b:f5:bd:ba:cf:9d:e2:ec:eb:0e:e1:66:3d:
bb:05:69:a7:40:f3:f3:05:db:46:de:de:af:b3:ab:d7:5d:d2:
4b:ae:e2:20:68:9d:de:d2:e5:79:e8:7a:87:46:9c:79:16:81:
da:76:6a:06:c8:1e:8d:01:21:43:de:63:b8:9d:9d:2b:f9:02:
09:79:a0:5b:33:7d:06:4f:b0:30:37:9c:c2:44:f3:f7:75:b2:
d0:ad:82:5d:70:dd:a2:28:e2:5b:39:9d:d5:83:4f:85:75:b1:
85:66:b3:58:00:ed:10:5d:6b:05:4a:c1:a2:fa:d8:fc:bb:a6:
51:f1:1c:ec:b7:4a:c8:ff:25:21:2b:25:11:74:34:f8:76:02:
33:9e:8f:42:b1:2e:4c:a9:7c:6d:94:37:09:5a:e1:0a:c7:49:
56:3c:e2:60
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:38 2026 by rpki-client