Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
File: 1onLcYkcbZS9nm8U8W5-N8LHKL8.mft (raw, json)
Hash identifier: 4RUD6uOmY3extVK9SD9Ii6xsuchpoR4IPmyuJmwMCfQ=
Subject key identifier: F8:A9:6F:FA:F3:C1:59:16:58:72:A9:D0:72:28:70:0F:30:30:3E:03
Authority key identifier: D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
Certificate issuer: /CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Certificate serial: 019F0A3EAE8800D2FAEBB5B5263453573E07
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
Manifest number: 0736
Signing time: Sat 27 Jun 2026 18:01:47 +0000
Manifest this update: Sat 27 Jun 2026 18:01:47 +0000
Manifest next update: Sun 28 Jun 2026 18:01:47 +0000
Files and hashes: 1: 1onLcYkcbZS9nm8U8W5-N8LHKL8.crl (hash: Ao+09o3Qvab0PgbPynHVErf6mCbQULDfNsFjwp/pENQ=)
2: A1S7zaMW03197K0PFUGmkuS6qHc.roa (hash: P0RbhOWnYpuPcWIDbY8PS2tuKH+AkCqge3UmcT8QPYg=)
3: HcWgx2MiMP_xtGT9IucxolgQeIY.roa (hash: rcEUsMaoUm7Xd2I+QLC1mGGbjcwOScogc6eZLbEfymQ=)
4: iTT1Go78g5owZfyu9ktxbP5JHAk.roa (hash: Qjj93lcgSQbKTpiPRrMG7KIy0uRqncRntlD8V9IPje4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 28 Jun 2026 14:00:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:0a:3e:ae:88:00:d2:fa:eb:b5:b5:26:34:53:57:3e:07
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d689cb71891c6d94bd9e6f14f16e7e37c2c728bf
Validity
Not Before: Jun 27 18:01:47 2026 GMT
Not After : Jun 28 18:01:47 2026 GMT
Subject: CN=f8a96ffaf3c159165872a9d07228700f30303e03
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:df:d9:4c:c9:ac:41:eb:c7:f4:37:a2:97:17:
45:61:b0:c4:5b:8a:25:15:12:e0:84:d0:5f:9c:5b:
e7:07:4d:f3:64:fa:26:2e:eb:54:1e:57:2e:00:05:
cf:d7:cf:36:29:70:a1:f1:17:30:d7:a5:65:04:2f:
e0:76:c1:8e:1c:fc:33:dc:07:df:7b:63:30:3b:0a:
e5:05:e7:94:d4:c7:dc:bd:51:c7:01:5b:a4:85:9e:
5e:92:c1:06:cf:a1:e1:a9:46:c1:ec:ae:2f:ae:81:
b8:71:96:2b:a3:6f:37:0c:70:81:8c:9f:6b:7f:c9:
a4:21:3e:65:e2:a1:91:32:42:f4:61:a4:af:fb:00:
fa:bb:50:ea:ea:51:0b:9b:9b:15:d2:8a:ab:a1:dc:
91:be:a0:8b:00:5a:2d:93:37:1c:eb:d6:54:a7:5e:
00:06:f0:f2:f1:b7:86:16:4b:f7:23:51:1d:71:8f:
45:d8:7e:22:f9:a3:03:47:cd:98:9e:91:95:81:47:
c4:49:69:76:a8:4f:b6:37:20:1b:b7:7d:08:f8:9a:
87:56:fb:80:32:24:f3:d1:97:30:f0:a1:94:d8:7d:
d0:fc:89:85:34:34:df:dd:d9:6f:c3:29:8d:cc:36:
6b:ed:e4:26:3b:f3:e5:08:35:89:53:18:44:89:3a:
56:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F8:A9:6F:FA:F3:C1:59:16:58:72:A9:D0:72:28:70:0F:30:30:3E:03
X509v3 Authority Key Identifier:
keyid:D6:89:CB:71:89:1C:6D:94:BD:9E:6F:14:F1:6E:7E:37:C2:C7:28:BF
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1onLcYkcbZS9nm8U8W5-N8LHKL8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/0df28d-924d-4b4e-94b8-824ffc6942f4/1/1onLcYkcbZS9nm8U8W5-N8LHKL8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:a1:e9:45:93:aa:61:cb:26:ff:37:ce:48:af:1d:ff:48:dc:
1a:a4:86:a2:db:1d:8a:d9:1b:82:a8:9b:d8:6b:32:44:a0:e2:
23:8b:57:09:21:25:59:21:07:20:b7:51:41:9c:2f:47:51:f9:
62:99:18:1e:c6:cf:90:b5:6e:41:78:7b:e2:91:21:de:9d:35:
52:59:d6:58:53:ad:77:26:4d:8c:54:ac:3d:6a:12:bc:d4:c0:
52:f7:4e:0c:7a:d5:53:1f:e6:05:d5:4f:11:d5:25:1e:d9:b5:
68:8d:ec:09:f4:e6:a8:60:ec:6b:39:61:5b:83:f5:54:4e:d3:
98:92:1f:7d:ce:45:86:40:3e:93:9c:d5:b9:38:11:fc:8a:ce:
50:e6:ac:aa:9b:18:d0:f6:d5:5f:c3:65:5e:b0:a1:72:86:be:
44:2a:58:a8:ec:ec:2c:a6:81:63:f2:24:5f:63:3e:61:c4:d4:
6a:81:20:73:ed:53:e1:35:e3:6d:ec:3a:e4:2b:22:6d:c9:02:
9a:95:7d:c8:e8:23:20:82:72:e3:9a:16:cc:6f:6c:6f:a6:e1:
0d:93:b4:89:ec:a0:77:9d:f0:1a:75:b3:e8:ad:83:6c:12:ab:
3b:0b:da:3f:6f:e6:df:6c:92:57:ed:54:98:2a:e6:01:39:ed:
4b:11:b5:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 28 01:16:39 2026 by rpki-client