Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
File: MHoDlQLUamuZCREM4qsTlod70I4.mft (raw, json)
Hash identifier: v24fc9+h6bQeKXXGF2y4NjW2zGPD77HkFxeYaY2pupc=
Subject key identifier: CC:8E:C0:8E:C7:2D:09:09:4F:C1:94:11:5C:23:52:A1:30:ED:C4:11
Authority key identifier: 30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
Certificate issuer: /CN=307a039502d46a6b9909110ce2ab1396877bd08e
Certificate serial: 019F122E8A2AEAF65838FE10070474F87862
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
Manifest number: 0DE4
Signing time: Mon 29 Jun 2026 07:01:07 +0000
Manifest this update: Mon 29 Jun 2026 07:01:07 +0000
Manifest next update: Tue 30 Jun 2026 07:01:07 +0000
Files and hashes: 1: MHoDlQLUamuZCREM4qsTlod70I4.crl (hash: m1MegBBROSzg0lAYS8Gqr7J5kC4VZCCcaw/fAlmbwYw=)
2: N_ijFCSvEAh4jcjSazZABa1f9xI.roa (hash: +4BuilcfoCDx9HbGYCFSYCKk2WOaVXp2uqEtuszVVIU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 30 Jun 2026 07:01:07 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:12:2e:8a:2a:ea:f6:58:38:fe:10:07:04:74:f8:78:62
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307a039502d46a6b9909110ce2ab1396877bd08e
Validity
Not Before: Jun 29 07:01:07 2026 GMT
Not After : Jun 30 07:01:07 2026 GMT
Subject: CN=cc8ec08ec72d09094fc194115c2352a130edc411
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:03:ca:0c:fb:a0:99:95:a3:c4:59:72:55:b6:
79:e8:84:22:ae:67:08:80:e1:62:9b:40:93:9a:22:
ed:cf:98:f1:1a:76:09:3c:65:0d:29:ad:44:d3:fe:
ef:1f:a6:46:5c:44:41:d3:8b:1b:41:0d:ad:c3:3c:
ad:77:ae:78:10:57:e3:92:ee:a6:0e:ef:0d:7f:87:
6e:9e:a5:61:1e:8a:06:c9:70:74:b5:40:aa:14:28:
6b:6a:a8:11:9c:dd:3b:2f:e1:91:67:49:60:79:7a:
1f:e7:e8:3c:60:bc:a6:1d:f6:5c:32:d1:17:87:16:
26:3d:84:2d:e8:0d:d1:95:3d:b4:e9:ba:86:98:c7:
5c:d2:0a:df:1e:69:d2:72:e2:f4:65:a6:b6:84:6f:
f4:ea:35:61:c3:1a:18:27:fe:83:4b:a1:4c:ed:ef:
2a:fb:28:3c:fa:0c:be:b7:f4:12:f0:8b:9c:93:99:
df:a5:dd:e3:dd:53:91:42:04:1b:7d:ba:91:4d:2f:
a6:11:bc:45:27:c7:90:9c:51:c6:86:44:f3:06:1c:
76:b4:68:8d:b6:b6:b2:e6:ef:89:f3:f0:8c:8e:ac:
7f:43:21:c0:39:2a:73:e5:a0:b0:da:e6:8e:d4:20:
12:62:92:d4:75:bc:de:6a:cc:68:1a:47:17:22:bb:
4e:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CC:8E:C0:8E:C7:2D:09:09:4F:C1:94:11:5C:23:52:A1:30:ED:C4:11
X509v3 Authority Key Identifier:
keyid:30:7A:03:95:02:D4:6A:6B:99:09:11:0C:E2:AB:13:96:87:7B:D0:8E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MHoDlQLUamuZCREM4qsTlod70I4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/d51211-d0bb-4a57-9390-ce2a496fee86/1/MHoDlQLUamuZCREM4qsTlod70I4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:38:eb:ea:a4:c4:70:e2:f0:f1:db:b4:b7:0e:54:e8:a0:52:
6b:09:64:a5:7c:19:cc:0a:bb:7a:11:ab:82:07:f5:6c:48:27:
39:d6:ab:7b:80:69:1b:96:07:56:d9:a0:a4:e0:f2:61:9a:30:
40:9f:a0:06:cb:3e:a0:49:58:cd:14:7e:27:1d:fe:7f:0e:bc:
1c:07:32:2d:5e:64:3b:ae:eb:51:b4:c8:6c:c1:a6:b0:00:a2:
01:db:97:d6:ee:4f:e9:1b:8e:2a:f0:04:f2:db:7d:87:13:c5:
59:fa:02:08:0c:71:50:4a:ce:f6:73:0a:f1:09:23:c0:db:62:
bc:82:e9:23:ac:01:ed:ed:f6:fc:51:a0:2e:87:f3:3c:09:4d:
74:4c:7b:e4:57:9c:0c:5d:01:87:89:6c:65:f1:a2:b6:35:02:
a9:9d:11:35:d1:58:b8:57:33:f8:45:9c:a0:63:6f:f2:69:ec:
e0:0b:22:76:7b:8c:2d:e8:c3:34:84:05:d7:68:71:a2:69:b2:
98:8c:a7:53:18:26:f3:de:1f:c4:b3:14:f4:12:8d:ed:76:09:
e4:39:cf:43:f3:5d:86:48:2e:6b:0e:59:86:06:34:fa:94:d9:
e0:ef:38:72:31:08:a1:2f:fa:05:97:ea:09:9a:93:0a:8d:1b:
bb:ba:86:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 29 15:41:00 2026 by rpki-client