Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json)
Hash identifier: adWypu/7BMLAa4Nz+2C/T1nlVl8EEbSjQzo+UFDYPhQ=
Subject key identifier: AA:45:40:AF:61:8D:BF:2F:2A:BE:78:C9:E5:01:1A:F5:BC:87:C3:F0
Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Certificate serial: 019EED4641F6D2D22C8E89A79137A2B3635C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
Manifest number: 06DD
Signing time: Mon 22 Jun 2026 03:01:04 +0000
Manifest this update: Mon 22 Jun 2026 03:01:04 +0000
Manifest next update: Tue 23 Jun 2026 03:01:04 +0000
Files and hashes: 1: TVDGXyDJKjGf9M2l61hPydz0GW8.roa (hash: GPBRCtJGeJYsInHOu3V8vVubHvszvLhmWvGPlsGdKsk=)
2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: jeRXz/uJ74Pmra5LQ438TTyk6fFPoP0wsWlzyvkpfaQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 23 Jun 2026 03:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:ed:46:41:f6:d2:d2:2c:8e:89:a7:91:37:a2:b3:63:5c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71
Validity
Not Before: Jun 22 03:01:04 2026 GMT
Not After : Jun 23 03:01:04 2026 GMT
Subject: CN=aa4540af618dbf2f2abe78c9e5011af5bc87c3f0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:88:f9:b3:20:98:21:1e:ec:0e:77:f8:64:67:
e1:a3:e1:9c:1e:71:6f:01:f0:7c:1d:49:aa:4d:85:
0e:75:59:50:b8:f8:e7:48:d0:bd:c0:90:76:b5:f8:
6a:e1:f3:e9:90:bb:97:f0:3c:df:88:81:de:58:31:
3e:45:42:68:d6:40:a9:eb:ec:e2:a2:52:5f:d1:0c:
94:fd:6f:4b:4f:c0:a8:3b:bd:27:4f:29:29:a9:04:
9b:8f:f9:92:69:40:5f:87:62:14:ee:f3:a3:cf:b0:
fa:88:8c:0d:f0:10:c8:8c:69:99:83:8f:08:8c:c5:
f2:53:de:52:ed:77:eb:58:3d:ea:44:f7:f7:f6:17:
6d:3f:49:89:fd:83:25:89:55:33:31:f6:73:b2:53:
b6:d7:5e:a8:14:ea:2c:19:96:00:8a:ad:dd:8a:ea:
ab:d3:f2:9e:6c:28:33:e2:ab:83:ff:d2:e3:3e:3d:
df:a0:b6:6b:d4:16:c1:ec:96:dc:b2:af:e0:cd:84:
95:80:50:5b:22:d0:ab:03:34:30:8d:c5:e5:b1:c5:
9b:4d:b1:6d:08:f7:39:2b:4f:52:75:1a:c2:e2:8d:
cb:34:d8:c7:2d:9d:d2:7c:de:06:55:ec:6a:3d:b6:
ec:bf:18:bf:0c:04:ff:2b:92:91:3e:55:9e:1e:fb:
81:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AA:45:40:AF:61:8D:BF:2F:2A:BE:78:C9:E5:01:1A:F5:BC:87:C3:F0
X509v3 Authority Key Identifier:
keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
8c:5e:51:d1:b4:eb:27:25:5a:d8:cd:f1:33:69:3a:9e:90:db:
40:f5:28:03:dc:a0:70:07:b7:7e:1d:91:9a:84:b1:8f:c3:dd:
a8:2a:77:59:9a:4c:39:f9:e0:b2:95:1a:d6:0e:38:bf:58:c1:
49:fc:b0:ee:d2:38:40:e4:e3:18:13:d5:6c:77:84:db:79:8b:
09:38:94:e0:c1:3a:22:61:7c:1e:cc:fe:88:5a:d3:af:f9:f4:
4f:ec:c4:9a:9d:f3:30:1d:d6:f2:62:4a:53:d3:27:c2:d1:5c:
cd:64:41:21:7d:b3:45:16:73:49:a9:ca:f1:ff:3b:f1:4f:18:
f7:52:55:b3:94:67:f0:aa:ce:97:1f:d7:3b:9c:09:58:82:66:
2a:5a:58:13:1c:6c:10:b9:40:c5:e1:df:bd:9d:f8:fa:61:f3:
9f:0d:b3:df:b3:d6:c2:52:1d:e0:52:dc:af:f0:53:df:7c:8b:
47:77:a1:ce:1c:5b:db:91:7a:a1:d2:82:0c:1f:38:e8:69:6d:
cf:95:aa:1d:8e:c9:b1:1f:0e:6f:0a:2f:f6:39:16:ec:a8:a7:
03:25:00:82:19:12:7b:1c:a2:74:86:46:77:b4:0a:cd:65:70:
3c:af:63:99:0c:0a:60:8f:01:ff:66:cb:a0:62:b7:73:e4:1a:
69:91:ce:0a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 22 12:10:56 2026 by rpki-client