Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
File: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft (raw, json)
Hash identifier: cwrClkPx45vrOv2wXuHlQ7mOKnkq9yIqRyu9sY5E9ec=
Subject key identifier: 36:A6:F6:4D:A5:31:4D:DA:D0:52:28:5D:73:42:05:D0:FE:C8:A7:09
Authority key identifier: D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
Certificate issuer: /CN=d422367433765b541a37390a998997b737c46472
Certificate serial: 019F1755364EBD979BE99C574D560FED4056
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
Manifest number: 191A
Signing time: Tue 30 Jun 2026 07:01:27 +0000
Manifest this update: Tue 30 Jun 2026 07:01:27 +0000
Manifest next update: Wed 01 Jul 2026 07:01:27 +0000
Files and hashes: 1: 1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl (hash: s20EGZUrCmUKkQ7Nu5VqIlGX1tx+EQ02VoW4gjokj4s=)
2: nmpthTHAT4WUcq8Q3IMochngGiw.roa (hash: WMNeejxSLtwCCkkRDHZIffdNUGROwkauBCQwzToW+EM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 07:01:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:55:36:4e:bd:97:9b:e9:9c:57:4d:56:0f:ed:40:56
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d422367433765b541a37390a998997b737c46472
Validity
Not Before: Jun 30 07:01:27 2026 GMT
Not After : Jul 1 07:01:27 2026 GMT
Subject: CN=36a6f64da5314ddad052285d734205d0fec8a709
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:7e:55:b8:5c:b0:22:8a:5e:c4:6f:33:1c:01:
41:0e:f2:4f:af:d6:7d:7d:53:51:8f:1e:41:fe:97:
04:00:7b:82:28:ac:a6:3b:d2:b0:aa:2e:1a:13:b6:
b9:e0:4b:4e:7e:b4:54:3f:41:aa:9a:a8:ab:14:ef:
16:cf:ba:6c:67:a5:ea:dc:ca:86:2b:06:06:b2:cb:
0d:73:dd:60:da:97:74:a2:87:e8:fc:ec:23:b6:54:
c9:cb:97:eb:ff:0e:f5:fb:1c:bf:b4:e9:06:fa:25:
27:1d:80:0e:43:20:72:94:b9:c1:75:d7:2f:94:ed:
e1:eb:15:13:3a:ff:36:d3:b3:9c:62:4e:2c:cb:57:
93:a1:fe:fe:48:4a:cf:9e:bc:f2:7c:fe:96:a5:39:
eb:cb:de:1f:b2:8b:12:24:14:49:34:44:fb:c5:b9:
83:72:49:eb:69:94:12:7d:24:8c:d2:85:5d:6a:2d:
0d:7a:f5:30:17:20:67:69:a3:a6:6b:13:dc:41:b4:
22:60:66:f7:bb:ea:16:be:77:da:32:88:4e:84:d4:
cd:3a:d2:1b:2d:6d:d0:33:d7:5a:fd:db:83:bd:08:
a2:54:b5:eb:a9:8b:a3:11:0d:b4:80:a7:67:2b:2e:
60:9c:29:25:7f:6d:7b:66:72:38:2e:05:f5:ef:7f:
1b:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:A6:F6:4D:A5:31:4D:DA:D0:52:28:5D:73:42:05:D0:FE:C8:A7:09
X509v3 Authority Key Identifier:
keyid:D4:22:36:74:33:76:5B:54:1A:37:39:0A:99:89:97:B7:37:C4:64:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1CI2dDN2W1QaNzkKmYmXtzfEZHI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/45be32-821f-4514-aa31-bc75466047c9/1/1CI2dDN2W1QaNzkKmYmXtzfEZHI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
27:b7:b4:0f:5d:87:f8:cc:94:8b:49:4a:5e:4f:61:76:3f:5e:
0d:3a:fe:f7:78:51:92:cc:0e:21:7b:ee:68:a9:b9:32:2d:4f:
e2:24:18:23:e5:f9:d4:19:2d:0a:3e:74:3d:5d:d0:a9:34:15:
83:35:c8:cf:cb:d7:df:54:cc:80:78:fe:85:c8:ed:0e:09:75:
5a:f5:17:31:7c:db:01:ad:88:b4:30:8a:00:cc:44:1c:c1:c8:
db:12:94:43:e1:61:ea:bf:46:0b:9d:ca:71:2a:d4:79:7c:3c:
d6:33:cb:68:d4:da:4e:1c:29:20:de:88:5e:88:2c:1b:d2:9c:
fa:99:01:32:d5:a2:9b:82:cb:9e:2d:31:fc:88:be:74:29:d0:
9f:67:19:7d:c1:77:b1:e8:ab:2e:bd:eb:ce:cb:e3:12:ef:00:
48:99:81:4a:91:61:66:60:e7:c2:87:92:f5:5d:50:e5:04:2b:
da:67:63:73:68:9e:6b:46:e6:1a:ee:22:ae:08:c4:bf:e8:5c:
68:2a:4d:2e:96:96:70:91:ce:52:1f:c7:62:f9:d1:41:cf:aa:
71:03:4e:44:5f:c0:27:d7:23:a7:7a:79:e4:dd:18:f5:85:92:
a1:6d:73:db:57:a3:5a:e3:89:4b:aa:41:b2:2c:a8:13:8a:ea:
31:a5:4b:c9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:25:51 2026 by rpki-client