Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
File: MKNPnR29IKqH-w9ivStsXjDGFKI.mft (raw, json)
Hash identifier: TBoT51xDMh+PSPVVvK540nvHz3aOtnU6fLspUdCkj98=
Subject key identifier: BA:4D:EB:AC:1B:FF:2F:75:EE:CD:A3:B5:70:67:13:FD:97:FD:9E:37
Authority key identifier: 30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
Certificate issuer: /CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Certificate serial: 019EB98F39F1898013351C1B64E582D34D79
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
Manifest number: 0A15
Signing time: Fri 12 Jun 2026 02:00:31 +0000
Manifest this update: Fri 12 Jun 2026 02:00:31 +0000
Manifest next update: Sat 13 Jun 2026 02:00:31 +0000
Files and hashes: 1: Cj5p4m8nBSHqFI7cIXQ0jxVaZqs.roa (hash: L+v38GzXEltb5Lhi/QksoQvn5l/DyY6ZKL5vW/SAZU0=)
2: ME0H6FJMomj5qNZa55hYa_mg8BI.roa (hash: 9JjtlUlu4wsnh6OKmL8KpV7lEe7W07be+5Wu0KAr73g=)
3: MKNPnR29IKqH-w9ivStsXjDGFKI.crl (hash: 5ey/DKfJexYJhnMIXiyircFeQpp547ocuXjrFgIbDCU=)
4: mxim8hiMW6KSmM1j_q23upqnj0k.roa (hash: hg33XIuLOCBoWLYKxDMan6DF9gxch5zAkStGQyi0GIM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b9:8f:39:f1:89:80:13:35:1c:1b:64:e5:82:d3:4d:79
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=30a34f9d1dbd20aa87fb0f62bd2b6c5e30c614a2
Validity
Not Before: Jun 12 02:00:31 2026 GMT
Not After : Jun 13 02:00:31 2026 GMT
Subject: CN=ba4debac1bff2f75eecda3b5706713fd97fd9e37
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:1d:ed:1e:41:76:08:0b:9a:9b:16:98:57:28:
0e:49:fa:00:99:21:78:1b:3d:6d:1b:e4:c4:06:f2:
74:84:f0:19:de:10:07:b7:88:57:72:57:24:a9:ec:
22:ae:6b:f2:cb:85:48:d5:9f:5e:e2:e1:a6:78:57:
3b:2b:dd:af:f1:b0:7a:9e:1e:33:a9:95:57:9b:cc:
c6:ae:00:db:be:fd:af:89:17:b0:ca:1a:d3:b2:13:
b9:4f:e2:33:16:05:21:12:09:38:0a:bb:ee:05:dc:
d3:2c:e8:f2:00:7d:39:a3:82:d5:3d:11:b7:75:6e:
8e:53:8b:d5:6e:3f:ab:aa:7a:62:6c:08:1b:ce:a5:
81:a1:ca:4e:fc:31:66:95:0e:08:39:d8:94:54:a6:
44:ae:17:71:f7:3a:96:10:98:90:a6:cd:59:3f:86:
58:7f:64:4a:02:d4:68:b6:ac:45:a1:68:94:83:49:
b9:b0:7a:fe:df:74:83:de:58:ca:f0:84:9d:4d:e6:
53:d1:80:8f:5f:8b:a3:95:3e:92:8e:82:04:2d:9c:
a6:96:8f:34:49:33:4d:4b:bc:6b:9d:36:30:df:b7:
83:9f:94:f4:55:d8:ea:df:23:c9:32:27:97:87:9c:
e5:20:ff:6b:4d:98:6a:66:73:e1:84:7e:f3:0e:b3:
a6:f5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:4D:EB:AC:1B:FF:2F:75:EE:CD:A3:B5:70:67:13:FD:97:FD:9E:37
X509v3 Authority Key Identifier:
keyid:30:A3:4F:9D:1D:BD:20:AA:87:FB:0F:62:BD:2B:6C:5E:30:C6:14:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MKNPnR29IKqH-w9ivStsXjDGFKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/ee4732-c3ba-4088-a5fa-eb653d3622bb/1/MKNPnR29IKqH-w9ivStsXjDGFKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ab:08:7b:50:eb:ca:ec:62:e8:d2:f0:c3:fc:4f:6f:33:17:06:
09:2a:76:db:e9:f6:6c:57:91:c6:b0:3d:05:0e:7a:be:4b:8f:
7f:0a:37:10:99:49:50:96:94:a8:72:3d:22:fb:d9:1e:4f:34:
34:5e:fb:ca:f7:50:8a:a4:63:bf:35:b2:8b:79:29:29:94:a7:
92:a0:b1:71:fa:47:82:05:a5:55:0d:ff:9d:58:9e:e8:6c:ff:
96:2a:0a:e5:d2:9f:c7:a9:c3:56:ef:6e:4b:41:06:37:37:49:
a2:bb:6e:7f:cf:3a:a7:c6:9c:fa:1c:d3:1f:4b:ca:23:93:a9:
71:c4:f0:24:a3:41:88:c8:a9:90:04:c0:2a:04:c6:5f:06:60:
67:23:c9:2b:ab:ed:33:00:df:34:b6:e7:1e:63:72:b2:f4:af:
43:fe:38:5d:5a:48:e1:38:2d:c4:d4:9e:1c:15:e8:aa:45:4c:
bf:24:77:7f:83:fe:4b:80:50:67:ff:c6:27:f3:6c:fa:fb:a9:
05:be:31:a3:d4:0e:9d:aa:41:93:82:b6:f5:0f:73:23:76:2d:
4f:d4:fe:85:4f:64:8a:49:90:95:54:78:5f:d2:d2:cb:60:5e:
59:a1:30:2c:bf:2f:c7:5d:0a:2c:a9:85:e6:f4:8c:a3:e3:9b:
b0:40:ed:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 03:38:29 2026 by rpki-client