Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
File: tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft (raw, json)
Hash identifier: K9ZwUFaOBHK32kZdvnXntRx/qceEpozGDvh5AsqDVpw=
Subject key identifier: 03:85:16:4D:C2:B7:2E:8F:29:B8:D6:DD:4A:D6:E7:0B:FE:13:B4:6C
Authority key identifier: B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
Certificate issuer: /CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Certificate serial: 019EB8B3E677ED2ACE878D4C754C66B44744
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
Manifest number: 195C
Signing time: Thu 11 Jun 2026 22:00:58 +0000
Manifest this update: Thu 11 Jun 2026 22:00:58 +0000
Manifest next update: Fri 12 Jun 2026 22:00:58 +0000
Files and hashes: 1: LDYOOwc3ElUwgsoAhX1VAVoDz7A.roa (hash: LnEQSIV2ZJKxc3kP1NpzkPN+GxvmT9Fs9kvIu+YHy1w=)
2: RNoONMgjC7AI9bUiPXHJnoNxdw4.roa (hash: EyX2BbVopJ5hjqPnGfS3gH2lJBH+hCeBYJzhz4A8ggc=)
3: _Kvo8y_R7krVK88kzx8nMzPfxVY.roa (hash: hJFEckwW05pWdYupq2RWtNuX2TmzieG8g1SpfTLtVnQ=)
4: tNl2UUnZ4217WSLfqRDSI0O_BWU.roa (hash: TJsFtOL6bWviF8Z8b9ypqKLo31djdrQdvLmCXkT7uLQ=)
5: tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl (hash: kHUEJrLJUHMm5UAS34LK3hs8uFdpWoKhndYqWqw2T9Q=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:26:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:b3:e6:77:ed:2a:ce:87:8d:4c:75:4c:66:b4:47:44
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b5427ea49f972d19c56393a689e7cbeb990d5d7a
Validity
Not Before: Jun 11 22:00:58 2026 GMT
Not After : Jun 12 22:00:58 2026 GMT
Subject: CN=0385164dc2b72e8f29b8d6dd4ad6e70bfe13b46c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:89:9c:88:2f:6e:31:c9:70:4c:20:70:c6:4f:c7:
1d:62:70:07:f8:49:48:03:96:2e:63:00:6b:8e:93:
cd:e7:f1:c8:6b:d2:1b:5c:cf:26:42:62:5e:42:9c:
cd:90:bd:04:4b:74:ae:5f:3e:20:ee:00:4f:7f:80:
e5:d3:93:5c:21:37:77:a9:66:b3:fb:d2:06:4f:5f:
ea:7f:1b:cb:00:dd:37:d3:a6:69:8b:f6:ba:ce:4f:
f8:d2:60:02:cd:1f:cb:dd:d5:dc:41:13:d5:9a:b0:
2c:44:14:95:a2:bd:bf:7b:6c:02:d2:7c:6e:18:f3:
2b:f9:58:76:6c:2c:41:d5:66:3a:a4:b2:72:f4:77:
2b:7e:b5:4b:51:e1:4b:78:81:46:f8:cb:ca:ff:ee:
b0:2b:78:e3:0b:b7:39:08:f3:06:b9:ca:05:cd:3e:
a3:36:1e:ff:7c:51:3b:4e:c1:f6:87:ef:75:3a:af:
0a:f1:f9:38:6f:95:6d:54:be:60:ba:b6:59:e5:98:
fc:91:dd:e7:58:7d:7c:34:39:0f:29:63:62:c0:83:
0e:6c:12:9b:6e:dd:bc:17:48:e8:2e:45:a9:4a:1d:
a5:3e:f5:74:b1:f8:db:b5:fc:b6:05:a0:cd:4a:e0:
0c:4d:6b:73:e4:27:57:69:05:a0:a5:7c:d6:8b:c5:
ef:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:85:16:4D:C2:B7:2E:8F:29:B8:D6:DD:4A:D6:E7:0B:FE:13:B4:6C
X509v3 Authority Key Identifier:
keyid:B5:42:7E:A4:9F:97:2D:19:C5:63:93:A6:89:E7:CB:EB:99:0D:5D:7A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tUJ-pJ-XLRnFY5OmiefL65kNXXo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/d2bb68-9bc7-4791-8528-0c495477ca10/1/tUJ-pJ-XLRnFY5OmiefL65kNXXo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2e:08:45:26:53:85:4d:5f:fa:78:93:97:c4:28:94:aa:fe:4d:
46:e1:8e:bd:aa:a6:27:f8:ff:e0:e0:82:6b:52:38:8a:a8:9e:
c7:83:ef:08:2b:23:34:02:73:1c:e9:80:b1:65:db:95:91:c5:
61:13:5a:b8:d9:f8:68:53:e1:14:1a:7a:b1:6c:8f:b9:8d:2b:
34:d0:18:d1:fe:ca:01:b6:81:88:ac:29:85:a8:f7:9d:63:fd:
74:cc:57:7b:e3:aa:3f:33:fd:cb:96:3d:53:25:27:9d:26:76:
84:fb:72:06:8b:89:e9:b2:0a:29:a7:0e:a9:9b:00:db:15:76:
bf:69:cb:ee:6a:00:5a:ba:91:7c:e4:f8:ec:a3:b5:b3:a8:f3:
27:45:7f:fe:f9:8a:90:37:61:c0:b6:2f:16:86:04:16:58:f5:
09:f3:e9:ea:96:e2:c4:71:5c:19:ff:0c:fc:7e:e4:b0:97:36:
6e:e0:53:54:5b:6a:d8:5f:84:6e:c2:83:18:42:8d:a6:e9:6c:
99:53:08:bd:ef:0e:47:a2:f1:94:07:10:f8:8d:e4:59:a9:bb:
99:82:3a:ea:d0:9d:6b:a3:31:50:5c:f8:2b:e1:14:62:05:b8:
9d:e5:8e:d8:ee:3b:65:39:cf:ab:cf:1a:30:57:78:65:8a:b7:
d0:c3:66:22
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 04:47:19 2026 by rpki-client