Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
File: CaT39OTp5yw6M5P7XW6nQrwbTCg.mft (raw, json)
Hash identifier: YYFwXeyE/oqR+udqWvlKNsCZdDfOpZCRQlc3t11Ns4g=
Subject key identifier: 16:36:F2:C2:E9:6F:0F:52:98:E2:40:BF:90:80:35:F1:E3:2C:29:A3
Authority key identifier: 09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
Certificate issuer: /CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Certificate serial: 019F17F921D30CBA99B62F1687CFBD60455D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
Manifest number: 134B
Signing time: Tue 30 Jun 2026 10:00:30 +0000
Manifest this update: Tue 30 Jun 2026 10:00:30 +0000
Manifest next update: Wed 01 Jul 2026 10:00:30 +0000
Files and hashes: 1: 0tgdN2qxcJplebNaaWT9iaqWv6s.roa (hash: SVEBZu78M2nPUUItloPsYESxd6cYYGpVpIZuduXUUjU=)
2: CaT39OTp5yw6M5P7XW6nQrwbTCg.crl (hash: 67tkX52+j7WZn7JwzOibsxG8YX/KUEwfclZxXgzamSE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 10:00:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:17:f9:21:d3:0c:ba:99:b6:2f:16:87:cf:bd:60:45:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=09a4f7f4e4e9e72c3a3393fb5d6ea742bc1b4c28
Validity
Not Before: Jun 30 10:00:30 2026 GMT
Not After : Jul 1 10:00:30 2026 GMT
Subject: CN=1636f2c2e96f0f5298e240bf908035f1e32c29a3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:fb:86:f2:99:75:91:69:b7:5b:bf:05:99:e5:
d8:99:89:9a:b6:ae:3e:80:6e:49:4b:ed:79:d3:ea:
f1:28:5d:58:60:2f:b8:a5:4c:29:65:ab:4b:7f:c2:
65:b6:42:e5:e2:2e:40:18:3f:ed:a4:10:af:0b:a2:
e9:3f:7d:40:75:63:f7:0b:61:02:a4:2a:74:26:a4:
f1:63:57:65:07:21:94:d2:f3:c5:3e:c6:69:6f:f3:
d5:a0:50:dc:a1:c7:9c:f8:b1:b0:01:12:27:39:00:
19:50:4d:04:df:4b:d0:48:94:c1:e5:63:fd:e7:fe:
5a:cb:e0:b8:e3:6c:6d:b9:46:db:3a:00:1a:69:62:
f4:70:8a:b4:98:9e:d6:02:df:bf:bc:41:75:6c:05:
d5:65:96:62:4e:ab:ee:c1:30:73:14:60:cb:69:35:
6d:fd:c1:74:95:72:4d:39:18:98:9e:f0:06:b9:fb:
41:ea:da:8e:ba:c1:24:fd:e7:a7:13:76:5c:11:82:
a0:72:e1:f9:9d:52:78:2f:0e:2a:45:6d:1a:b6:21:
d7:73:9a:42:dd:7c:d1:38:3d:fb:a8:a6:8e:38:bb:
b7:36:fe:f5:2a:22:21:9f:3b:48:43:e0:52:b5:04:
c8:ef:77:f0:4d:ef:78:75:a7:1b:40:9e:2d:d9:c0:
ed:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
16:36:F2:C2:E9:6F:0F:52:98:E2:40:BF:90:80:35:F1:E3:2C:29:A3
X509v3 Authority Key Identifier:
keyid:09:A4:F7:F4:E4:E9:E7:2C:3A:33:93:FB:5D:6E:A7:42:BC:1B:4C:28
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CaT39OTp5yw6M5P7XW6nQrwbTCg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/3b48d5-28da-4385-9395-284c82dec7c6/1/CaT39OTp5yw6M5P7XW6nQrwbTCg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
69:ab:f6:15:17:42:c2:d1:9e:01:50:fb:17:12:62:2f:68:8d:
c6:11:fc:f8:e5:57:7a:cc:1d:0c:2d:3a:17:06:a5:e3:b8:02:
7c:87:83:d7:1c:5d:eb:d3:a9:1f:63:3d:88:1e:54:ce:9c:d0:
c0:67:95:43:9f:34:d9:cf:bc:e1:ff:2e:87:ad:f9:14:12:c0:
6b:ee:cd:b8:ad:23:d2:c2:3b:ff:cd:ff:38:5a:ef:60:fa:6b:
66:bd:38:71:d5:69:52:e4:26:fa:f7:24:35:05:00:9b:60:07:
3e:de:f9:30:d8:92:2c:4a:7f:31:f4:a5:5d:19:88:05:bb:f2:
c6:aa:58:81:35:1f:4b:5e:fa:2b:de:79:3d:fc:7c:b3:54:9f:
64:fd:38:32:59:a5:42:08:13:d1:8e:36:f4:aa:22:bf:ce:d3:
03:bb:3b:bf:44:24:9d:c1:10:d1:4f:56:96:7d:14:1f:2e:e3:
cc:d7:eb:0b:0e:2d:bd:5f:2f:36:63:b7:25:65:2d:86:d7:63:
f0:ab:9d:43:eb:1c:b2:81:25:3f:12:fb:3c:0c:54:91:6e:f1:
a9:e8:37:b6:ec:52:2a:0c:57:9a:ac:e5:fd:59:17:59:2c:c4:
08:00:3e:dd:fc:d5:fa:7a:c1:0d:97:ed:41:5d:4d:22:95:05:
fa:30:be:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 19:19:03 2026 by rpki-client