Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
File: d5pKQpXGOP3nYPPNpHbYv8JxErI.mft (raw, json)
Hash identifier: umykzGnQdffwt/bSQqY2eVpf4TNHNPSSm/AakI3mc4I=
Subject key identifier: B0:9C:EB:FF:D8:3D:A3:5E:70:EA:E2:D9:80:C1:91:AA:1C:BE:97:3A
Authority key identifier: 77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
Certificate issuer: /CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Certificate serial: 019EB845D110AA27F6702AD72A30DEEFBB3D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
Manifest number: 040C
Signing time: Thu 11 Jun 2026 20:00:43 +0000
Manifest this update: Thu 11 Jun 2026 20:00:43 +0000
Manifest next update: Fri 12 Jun 2026 20:00:43 +0000
Files and hashes: 1: 1SXyN0yfhT5cSdi9C9NJ49pGu4Q.roa (hash: 9hRMwF9OzYcY4aoj5DqpON+f2xbb5moy11vfbRHpWD8=)
2: d5pKQpXGOP3nYPPNpHbYv8JxErI.crl (hash: 24h7VHcRfIf1lIlgA9jSDZxpS9ZKCU9MgICxYk+H3VY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 12 Jun 2026 20:00:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:b8:45:d1:10:aa:27:f6:70:2a:d7:2a:30:de:ef:bb:3d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=779a4a4295c638fde760f3cda476d8bfc27112b2
Validity
Not Before: Jun 11 20:00:43 2026 GMT
Not After : Jun 12 20:00:43 2026 GMT
Subject: CN=b09cebffd83da35e70eae2d980c191aa1cbe973a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:86:14:bf:4e:01:9f:73:4a:2a:0b:5a:dc:7f:4a:
0d:c5:69:59:00:ea:d0:c1:ce:cd:c1:93:33:bb:56:
7e:e8:87:07:c3:97:ae:b7:8d:7c:0f:8d:e3:ca:76:
f4:7f:63:03:36:cd:c2:2c:db:eb:53:d5:cd:75:6e:
b6:81:3c:28:ad:a4:39:9a:2b:3e:7c:e5:7a:4d:11:
8e:0d:d8:19:0a:c3:41:5e:27:90:cc:e6:5e:0f:27:
ab:d7:4c:04:54:49:0f:48:cd:80:b3:a8:e4:bf:80:
0d:91:72:35:b6:ba:b2:aa:a7:5c:85:da:68:88:ee:
c4:72:8d:65:9a:77:2c:a2:ca:8c:aa:59:0b:78:fc:
f3:6b:a4:4f:19:9f:e7:1e:ed:14:49:93:7e:83:46:
dc:9d:f9:7c:2e:62:94:e1:42:06:8f:63:69:55:53:
2c:52:02:b1:30:58:91:e0:32:eb:ad:ff:e9:41:8b:
9e:68:91:ee:17:d4:f7:7f:30:fc:39:91:8e:b5:95:
13:e3:db:78:6c:cf:63:72:ec:79:a7:33:a5:52:5e:
db:41:cf:f4:98:16:d4:fd:72:1f:14:5f:9f:b5:8d:
34:ce:26:c6:88:b8:00:3e:42:2d:26:31:9d:d1:b4:
7f:c0:05:8a:6e:fd:70:df:44:17:a9:f1:18:a3:ed:
fc:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:9C:EB:FF:D8:3D:A3:5E:70:EA:E2:D9:80:C1:91:AA:1C:BE:97:3A
X509v3 Authority Key Identifier:
keyid:77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
43:ac:b8:83:2f:32:a7:b9:06:65:71:da:70:86:88:65:44:36:
96:18:26:7b:6c:c4:50:d6:a7:fc:ba:59:ff:6e:b9:e3:02:7a:
d5:a7:1f:69:10:e1:26:91:57:54:1f:86:18:23:e0:c9:49:ba:
21:37:fd:bd:6f:24:07:7a:e1:ec:18:c9:be:05:a5:41:57:35:
4b:1b:c4:e5:a0:98:bd:0d:42:e5:4f:18:27:35:52:97:47:b6:
0e:ea:6c:30:c1:99:99:4f:4b:78:04:20:e7:46:36:a2:0e:f5:
72:05:49:0c:10:79:a5:ba:e7:6c:df:50:a5:2c:cc:50:e3:38:
5c:cc:a3:c3:db:47:88:b1:78:bf:01:db:87:27:6a:67:6e:cb:
a7:56:1c:d8:8f:75:05:50:7f:64:02:e7:e3:b9:1f:d4:02:37:
5e:5a:a0:52:51:19:8c:eb:39:18:9b:69:16:03:1b:7b:01:cc:
a3:55:6e:7b:9c:b2:d2:29:d5:06:2e:1a:30:8e:df:3e:bb:4e:
97:13:9c:88:c8:d0:a7:21:4e:e2:d0:d6:02:71:3c:71:4b:d2:
e8:e8:0e:7a:62:a2:84:5f:17:c1:df:57:5f:dc:ef:b4:37:2b:
8b:20:10:0a:b4:44:1b:7c:c0:6c:c7:20:84:0c:89:53:86:e0:
b6:84:c0:c0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jun 12 05:18:41 2026 by rpki-client