Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
File: 0krezYS7F0i9NbmezqRncuAeyTU.mft (raw, json)
Hash identifier: hXC0+MUL9HWgvtafajo8eGDK00kRV1KpbdV/sRWN6QU=
Subject key identifier: 93:4F:E1:5C:4F:8E:DC:A8:92:45:70:40:4A:C7:D2:20:74:FA:F2:3E
Authority key identifier: D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
Certificate issuer: /CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Certificate serial: 019F189E9CF442381A54DD6E1ECBFCB949B6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
Manifest number: 198B
Signing time: Tue 30 Jun 2026 13:01:15 +0000
Manifest this update: Tue 30 Jun 2026 13:01:15 +0000
Manifest next update: Wed 01 Jul 2026 13:01:15 +0000
Files and hashes: 1: 0krezYS7F0i9NbmezqRncuAeyTU.crl (hash: E9TY11UeKVmtkwauFq5DpjwStNATO12fwpsaDWmV6OM=)
2: THoFRGj7we5B4orPSAEMrZc2v9I.roa (hash: nx8ZhN2tRi/Vu5vUK7/jsnnIAjWNN0LM5ZVA5cvmy60=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 13:01:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:9e:9c:f4:42:38:1a:54:dd:6e:1e:cb:fc:b9:49:b6
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24adecd84bb1748bd35b99ecea46772e01ec935
Validity
Not Before: Jun 30 13:01:15 2026 GMT
Not After : Jul 1 13:01:15 2026 GMT
Subject: CN=934fe15c4f8edca8924570404ac7d22074faf23e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:6e:bc:8e:7d:a4:cd:66:f6:b5:a0:c6:61:28:
1d:a1:33:1b:b1:48:f1:95:bd:87:31:93:a0:a3:58:
e1:a5:c1:89:ab:a1:8f:7b:35:c8:ff:17:00:da:35:
94:a6:e0:47:e5:c6:4c:f6:f8:86:6e:ea:5c:58:04:
fd:17:7b:e9:aa:a5:d2:41:f2:f5:d4:fa:99:5a:b5:
eb:4d:26:45:2b:3c:2a:b8:ac:c5:dd:e8:0f:b2:48:
b2:0e:fa:1a:ec:fc:1b:f7:ea:60:98:82:f7:69:5d:
86:1a:8f:c1:b9:32:52:d2:b7:49:5c:04:22:1c:73:
04:c0:06:20:bf:bc:1a:8e:ec:08:f8:a7:ee:bf:dd:
5a:e5:1e:36:20:7b:23:74:fc:1a:f9:8b:39:73:5c:
33:3d:69:0e:b0:ea:7f:b7:d5:3c:dd:f5:68:e7:1b:
fe:31:61:5c:7b:1a:7f:91:4a:73:a9:2c:56:e0:6d:
65:23:35:ad:ff:c9:56:47:2f:3f:99:d1:63:64:a0:
50:0e:03:cc:74:91:bb:86:0c:62:7b:c0:8d:21:fa:
9e:e6:8b:91:de:3e:50:1c:75:5e:44:af:27:cc:10:
94:59:68:22:55:e0:7d:ed:7d:fc:54:b2:3b:b7:29:
98:39:42:90:2e:64:a0:91:af:1c:0c:0e:be:b2:cb:
da:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:4F:E1:5C:4F:8E:DC:A8:92:45:70:40:4A:C7:D2:20:74:FA:F2:3E
X509v3 Authority Key Identifier:
keyid:D2:4A:DE:CD:84:BB:17:48:BD:35:B9:9E:CE:A4:67:72:E0:1E:C9:35
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0krezYS7F0i9NbmezqRncuAeyTU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/63a845-8c09-4d69-a771-48a607bbe25e/1/0krezYS7F0i9NbmezqRncuAeyTU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
d0:84:29:94:6b:11:53:7c:5e:c1:cf:58:26:b6:b8:f0:ab:55:
23:d1:41:79:86:f2:74:bc:e6:c8:16:10:1a:4e:c4:1b:8d:36:
30:58:91:17:33:02:b7:5f:29:39:5f:3c:e3:05:67:11:9e:4c:
e0:dc:03:b1:52:ca:a1:30:0f:c3:71:2a:47:f1:d2:4d:a5:71:
58:90:9d:92:2c:f1:9f:36:29:8d:d4:d0:1a:c8:1c:71:d7:ee:
e5:d9:4e:ee:8c:6f:e9:ec:0e:1c:ce:cc:ed:10:32:76:0b:37:
66:6c:ab:66:1e:26:25:a7:34:3b:59:d4:d6:e5:96:46:b2:39:
49:0d:8d:0a:06:35:74:cc:c2:71:23:34:11:14:ed:d5:6a:de:
85:03:c1:40:d4:a3:ec:19:c2:89:cc:31:35:1d:4a:e5:f2:25:
d3:d8:ef:f0:fa:71:05:38:ac:74:42:cf:85:70:00:16:c3:4d:
c0:25:80:9d:49:5b:9b:cb:84:da:8c:c9:1d:ee:7e:99:5e:2b:
73:27:0f:d3:ac:d5:a6:3b:fa:98:99:32:20:c4:c5:15:83:e7:
90:ed:23:82:c8:4d:be:8a:81:e9:52:d5:30:7a:9b:f3:f5:f1:
94:3a:ea:20:6f:75:46:d1:ee:ef:f2:14:85:64:7f:22:1e:72:
b4:ea:ee:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:24:17 2026 by rpki-client