Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
File: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft (raw, json)
Hash identifier: ddLdjs7pW0Sgjd0gDOUzUOYZvXjE0sADxVHR4Ea8aq4=
Subject key identifier: 9A:F0:64:19:89:26:A7:6D:6C:AE:E6:35:39:7B:CD:98:7C:15:C8:EC
Authority key identifier: D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
Certificate issuer: /CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Certificate serial: 019F18675A8614809493CDA7BD1521BEDB4F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
Manifest number: 091D
Signing time: Tue 30 Jun 2026 12:00:54 +0000
Manifest this update: Tue 30 Jun 2026 12:00:54 +0000
Manifest next update: Wed 01 Jul 2026 12:00:54 +0000
Files and hashes: 1: 0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl (hash: YXIx2T5tqpXU3I1fqdViatQCBEGclx1x5gor6oQocUE=)
2: 5pjm21HKetM46w6qM9uy-i6WybY.roa (hash: 3eNVlKLJuRP0y0hZciHBdm9TPYgKCSF9C2o8FyAPzb8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 12:00:54 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:18:67:5a:86:14:80:94:93:cd:a7:bd:15:21:be:db:4f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d24322b2d0a794fd076b85e8dc578abb0d03ec40
Validity
Not Before: Jun 30 12:00:54 2026 GMT
Not After : Jul 1 12:00:54 2026 GMT
Subject: CN=9af064198926a76d6caee635397bcd987c15c8ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:36:8a:c2:19:a8:80:8e:ba:31:7b:5e:6f:54:
3b:d2:ab:6e:5e:17:e1:97:f9:44:e7:6b:dd:3d:37:
96:de:04:99:02:56:77:82:4b:0f:8c:45:8a:6a:be:
a8:4f:aa:09:30:80:5d:89:e4:ee:1e:d6:0b:0b:7d:
8a:50:2c:52:38:eb:ee:95:32:ac:50:64:41:ff:7d:
2e:e3:c6:94:82:af:38:6d:c3:b6:c2:89:e8:20:87:
ed:b7:a4:7a:b2:4b:eb:f4:b5:52:04:13:f3:fb:f7:
78:7f:ae:0e:35:cd:bd:bd:26:ba:3d:7f:6f:27:0c:
4b:7d:5d:7e:82:bf:9e:18:99:ec:eb:e6:ab:f7:83:
70:72:b6:d0:98:ea:d5:7a:b3:92:cb:f8:85:f1:be:
36:90:7f:00:32:d5:d1:e5:5f:32:83:36:b5:4d:02:
3f:ab:e3:7a:d8:c7:83:9c:dd:45:7d:6e:64:64:e9:
bf:cb:68:53:43:99:b0:94:19:22:34:cd:4e:c2:2f:
3a:f6:77:05:1f:9f:f6:eb:44:7a:42:0b:f7:d0:ab:
23:64:cf:6d:90:09:c1:c2:a2:39:be:8b:02:cb:d0:
48:68:a7:ad:a1:b2:4c:c4:8f:82:84:ed:ca:fc:5c:
24:21:35:d5:7c:dd:d3:d0:e4:f9:5e:ce:e8:5b:73:
f1:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:F0:64:19:89:26:A7:6D:6C:AE:E6:35:39:7B:CD:98:7C:15:C8:EC
X509v3 Authority Key Identifier:
keyid:D2:43:22:B2:D0:A7:94:FD:07:6B:85:E8:DC:57:8A:BB:0D:03:EC:40
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kMistCnlP0Ha4Xo3FeKuw0D7EA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/97c353-0c36-4066-a56b-139a496cd59c/1/0kMistCnlP0Ha4Xo3FeKuw0D7EA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
24:17:83:51:76:ef:47:04:76:95:a6:98:84:c0:4f:43:fd:c3:
42:7f:db:7a:83:18:e8:02:e1:78:eb:8f:18:71:e3:33:f1:7a:
f4:66:c3:0a:a4:05:a8:0b:77:2b:50:9c:51:89:49:d0:b7:b4:
08:ba:25:e9:4d:6b:c4:87:97:79:57:15:ba:59:8e:66:b6:7c:
7a:fe:a7:6d:7a:fc:df:11:57:b8:84:1f:d5:8d:b0:b6:9f:d4:
6b:7f:c2:6a:e4:62:e7:98:2b:e5:f5:93:60:09:26:4d:22:99:
c6:07:3a:51:77:c3:9f:5b:bd:5f:9f:f7:17:94:10:d0:82:8f:
2d:0e:e6:60:23:3f:8a:22:1e:7f:d8:ba:e5:a3:be:d2:b4:22:
b6:7a:54:bc:eb:c5:8e:c9:af:22:97:24:59:c5:70:db:fe:57:
f6:91:41:bb:ff:e4:1c:4c:b9:df:e4:eb:f9:6d:ec:7b:1a:0b:
4c:35:3e:09:af:a5:9d:fc:47:fd:83:3f:0f:46:88:ac:6f:a8:
60:2d:3c:f5:dd:a8:30:13:89:2c:c6:7a:09:51:23:d5:cd:90:
4e:d4:4e:51:03:fd:4e:01:20:79:4f:38:35:41:56:86:62:3d:
40:be:62:29:aa:0a:31:53:86:4c:03:42:58:a9:8a:50:b5:ab:
9c:ab:63:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:21 2026 by rpki-client