Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
File: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft (raw, json)
Hash identifier: 6JMdmduASBDo0+bn4z6UO0RCdTHXJm1Rq1+usn4fipY=
Subject key identifier: DF:DC:5A:48:6B:1B:B3:89:D7:67:63:A5:E7:83:B6:82:06:59:DE:11
Authority key identifier: D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
Certificate issuer: /CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Certificate serial: 019F1943E14FA0F4D92134FB1CBCDB8E4081
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
Manifest number: 0ED0
Signing time: Tue 30 Jun 2026 16:01:46 +0000
Manifest this update: Tue 30 Jun 2026 16:01:46 +0000
Manifest next update: Wed 01 Jul 2026 16:01:46 +0000
Files and hashes: 1: 1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl (hash: I5mXtVrlcOOgoCyCm0zh3UuSzeMnWA3X6MDPptGuoi0=)
2: ehFRVj_TXPwQ0rPF1XZNBg0Qd-I.roa (hash: rTBvSqvCO1yVewsD3TnK3oF62RT8jXzzKUsjw4v3zO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:43:e1:4f:a0:f4:d9:21:34:fb:1c:bc:db:8e:40:81
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4c0d694d59d7d36ba421a3050f4ec7dd3781efd
Validity
Not Before: Jun 30 16:01:46 2026 GMT
Not After : Jul 1 16:01:46 2026 GMT
Subject: CN=dfdc5a486b1bb389d76763a5e783b6820659de11
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:d5:b1:02:75:46:d3:7a:e0:65:d8:70:32:57:
1f:60:18:cb:24:92:60:29:ba:fc:b1:24:85:9d:cb:
15:ed:92:63:d5:cb:f0:36:50:ee:e6:5e:93:2b:d2:
d7:1b:18:68:20:c8:ec:20:fa:bb:43:60:15:97:27:
81:00:b1:7b:b7:1c:b3:ef:cc:7f:f4:3c:00:5b:e3:
70:63:76:5d:5f:9c:33:e1:f3:c1:1b:ff:5b:b7:ee:
47:1f:1f:f8:da:37:a4:27:89:93:78:12:a6:c6:60:
d9:34:3e:de:5c:f1:6a:da:5c:cb:ad:75:0d:85:d1:
4d:9d:1a:d8:72:61:fa:d2:b7:e5:27:bd:24:71:63:
89:76:75:1b:ba:8c:e7:67:81:8e:67:64:96:a7:11:
9a:fb:9d:c3:ca:4f:57:4c:bf:4a:65:76:64:6c:a5:
30:3d:6e:65:57:e1:d6:11:4c:04:99:1c:1d:c8:9a:
2a:36:03:c6:a3:46:7d:c4:a7:99:45:38:77:7c:ec:
aa:4d:20:c2:21:ee:05:4e:6e:c3:bd:97:d8:4a:a3:
63:4f:03:c7:e0:9f:02:47:d2:d9:db:10:80:ab:68:
eb:73:e4:92:4b:35:f2:a8:a8:f7:2b:ee:58:cd:82:
35:4f:d9:47:19:c4:1b:bc:22:38:0f:a8:15:4b:eb:
a4:89
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:DC:5A:48:6B:1B:B3:89:D7:67:63:A5:E7:83:B6:82:06:59:DE:11
X509v3 Authority Key Identifier:
keyid:D4:C0:D6:94:D5:9D:7D:36:BA:42:1A:30:50:F4:EC:7D:D3:78:1E:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1MDWlNWdfTa6QhowUPTsfdN4Hv0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/41ccce-acd8-4fb8-b148-a79510e613e8/1/1MDWlNWdfTa6QhowUPTsfdN4Hv0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
44:61:3c:05:bd:01:20:58:12:6c:ba:10:18:a0:cf:39:49:fb:
8f:db:26:85:ae:c1:f6:c1:86:bd:56:70:fe:45:7c:d4:ce:ea:
d3:08:37:8f:8f:e1:b7:fd:99:31:1b:08:2c:e7:c4:15:f4:04:
66:9e:77:e0:62:a0:76:01:ed:ab:c9:62:a1:bb:22:a7:1d:ef:
33:72:04:74:12:c4:25:31:24:87:fd:28:ef:70:36:23:71:81:
c8:30:e6:7c:e1:0f:9f:9f:b9:ff:43:8a:44:92:d0:90:c8:cb:
e1:5f:e5:69:7c:32:48:87:9b:e3:36:36:9f:bc:f5:7e:f8:51:
72:80:99:88:1b:2d:02:24:7b:d7:ae:89:2a:f3:31:11:c8:f9:
2a:14:be:f2:98:8f:2d:6f:bf:d9:a1:e5:72:01:5a:84:28:5b:
1d:d6:9d:0e:9b:dc:bb:fc:9f:98:f8:8b:4e:4a:45:9d:38:35:
5e:eb:d8:45:01:1b:71:f0:04:d6:0e:ea:6c:2a:68:43:24:69:
55:97:b2:10:a5:3f:ce:34:c3:9e:be:71:8c:fd:19:a5:6b:d2:
a1:3b:e1:3e:dd:34:47:50:ae:d5:02:2e:ca:e9:04:84:a2:83:
50:a6:92:35:05:28:27:9d:79:34:21:90:9d:7e:c2:c3:cc:8a:
79:f1:be:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:23:45 2026 by rpki-client