Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
File: 1-qWsXSKtkHinLhNplihyR-nx4TE.mft (raw, json)
Hash identifier: pVR7qJdE8sokgYyXexWcKlJaYFtu/4uV6Sw5qAb2xv0=
Subject key identifier: 1A:9E:88:A3:93:BF:64:88:E1:9E:EE:23:F3:5D:14:70:73:DE:81:46
Authority key identifier: FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
Certificate issuer: /CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Certificate serial: 019F190CADF2A07154B5739D1BC22FF62FF4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
Manifest number: 14B6
Signing time: Tue 30 Jun 2026 15:01:29 +0000
Manifest this update: Tue 30 Jun 2026 15:01:29 +0000
Manifest next update: Wed 01 Jul 2026 15:01:29 +0000
Files and hashes: 1: 1-qWsXSKtkHinLhNplihyR-nx4TE.crl (hash: JnOTTTmQ/MBuv5O5hjSbnP+07QqGzNy0yHuoe5gyzHs=)
2: Sg5TLd0LRzU1Kyw2aXOACqsG4yA.roa (hash: 4vlEE5O6rdTk7GzU24AHkksV5knXEZvyv5QSu+1PBWM=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 01 Jul 2026 14:31:02 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9f:19:0c:ad:f2:a0:71:54:b5:73:9d:1b:c2:2f:f6:2f:f4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=faa5ac5d22ad9078a72e136996287247e9f1e131
Validity
Not Before: Jun 30 15:01:29 2026 GMT
Not After : Jul 1 15:01:29 2026 GMT
Subject: CN=1a9e88a393bf6488e19eee23f35d147073de8146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:8a:64:04:51:3e:5c:7b:ba:85:f1:63:d4:45:
d1:9a:74:0b:31:db:e3:9c:9d:96:a0:03:b3:78:32:
fc:7f:24:a6:53:76:e8:5b:48:d6:76:29:c5:eb:7d:
fd:d7:d8:42:9a:06:86:df:ab:af:00:20:30:21:c1:
a5:0e:14:41:92:18:59:45:6a:c2:78:9f:6c:7d:95:
4a:34:44:09:d6:c6:16:7c:c0:01:7e:31:ad:a0:c8:
93:ed:ff:53:51:55:09:bc:6a:d9:5f:c0:dc:0b:a9:
20:cb:17:ff:8f:6c:42:aa:27:dd:79:59:bd:65:1b:
5b:e5:e4:33:69:22:55:94:f9:82:ae:1b:0b:e3:92:
d9:a2:6e:c7:62:29:1f:71:31:72:47:05:e4:57:8d:
87:5c:05:17:0a:75:f3:16:64:5a:e9:ba:29:de:77:
28:53:87:f3:06:16:a3:ea:6e:74:93:4b:1f:31:c2:
85:4f:b0:43:f8:9c:c3:f7:21:a1:bb:4b:85:6c:e0:
8d:c1:1a:cf:c0:cd:ef:5a:0a:67:02:f7:d8:6f:54:
65:7c:20:01:17:51:ae:ac:65:43:0e:20:b1:86:f7:
bd:29:85:82:68:f6:3a:2f:8c:26:58:16:e2:6b:de:
a4:b4:98:5b:3a:bc:d2:72:09:d5:a6:62:37:e5:f1:
b8:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1A:9E:88:A3:93:BF:64:88:E1:9E:EE:23:F3:5D:14:70:73:DE:81:46
X509v3 Authority Key Identifier:
keyid:FA:A5:AC:5D:22:AD:90:78:A7:2E:13:69:96:28:72:47:E9:F1:E1:31
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1-qWsXSKtkHinLhNplihyR-nx4TE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/b55c04-6d4a-4949-aaa8-6ee1a700b219/1/1-qWsXSKtkHinLhNplihyR-nx4TE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
a4:07:89:68:a0:fc:8a:05:41:83:ea:d0:ae:00:bc:e9:9c:75:
d9:7a:a9:28:4d:f8:a1:1d:33:fb:81:fb:e8:28:6b:83:c9:3a:
f3:64:0a:c6:d5:cd:ee:9a:cb:76:ac:30:25:68:fc:b3:9e:a2:
18:76:e5:85:36:80:3a:5e:8c:7b:fc:4b:5a:d4:d1:c5:41:cd:
48:f0:7e:99:a7:a8:ba:93:fc:a3:c0:ad:50:d6:42:01:43:aa:
43:53:12:8c:5f:d2:60:5b:cb:7e:b3:31:25:01:60:6c:54:b5:
f8:ea:9d:5f:f1:8b:ca:bb:1e:cd:f8:b8:0a:c6:90:9c:45:d2:
fd:d8:68:0e:e6:23:5d:d9:4d:dd:18:64:0a:6d:15:2e:6d:4a:
7c:bf:02:cb:40:d9:00:f9:20:e3:ab:ee:61:f8:f6:93:f2:d5:
06:ab:d8:7f:28:45:78:4b:c5:6d:19:1f:e4:40:f1:9f:8e:7a:
7e:34:ee:d2:5b:89:3c:cf:d9:b6:37:7a:7a:42:ab:85:63:90:
cf:61:17:51:2e:17:65:15:1d:27:15:7f:ce:a4:4b:eb:74:7c:
be:4d:85:30:06:14:ec:90:8e:a8:70:70:81:64:1d:c5:25:d3:
91:d5:10:ea:a3:a9:c2:95:85:1f:54:67:e9:eb:8e:56:00:90:
b8:cf:8b:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Jun 30 18:26:30 2026 by rpki-client