Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
File: h-2cuDQKwglaTLBSjl6i9zjOpnI.mft (raw, json)
Hash identifier: zsV8sZisvFixmRD1ifG1DZz24iYhuii77GswOOcVlF4=
Subject key identifier: F6:56:08:22:6E:91:30:5E:E4:72:09:B8:BB:BA:76:69:83:88:AA:89
Authority key identifier: 87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
Certificate issuer: /CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Certificate serial: 019EC06DCD5E13058DF025139E45BAC96A2B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
Manifest number: 0726
Signing time: Sat 13 Jun 2026 10:01:21 +0000
Manifest this update: Sat 13 Jun 2026 10:01:21 +0000
Manifest next update: Sun 14 Jun 2026 10:01:21 +0000
Files and hashes: 1: ClXL4dT4GSld8lEfAWyCYr5cI3Y.roa (hash: gOfRKf6V+xV3ZsFtbBW86oarsiPBo5VFvmb0v2OnPU0=)
2: h-2cuDQKwglaTLBSjl6i9zjOpnI.crl (hash: cN6uG5PHJzabAzM8XVeg8jP+WIyV4hLDW9K5xBakJoA=)
3: vT00UMTKIHLp4hINXZvd81w31H4.roa (hash: QI91nZrYvdKW6PkjSidpqTabE42DmbX4YNbp5QsN850=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:6d:cd:5e:13:05:8d:f0:25:13:9e:45:ba:c9:6a:2b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=87ed9cb8340ac2095a4cb0528e5ea2f738cea672
Validity
Not Before: Jun 13 10:01:21 2026 GMT
Not After : Jun 14 10:01:21 2026 GMT
Subject: CN=f65608226e91305ee47209b8bbba76698388aa89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:6a:f4:55:a0:59:2e:50:1c:17:d9:a6:2c:51:
58:ff:19:76:f5:d4:3e:ea:54:9e:14:f8:59:3c:9a:
9a:8a:34:dd:32:cd:af:64:2b:b1:cc:c1:8e:a5:79:
d4:b9:9e:a0:54:23:56:d3:d1:83:66:a7:c6:9b:c5:
9d:e7:d9:9e:4f:f9:f7:08:00:7b:24:d6:a5:98:99:
60:3c:17:7c:f8:fc:da:f8:6c:10:21:74:7a:b8:0b:
ac:bc:95:db:55:b5:d4:bf:a8:74:0d:44:1e:43:10:
e0:c0:c3:12:fe:47:e1:1f:be:3b:0b:31:98:f1:20:
ad:7d:01:08:c5:20:e7:a6:40:48:b4:a5:ff:5f:2e:
04:d8:03:06:72:c0:ef:e5:7e:cc:f2:da:02:33:13:
a0:60:d7:7a:73:16:86:6f:49:0a:62:b9:d9:dc:38:
6c:b8:71:c5:35:19:16:77:39:1c:0d:f1:2b:b4:c6:
68:3d:cc:62:ea:e3:29:21:8d:25:83:3e:46:f0:ca:
02:9f:9b:b9:d6:c0:ee:dc:86:68:6f:d6:c9:d9:6f:
2e:0c:2f:13:48:31:66:4a:e6:91:ad:08:25:e9:7b:
d6:c1:14:9e:be:e7:d1:87:13:a7:08:06:7b:57:12:
a5:67:27:71:d4:3b:1c:28:e8:f6:0f:2d:b7:db:b1:
15:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:56:08:22:6E:91:30:5E:E4:72:09:B8:BB:BA:76:69:83:88:AA:89
X509v3 Authority Key Identifier:
keyid:87:ED:9C:B8:34:0A:C2:09:5A:4C:B0:52:8E:5E:A2:F7:38:CE:A6:72
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h-2cuDQKwglaTLBSjl6i9zjOpnI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/6381d3-5d01-4abc-bed7-7b21bf303ccc/1/h-2cuDQKwglaTLBSjl6i9zjOpnI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
02:a9:94:5f:6c:92:94:eb:f4:6d:ec:bf:bb:5d:0b:00:f0:48:
0b:7f:e4:9a:f5:f0:c9:89:a9:bf:67:dc:69:a4:be:b3:b3:a5:
ad:82:21:fb:1c:5f:df:42:da:f2:aa:e2:1a:c5:8b:f0:e9:18:
0a:63:ad:ad:6a:20:3b:f5:72:98:8b:97:83:88:62:4b:ff:c2:
13:dc:18:41:c9:e4:57:e4:55:33:9c:03:a2:e1:00:f4:de:7b:
39:5a:39:a0:ba:83:3c:b5:9d:51:cd:84:47:67:0d:c0:09:f7:
91:9b:44:d9:f7:dc:71:1d:c6:31:ac:5b:c5:70:87:32:88:bf:
be:e0:74:51:70:47:25:1e:ca:52:9e:92:d8:fe:af:9c:b1:74:
33:34:ab:3e:4f:b7:72:bb:71:fa:76:ec:1f:0b:aa:eb:ee:bd:
24:e6:03:9e:bc:fc:d0:17:a7:27:3c:e9:ee:30:af:a4:5b:2d:
06:b1:5c:0d:bc:b8:06:30:ff:43:8d:f9:43:ce:f0:a4:d9:45:
0f:84:eb:72:b8:c9:af:4c:a8:64:d5:5c:a8:00:11:43:a9:4e:
d0:e0:fd:83:a1:41:e0:82:fe:03:81:a0:e7:cb:c7:30:00:91:
b5:41:9a:08:93:a6:cf:5e:e9:b5:6e:89:06:48:61:2b:ef:08:
61:82:eb:7f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 14:55:29 2026 by rpki-client