Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
File: _lNCbiNhumZdjyW9PPrvwg69pIg.mft (raw, json)
Hash identifier: bVa6I1Xtg328FxaomTixjyCxGnsVyMki1IEBO/Qwcbk=
Subject key identifier: 8E:CF:B1:73:CF:B5:BC:99:F8:6A:65:73:14:0C:3E:39:03:74:CC:DF
Authority key identifier: FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
Certificate issuer: /CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Certificate serial: 019EC1EE16B69E4F89DAC2FC7C1C192E5646
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
Manifest number: 166E
Signing time: Sat 13 Jun 2026 17:01:06 +0000
Manifest this update: Sat 13 Jun 2026 17:01:06 +0000
Manifest next update: Sun 14 Jun 2026 17:01:06 +0000
Files and hashes: 1: KoZviyPQEL5Xi6gVwYr2Cd9mx2c.roa (hash: fqe8eG4WVuOA3Nqn5E8vEQ5c8f4TyPMKdiIPBRAGwdE=)
2: _lNCbiNhumZdjyW9PPrvwg69pIg.crl (hash: fCXHjglrmKl0lzN48BVTSXlCZbgExYSznjgLpVw7KAY=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:16:b6:9e:4f:89:da:c2:fc:7c:1c:19:2e:56:46
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=fe53426e2361ba665d8f25bd3cfaefc20ebda488
Validity
Not Before: Jun 13 17:01:06 2026 GMT
Not After : Jun 14 17:01:06 2026 GMT
Subject: CN=8ecfb173cfb5bc99f86a6573140c3e390374ccdf
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:8f:62:70:25:5d:c9:a5:38:c2:ec:fb:63:c6:
83:ac:3d:3f:b1:95:93:4a:da:15:de:d9:da:75:23:
82:55:9b:e4:72:82:a5:5f:3c:29:a0:cc:28:9d:74:
ab:c2:fc:98:3d:e1:a7:02:f6:1b:38:c1:1a:8e:b8:
c9:55:1d:9d:b4:b4:91:a3:0b:8c:a2:f8:1e:f4:b2:
69:df:07:a3:1d:c8:ae:95:6b:46:8c:43:53:28:f9:
ee:86:fb:d2:f3:12:38:20:f6:9f:4e:0a:84:37:35:
38:a1:e7:4e:b2:f0:39:b5:bb:d2:80:5b:54:d6:93:
75:a0:11:26:af:fe:fb:3c:d8:b9:a2:4f:c2:7b:80:
31:3b:0f:d9:a1:e8:31:5c:8c:18:fd:0e:d4:9f:ee:
41:4e:43:cc:c6:f4:1f:3f:09:32:2f:7a:45:11:25:
a8:1a:3e:75:27:6f:6c:e9:9a:ea:5a:5b:91:2c:57:
e0:64:81:77:ed:3e:a3:ef:45:e3:66:e4:54:0c:b4:
4d:ec:e7:0b:f3:e0:01:88:03:db:9a:ec:a5:40:66:
ce:b9:36:62:8d:21:59:ab:f0:24:06:38:c1:e3:c9:
c8:fc:34:c1:87:5c:17:e1:cf:68:ea:4e:14:29:42:
60:4b:17:0b:ef:33:f9:cf:b6:2f:ca:34:1d:c4:2e:
21:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8E:CF:B1:73:CF:B5:BC:99:F8:6A:65:73:14:0C:3E:39:03:74:CC:DF
X509v3 Authority Key Identifier:
keyid:FE:53:42:6E:23:61:BA:66:5D:8F:25:BD:3C:FA:EF:C2:0E:BD:A4:88
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/_lNCbiNhumZdjyW9PPrvwg69pIg.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/7083b8-158f-40d2-91cc-9775a5d6604c/1/_lNCbiNhumZdjyW9PPrvwg69pIg.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:d2:40:e6:1b:86:ac:75:07:bb:5b:52:86:93:02:f2:6f:15:
ee:49:dd:8b:c8:6a:e0:29:21:3c:85:43:4f:e3:5b:58:39:31:
9e:a2:21:4c:c9:36:9a:2c:5b:b7:51:a6:07:04:ab:ee:3c:c2:
25:8f:41:ce:e9:1c:0a:2d:06:2c:25:bc:2d:ec:3b:3e:a9:b9:
53:96:a8:10:a6:a8:4d:3e:03:22:4a:2d:dd:68:4d:ba:af:8c:
4a:2f:0e:a9:f4:08:de:84:a6:ba:8b:58:ec:f4:10:e1:7c:7b:
60:2a:ea:a2:b5:aa:ef:f4:0f:ec:d9:17:18:b3:6a:c7:d3:68:
bd:0d:a7:20:0e:14:fb:41:61:81:61:01:52:87:66:38:15:4a:
70:dc:f2:f1:77:48:ed:2e:01:ab:1c:26:96:73:08:00:fd:d2:
39:71:3c:cb:a7:25:ae:c1:c4:e7:70:7f:e4:12:b9:4f:36:08:
8c:90:68:b6:f6:f5:2f:5c:7f:e6:8d:a6:9d:68:43:90:99:0c:
6d:d0:df:17:fe:78:db:6d:e0:08:f4:9b:23:b1:b5:b1:f2:89:
fa:95:e7:9a:fe:ef:a7:09:a1:b8:b2:30:17:f8:8f:3f:cc:02:
65:3b:3c:fe:96:eb:ea:61:d0:59:13:81:06:c1:26:9b:5a:90:
8e:e5:55:d2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 01:39:06 2026 by rpki-client