Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
File: 1gTknpKDBavLjzLe8_78A-u83kQ.mft (raw, json)
Hash identifier: Vrom0vlcsw338qu8zu4Sy1hU4u9IYjjcsCMn4zYs04U=
Subject key identifier: FC:4E:1B:00:43:92:FD:D0:AE:8A:05:09:5B:95:9A:83:22:83:6E:A8
Authority key identifier: D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
Certificate issuer: /CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Certificate serial: 019EBE47995FF9B93168A133067466593CE8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
Manifest number: 18EC
Signing time: Sat 13 Jun 2026 00:00:23 +0000
Manifest this update: Sat 13 Jun 2026 00:00:23 +0000
Manifest next update: Sun 14 Jun 2026 00:00:23 +0000
Files and hashes: 1: 1gTknpKDBavLjzLe8_78A-u83kQ.crl (hash: vRh4Y7/NQ7VDPJR+SJbNTcb1C/321G106ONPoRTQs00=)
2: O3NHX1xusGOC_jwAncPD2CBztNE.roa (hash: tIvb5cVDrsiT8uq8kfesqrbk5rRYub73yqvQwpeTOXo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:99:5f:f9:b9:31:68:a1:33:06:74:66:59:3c:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d604e49e928305abcb8f32def3fefc03ebbcde44
Validity
Not Before: Jun 13 00:00:23 2026 GMT
Not After : Jun 14 00:00:23 2026 GMT
Subject: CN=fc4e1b004392fdd0ae8a05095b959a8322836ea8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:ee:1a:53:a6:22:cd:2e:9e:97:7e:c0:a9:87:
d7:f8:2c:f1:d0:f5:ca:39:02:2f:af:71:6c:1b:d9:
94:af:e6:62:ea:1c:47:1d:66:ab:0d:e1:95:a5:21:
69:ce:fd:47:e0:90:2d:1c:94:7d:46:ce:d2:5e:61:
e4:4d:c7:f3:8d:a0:9f:fd:58:86:81:e0:00:6c:c6:
c6:ce:54:6d:49:99:42:aa:9c:0c:59:e1:a0:37:1a:
b5:4e:9f:d4:08:5b:ff:14:d8:16:c1:46:b5:af:25:
4f:a7:fb:11:d0:d8:54:32:38:50:67:23:4b:14:4f:
99:3f:7d:68:9a:bf:19:b0:dc:f2:f7:e3:d2:45:76:
ea:ea:ec:77:95:c1:85:b0:67:23:50:f1:3e:41:11:
7f:fe:f0:6d:c7:ac:39:9e:6f:4b:3b:cd:b6:cb:c3:
12:c6:92:73:1b:c3:32:b3:36:16:56:26:fc:5b:4a:
78:ca:8f:87:df:59:03:e0:19:ff:b1:79:72:83:48:
34:d2:ae:02:b6:8a:6d:44:01:29:2c:c0:7c:2c:c1:
0d:c0:d3:4f:be:b4:e3:dc:d4:1f:95:8f:a0:3c:7a:
65:cc:93:6e:13:a6:c8:f3:0d:b7:5d:19:6a:b4:8f:
cc:dc:5d:eb:99:68:82:05:b5:8d:41:ab:20:09:6c:
8b:dd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FC:4E:1B:00:43:92:FD:D0:AE:8A:05:09:5B:95:9A:83:22:83:6E:A8
X509v3 Authority Key Identifier:
keyid:D6:04:E4:9E:92:83:05:AB:CB:8F:32:DE:F3:FE:FC:03:EB:BC:DE:44
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1gTknpKDBavLjzLe8_78A-u83kQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/10/a830a2-0271-4de9-bc38-03c82157421a/1/1gTknpKDBavLjzLe8_78A-u83kQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0b:47:06:5a:8e:75:39:5c:aa:e1:78:63:a3:54:27:c6:39:72:
90:2c:ea:a1:f2:14:d7:85:25:11:ac:f5:c3:de:68:9c:6f:35:
7f:19:75:9f:f9:fd:5d:36:33:c9:ed:cc:6a:5a:84:43:4c:de:
9b:c3:40:01:b7:8c:ca:90:a0:68:4c:94:0a:21:75:ae:8c:30:
4f:21:f6:a1:9c:00:d2:c5:e4:ad:b0:e2:24:38:33:8b:61:3d:
3a:a0:f9:f2:a2:5f:62:5c:18:62:3e:0a:b4:7e:15:a8:eb:4b:
72:4f:8d:52:85:bc:8d:f7:77:7c:84:99:37:ea:f9:78:76:84:
33:14:08:72:6f:c4:61:9b:9d:df:8f:dc:8a:2c:41:9a:ad:fe:
34:33:7c:cf:18:8e:28:51:67:85:fe:2d:32:53:d9:32:24:a1:
ed:a6:93:a8:c1:30:26:ae:04:c6:03:44:ce:26:90:db:6f:a8:
d2:e9:b1:82:23:5e:1f:30:09:e7:ad:9f:e9:db:d9:23:9f:10:
db:6e:7f:ee:d9:40:7e:cd:6b:1e:89:36:a8:28:90:2c:af:4d:
cb:35:b6:b1:0f:c9:28:74:31:b5:66:e5:f3:34:4d:13:11:2c:
e0:37:87:b5:bf:61:9c:a1:fb:82:fe:15:e5:23:aa:a0:bb:65:
4a:8a:c3:dd
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZ6+R5lf+bkxaKEzBnRmWTzoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGQ2MDRlNDllOTI4MzA1YWJjYjhmMzJkZWYzZmVmYzAzZWJi
Y2RlNDQwHhcNMjYwNjEzMDAwMDIzWhcNMjYwNjE0MDAwMDIzWjAzMTEwLwYDVQQD
EyhmYzRlMWIwMDQzOTJmZGQwYWU4YTA1MDk1Yjk1OWE4MzIyODM2ZWE4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyu4aU6YizS6el37AqYfX+Czx0PXK
OQIvr3FsG9mUr+Zi6hxHHWarDeGVpSFpzv1H4JAtHJR9Rs7SXmHkTcfzjaCf/ViG
geAAbMbGzlRtSZlCqpwMWeGgNxq1Tp/UCFv/FNgWwUa1ryVPp/sR0NhUMjhQZyNL
FE+ZP31omr8ZsNzy9+PSRXbq6ux3lcGFsGcjUPE+QRF//vBtx6w5nm9LO822y8MS
xpJzG8MyszYWVib8W0p4yo+H31kD4Bn/sXlyg0g00q4CtoptRAEpLMB8LMENwNNP
vrTj3NQflY+gPHplzJNuE6bI8w23XRlqtI/M3F3rmWiCBbWNQasgCWyL3QIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFPxOGwBDkv3QrooFCVuVmoMig26oMB8GA1UdIwQY
MBaAFNYE5J6SgwWry48y3vP+/APrvN5EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvMWdUa25wS0RCYXZManpMZThfNzhBLXU4M2tRLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9hODMwYTItMDI3MS00ZGU5LWJjMzgt
MDNjODIxNTc0MjFhLzEvMWdUa25wS0RCYXZManpMZThfNzhBLXU4M2tRLm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8xMC9hODMwYTItMDI3MS00ZGU5LWJjMzgtMDNjODIxNTc0MjFh
LzEvMWdUa25wS0RCYXZManpMZThfNzhBLXU4M2tRLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAC0cGWo51
OVyq4Xhjo1QnxjlykCzqofIU14UlEaz1w95onG81fxl1n/n9XTYzye3MalqEQ0ze
m8NAAbeMypCgaEyUCiF1rowwTyH2oZwA0sXkrbDiJDgzi2E9OqD58qJfYlwYYj4K
tH4VqOtLck+NUoW8jfd3fISZN+r5eHaEMxQIcm/EYZud34/ciixBmq3+NDN8zxiO
KFFnhf4tMlPZMiSh7aaTqMEwJq4ExgNEziaQ22+o0umxgiNeHzAJ562f6dvZI58Q
225/7tlAfs1rHok2qCiQLK9NyzW2sQ/JKHQxtWbl8zRNExEs4DeHtb9hnKH7gv4V
5SOqoLtlSorD3Q==
-----END CERTIFICATE-----
Generated at Sat Jun 13 07:31:30 2026 by rpki-client