Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
File: 0jtkd-HIT1KQfNYMY-qD715Kx4I.mft (raw, json)
Hash identifier: X5wnf4RXULT8IS7LwQfvsYC2KmG70jM4BNidF9BdQoI=
Subject key identifier: 71:B9:5E:6E:3F:5B:DE:DF:09:1C:2F:9B:D9:47:6F:56:82:57:D4:8E
Authority key identifier: D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
Certificate issuer: /CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Certificate serial: 019EBF5B1524C994D6558ABEDB8EAADCF3C0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
Manifest number: 0CA6
Signing time: Sat 13 Jun 2026 05:01:17 +0000
Manifest this update: Sat 13 Jun 2026 05:01:17 +0000
Manifest next update: Sun 14 Jun 2026 05:01:17 +0000
Files and hashes: 1: 0jtkd-HIT1KQfNYMY-qD715Kx4I.crl (hash: c/DoFv6NOiRnuSaCfVsDjXJjgPiOQHWIhaXtx+FMZQ8=)
2: u74Y2DtNYCrFLzeUZsDA2ek1RJQ.roa (hash: v4D4CGF7IK7jFQI/k7wDX6FIFSnqg7cuKSN4Jo5u5mc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:5b:15:24:c9:94:d6:55:8a:be:db:8e:aa:dc:f3:c0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d23b6477e1c84f52907cd60c63ea83ef5e4ac782
Validity
Not Before: Jun 13 05:01:17 2026 GMT
Not After : Jun 14 05:01:17 2026 GMT
Subject: CN=71b95e6e3f5bdedf091c2f9bd9476f568257d48e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:34:7d:7c:a1:9a:a7:0a:08:4e:7a:96:93:65:
a3:c8:ec:8b:cc:6d:28:8d:52:e5:32:bf:79:a3:a8:
24:5b:68:25:0e:3f:49:fe:c5:55:a4:fd:f2:3c:81:
ab:1c:83:6c:86:22:6b:b7:dd:ae:9c:78:2a:27:82:
9b:75:24:94:8c:e8:75:7d:eb:0f:9c:f7:26:39:8d:
5b:bb:f7:1c:de:85:86:e3:a3:f6:74:61:aa:00:b7:
81:e3:21:84:3e:91:85:1a:7e:ac:8a:bf:d1:c4:20:
71:42:ec:54:18:6b:ee:23:84:73:e2:68:72:dd:99:
dc:54:2b:a3:5d:0e:2c:d4:3e:2f:80:2c:fe:f6:ff:
78:5b:f5:46:18:91:cc:d7:19:b6:8d:4e:76:33:f2:
66:55:37:af:f0:bf:5c:97:a8:f0:19:3c:78:59:47:
f9:17:d3:02:31:c3:78:2d:ff:81:f6:51:c7:48:c2:
bd:71:1b:60:fa:34:76:a1:f7:05:fe:e1:3c:80:2a:
b3:f2:3c:17:f4:cb:07:1e:30:15:d0:ce:79:36:b2:
c5:a5:37:07:99:55:53:58:de:5f:d7:a6:2b:93:e9:
9e:6e:73:74:2e:15:9b:61:b2:04:92:a1:c7:82:d1:
85:e6:5e:ae:c9:b4:89:f2:09:a2:ad:8e:3f:ab:98:
89:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
71:B9:5E:6E:3F:5B:DE:DF:09:1C:2F:9B:D9:47:6F:56:82:57:D4:8E
X509v3 Authority Key Identifier:
keyid:D2:3B:64:77:E1:C8:4F:52:90:7C:D6:0C:63:EA:83:EF:5E:4A:C7:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0jtkd-HIT1KQfNYMY-qD715Kx4I.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/11/4559fd-b409-479c-a40f-2255585ddecb/1/0jtkd-HIT1KQfNYMY-qD715Kx4I.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
ae:e8:0d:d2:bd:e1:51:85:bd:42:e5:fd:51:27:dd:17:a6:89:
9f:9d:b9:cb:54:87:16:91:57:f7:56:fd:17:71:ce:f3:2a:de:
90:44:1e:94:c3:03:ad:e2:20:fd:eb:c4:5c:e2:f4:e5:8c:56:
c5:2e:3a:f0:e2:67:3e:3b:d0:30:be:69:51:62:79:fe:6c:39:
dc:88:e4:db:19:d2:f4:23:31:f7:bb:fa:49:e5:0b:ae:f8:1d:
32:e7:8a:bd:9f:5d:1f:40:d6:41:07:5b:23:be:12:b5:2f:20:
75:9d:e4:b8:36:da:19:e7:63:b7:32:08:58:e5:b5:07:bb:f5:
86:97:f6:2c:c5:3c:eb:6d:82:38:02:96:e5:dd:f8:9a:e3:c6:
7a:ed:65:d8:c5:7c:08:66:5f:16:fd:8a:cb:cd:8a:a4:ab:53:
94:10:ae:b9:94:8d:62:c4:c1:87:15:ef:4e:7b:e9:01:7c:8e:
c6:cd:d9:4f:6b:26:5b:c5:c7:12:f1:2b:72:a6:3c:5f:ba:8b:
db:07:16:f9:9e:94:00:96:8f:58:cb:55:6a:7b:06:04:20:13:
b4:d9:bc:6e:55:aa:db:39:22:d8:7b:a3:33:cd:e0:22:0d:7e:
d2:9b:39:24:05:a6:c3:1a:2d:77:ee:00:51:85:b1:d8:7d:4c:
16:61:6c:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 08:48:49 2026 by rpki-client