Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
File: S2jh-6e0SntmYjayElPX1jYtDYM.mft (raw, json)
Hash identifier: PeM9tTwC5wyswjd1g09Zwnm4+r05G2e3NGa7c50SBVY=
Subject key identifier: 9F:B3:3F:00:F3:FE:49:D4:6F:F5:8E:FF:13:1E:C7:FF:0D:05:DA:B4
Authority key identifier: 4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
Certificate issuer: /CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Certificate serial: 019EC224BF2133A8DC874181449BC587B10A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
Manifest number: 06A0
Signing time: Sat 13 Jun 2026 18:00:48 +0000
Manifest this update: Sat 13 Jun 2026 18:00:48 +0000
Manifest next update: Sun 14 Jun 2026 18:00:48 +0000
Files and hashes: 1: NuG7e-eaeYmgEKzW-gA4hm0E3yg.roa (hash: jBGdM1PIKUvp7PqxpDnR+tYU0/z5UBNUNem3R8n/8fI=)
2: S2jh-6e0SntmYjayElPX1jYtDYM.crl (hash: dmjZtFvAIq0tGEdtsIqvzG/0PpyjMacDFbPpf+ffK8s=)
3: cYnE7FavrDSt3SrEYya63HS7_dI.roa (hash: KGEvNenXcCeg3TCO3nqemstjyExiwPsWFQTV1a5VNaA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 10:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:24:bf:21:33:a8:dc:87:41:81:44:9b:c5:87:b1:0a
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4b68e1fba7b44a7b666236b21253d7d6362d0d83
Validity
Not Before: Jun 13 18:00:48 2026 GMT
Not After : Jun 14 18:00:48 2026 GMT
Subject: CN=9fb33f00f3fe49d46ff58eff131ec7ff0d05dab4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:61:d4:41:97:ee:03:0c:b4:b2:25:86:41:df:
70:72:49:01:5c:80:23:17:0c:16:68:30:ca:b5:4c:
fa:9e:8d:a7:85:45:bf:c6:d9:ef:99:f5:0b:61:bc:
96:5b:c7:dc:8a:06:e6:bb:fd:65:3d:4c:fd:66:2c:
04:2b:8a:eb:bc:a6:93:fe:ef:20:9c:34:3b:e9:91:
9c:d6:4b:f7:58:f4:9e:6c:df:8a:2d:26:ae:de:a8:
e3:e9:7c:45:f4:e1:b9:97:24:d4:5c:cc:41:75:6b:
51:58:87:af:57:89:7d:ac:01:14:ce:8a:87:3e:12:
fa:be:a1:7c:8d:3d:49:be:ae:e6:6c:a4:dc:f3:37:
0b:58:66:97:9c:d0:2f:34:d9:60:38:b4:dd:77:9b:
c2:9a:19:a7:4a:3e:4c:d9:b9:38:e8:e4:66:8f:dd:
a3:3d:da:ef:b8:69:c8:51:c7:36:1e:f4:db:0d:f2:
4a:4a:90:60:1e:a5:83:90:fc:9c:6f:e5:9e:84:bf:
d5:ad:4e:f2:f6:fd:63:7f:83:9d:d1:ee:a4:11:f0:
cb:8b:88:9d:8f:76:d2:13:e3:c4:db:2d:05:e3:a3:
95:54:43:b1:e7:5f:b5:0f:5a:bf:54:a6:16:b7:a4:
33:b2:15:db:5a:26:b7:cd:ce:54:28:46:0c:47:6a:
77:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9F:B3:3F:00:F3:FE:49:D4:6F:F5:8E:FF:13:1E:C7:FF:0D:05:DA:B4
X509v3 Authority Key Identifier:
keyid:4B:68:E1:FB:A7:B4:4A:7B:66:62:36:B2:12:53:D7:D6:36:2D:0D:83
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/S2jh-6e0SntmYjayElPX1jYtDYM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/f14079-4114-4bec-879c-8b06ec564a1b/1/S2jh-6e0SntmYjayElPX1jYtDYM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1b:9c:36:da:60:7b:71:39:ea:4d:ba:f3:de:3e:15:1e:a2:e0:
ec:29:49:ef:16:77:e7:8d:84:17:e3:1e:4d:8c:10:a6:6d:e2:
59:ff:d3:4e:c0:35:ce:29:a4:b5:9b:f6:d7:3a:37:2f:ae:ca:
7c:39:9a:d1:53:15:65:12:6e:07:fc:9d:94:dc:3c:3e:84:7c:
1a:0e:10:b0:8f:51:d8:cb:fa:e1:cf:b1:f7:47:48:90:e8:4b:
63:e1:ac:df:90:45:17:21:22:f1:77:d0:d0:54:87:23:16:fb:
54:d7:77:14:a9:d4:e3:5c:75:1a:21:17:60:9a:48:c7:f5:fe:
41:58:34:0a:69:2d:d2:83:e2:0d:58:ee:56:ce:b7:7a:5f:49:
56:37:0f:d1:e2:29:dd:0c:a9:44:78:1c:04:de:38:7c:28:29:
bb:13:41:d9:1a:cd:a4:bb:67:7e:d7:34:2c:25:1c:19:86:2a:
f2:3e:89:90:8c:a0:39:0f:5f:37:66:d3:ec:73:f9:06:d9:53:
4f:06:0f:1d:87:43:94:a6:f3:f6:d4:82:60:36:e2:13:8d:13:
1e:28:57:5a:7f:fa:f2:c7:60:af:8b:60:5c:e9:e9:e0:7a:02:
f3:fa:de:a9:75:e9:86:5c:5a:1c:83:20:7f:0e:f1:fb:d4:63:
62:1a:a8:d5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 19:45:51 2026 by rpki-client