Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
File: rKbwaDzHS63SOoFAw4XxyBziTfc.mft (raw, json)
Hash identifier: vF4bKFRve8zIMJ9MoG8Ni6yNvKspPAFWlKNTJz/JJkI=
Subject key identifier: F6:60:8E:C8:C5:F0:0E:59:01:0D:F4:0C:A1:E5:CA:49:AE:C0:97:08
Authority key identifier: AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
Certificate issuer: /CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Certificate serial: 019EC25C86A648956FDB793D14BDA5329F04
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
Manifest number: 1004
Signing time: Sat 13 Jun 2026 19:01:44 +0000
Manifest this update: Sat 13 Jun 2026 19:01:44 +0000
Manifest next update: Sun 14 Jun 2026 19:01:44 +0000
Files and hashes: 1: Hl-oGjMEXSHh22tv7GvQWauR6Ls.roa (hash: k0kjDMHyxNG6XHvsH8YWl0QTbYb+WeHWx5ruPE+qWhs=)
2: rKbwaDzHS63SOoFAw4XxyBziTfc.crl (hash: qm1C+ISK9ESp450z1quRCUgrqLN7ajN6h+yBwIGcakE=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:5c:86:a6:48:95:6f:db:79:3d:14:bd:a5:32:9f:04
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=aca6f0683cc74badd23a8140c385f1c81ce24df7
Validity
Not Before: Jun 13 19:01:44 2026 GMT
Not After : Jun 14 19:01:44 2026 GMT
Subject: CN=f6608ec8c5f00e59010df40ca1e5ca49aec09708
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:3a:3c:8f:6a:5a:81:6b:f0:2a:0d:c2:ce:ab:
de:20:62:2b:3c:cb:a3:32:16:c5:96:6b:26:d8:ca:
e9:33:2a:02:26:a2:e3:fd:a1:31:48:51:03:23:4a:
ed:ef:28:e8:82:45:f7:96:4b:5b:97:b9:79:7b:f1:
6b:43:b1:74:99:76:bd:73:11:9a:33:89:61:e9:23:
58:ac:8d:63:fb:25:19:8f:4c:9c:49:92:d3:03:d9:
f7:7b:49:d8:f0:f4:c2:f7:be:38:2b:79:c9:c5:82:
23:54:06:a5:53:98:1c:95:06:e4:cb:9d:45:75:7a:
30:9b:75:62:30:f9:12:23:8a:96:40:44:58:ee:89:
bc:08:6f:48:6b:7b:74:c8:16:f6:af:c0:f9:71:ed:
ff:6e:6c:25:bc:f4:5e:71:a9:bd:e6:df:8a:e4:69:
23:a7:c5:8e:62:85:f4:2a:51:5b:e3:70:5f:a7:a7:
30:69:61:8d:f9:ba:27:98:4f:cc:dc:95:14:dd:18:
1c:ba:f7:57:69:c1:2a:fc:ce:3d:5a:5d:b1:cf:90:
39:e7:69:b8:d3:2c:ab:63:9a:96:0a:7e:0c:c7:f6:
fe:9e:63:c4:9a:20:32:9a:88:42:0f:73:d5:33:79:
f9:94:fa:ad:8c:8a:39:00:57:1d:2b:d7:e2:3b:02:
fa:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:60:8E:C8:C5:F0:0E:59:01:0D:F4:0C:A1:E5:CA:49:AE:C0:97:08
X509v3 Authority Key Identifier:
keyid:AC:A6:F0:68:3C:C7:4B:AD:D2:3A:81:40:C3:85:F1:C8:1C:E2:4D:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rKbwaDzHS63SOoFAw4XxyBziTfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/31/2d4818-f182-4b46-9e8c-0827961c05e0/1/rKbwaDzHS63SOoFAw4XxyBziTfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
3c:ce:55:a8:1c:1e:44:e2:8f:5f:f2:0f:d9:ca:73:12:24:bf:
a6:12:2f:c1:26:09:87:2a:8e:11:53:99:55:28:a1:4a:4d:e8:
90:91:94:1b:57:50:35:4d:7b:38:87:bc:59:be:92:62:30:d0:
11:8a:b0:3c:81:9c:8c:f3:17:2a:5f:d1:18:5b:34:e9:3f:81:
d3:b0:0f:b7:52:26:f6:28:6e:9d:99:08:97:54:fe:c7:a8:c0:
ae:d1:b7:61:d9:47:f5:ed:be:ef:84:4a:98:78:16:b9:18:35:
ae:0e:c3:fa:54:dd:55:d0:d5:12:14:c9:c9:a9:fd:b9:1d:ff:
2a:a5:60:71:6c:f9:75:00:40:fe:ac:ce:d2:ed:45:f9:70:69:
99:45:f5:92:3f:24:21:d4:ce:6f:03:c5:7b:0b:d6:e5:03:5b:
7a:32:7a:7f:85:ec:37:09:a7:db:1b:58:f6:ce:b6:70:2f:c2:
01:19:91:0f:05:70:76:cf:5e:60:4f:c0:f4:2a:e2:cd:ba:db:
47:20:d7:de:69:44:8e:2d:37:95:bc:93:82:ab:c7:ff:1a:ba:
71:00:e6:df:48:d7:b3:36:44:18:b4:be:32:7b:19:b0:aa:9d:
e0:4e:1c:ba:3a:9c:36:81:6f:0b:e5:42:c6:65:dc:35:13:fe:
27:6a:12:8d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 04:05:11 2026 by rpki-client