Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
File: cW9tEfDOYyMBgac_haZmFw9zib0.mft (raw, json)
Hash identifier: /C0fQtlBn/1LqZsi0Fr1Jca4JRWvu3/kxusAwF1LQtI=
Subject key identifier: 80:B5:13:0C:18:14:EC:11:78:5C:D8:8E:C3:FF:12:F6:C9:98:3C:26
Authority key identifier: 71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
Certificate issuer: /CN=716f6d11f0ce63230181a73f85a666170f7389bd
Certificate serial: 019EC1B70F48826696FCC56326B24F7BCFEF
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
Manifest number: 0E7D
Signing time: Sat 13 Jun 2026 16:01:00 +0000
Manifest this update: Sat 13 Jun 2026 16:01:00 +0000
Manifest next update: Sun 14 Jun 2026 16:01:00 +0000
Files and hashes: 1: 6f1i3xvOw5Akrk8EPZTaku38e58.roa (hash: yAZKqI7wHi0H5V8PrGtfeSpp18rf8v5uoZXgPYXu5QA=)
2: cW9tEfDOYyMBgac_haZmFw9zib0.crl (hash: A/VhReHNstFUFhKL0ces7oioKmt+BBWBehK5aB7D+6s=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 16:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:b7:0f:48:82:66:96:fc:c5:63:26:b2:4f:7b:cf:ef
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=716f6d11f0ce63230181a73f85a666170f7389bd
Validity
Not Before: Jun 13 16:01:00 2026 GMT
Not After : Jun 14 16:01:00 2026 GMT
Subject: CN=80b5130c1814ec11785cd88ec3ff12f6c9983c26
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:fa:da:b6:ac:d5:75:47:e9:e7:79:1a:d3:63:
90:4f:90:b7:ff:46:c3:7b:23:15:e0:f8:e8:9b:05:
49:ed:a1:8d:a9:34:e2:cd:c9:62:bc:01:77:cd:d4:
f3:fb:36:ee:d9:45:6c:ca:a9:f9:7b:ca:a1:8d:3a:
19:33:3c:b1:62:d9:8d:5f:20:f8:af:f1:39:47:a2:
97:6f:7b:47:38:8b:18:09:8d:91:61:d4:25:85:82:
97:f5:57:38:c7:25:3e:71:93:71:c0:7a:f7:0c:b5:
de:10:b5:cf:a5:b2:6c:1a:2e:9b:b7:c0:f7:f9:20:
8f:f0:a6:1d:9c:8c:1c:d9:bb:37:42:60:69:2e:de:
c3:af:04:26:14:7a:c8:e1:63:ad:35:9c:81:09:71:
32:49:f7:5e:73:be:66:7e:9f:0c:6c:f5:9a:de:21:
29:5f:ff:30:86:47:c1:b4:44:36:47:a9:38:06:dd:
f0:74:90:df:0e:af:33:f4:60:80:d4:d5:63:67:23:
ea:1c:4d:a6:af:3e:81:26:be:33:d1:0d:e3:88:ab:
1e:8e:aa:7d:ac:9f:ae:82:8e:ca:da:41:1d:58:54:
bb:73:d2:60:cf:6c:e3:7d:2f:0c:c0:e2:f5:3a:b7:
90:31:dd:a3:b3:17:36:52:aa:56:0f:c1:32:79:74:
3a:77
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:B5:13:0C:18:14:EC:11:78:5C:D8:8E:C3:FF:12:F6:C9:98:3C:26
X509v3 Authority Key Identifier:
keyid:71:6F:6D:11:F0:CE:63:23:01:81:A7:3F:85:A6:66:17:0F:73:89:BD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cW9tEfDOYyMBgac_haZmFw9zib0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/33/b6a233-6f80-4f4e-9312-e3f49ac49560/1/cW9tEfDOYyMBgac_haZmFw9zib0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1c:06:7f:a9:23:83:08:0f:42:7c:4f:99:5d:31:90:6a:cf:a7:
3d:72:cc:e5:91:fc:32:c7:33:f6:81:18:97:54:85:b5:e7:47:
46:20:02:cd:0f:36:2d:98:db:07:a0:d4:25:c6:50:1f:ca:44:
23:a4:64:6b:56:7b:77:7c:2b:f0:45:87:4f:c7:d3:8c:8c:02:
cd:7a:0b:03:dc:28:a0:b1:24:45:21:85:0a:e9:0a:58:5a:4c:
23:23:93:f9:49:12:80:7b:1d:e6:b6:c4:88:3a:71:9a:55:87:
08:70:e8:f3:77:c9:82:d5:95:bc:6f:4c:04:e8:64:1b:ba:1d:
cb:76:e9:5f:ac:4a:6e:85:c9:65:ac:4e:e0:6f:cb:53:96:e9:
f1:ca:de:ea:17:10:d7:7c:71:d9:ec:c5:8f:6c:e7:0d:73:e9:
7d:1b:7b:d5:83:84:e9:2b:7f:3c:b0:2e:06:eb:2c:06:2c:49:
ca:30:5a:f5:fd:c3:a9:a5:a2:1f:70:d0:1c:00:92:53:60:f8:
53:5d:be:e2:0a:c0:8e:4d:8a:b3:ec:39:6c:4b:64:e5:fc:e4:
45:43:4c:f6:54:6f:15:39:70:d4:1b:29:1d:56:f8:c9:36:5a:
b5:98:68:3a:d1:bb:46:26:07:2a:12:be:fe:e7:37:c9:0c:9c:
c6:23:f9:f5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 22:10:55 2026 by rpki-client