Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
File: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft (raw, json)
Hash identifier: xvguDsF9r4aracNLnwWA61vvghOu9PD2tA8sNb+r6t8=
Subject key identifier: F6:C3:19:EB:50:E8:B4:06:CF:8E:DD:35:26:13:4A:9E:38:BD:14:DB
Authority key identifier: D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
Certificate issuer: /CN=d248185956e443b55b062200f964537bc10bc130
Certificate serial: 019EBF23C6239C2046CB73BD030E37836398
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
Manifest number: 05C9
Signing time: Sat 13 Jun 2026 04:00:53 +0000
Manifest this update: Sat 13 Jun 2026 04:00:53 +0000
Manifest next update: Sun 14 Jun 2026 04:00:53 +0000
Files and hashes: 1: 0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl (hash: OOcZhB6v1Zac04vWxSzdt6m9pZp20DiilUbJIsMjdmw=)
2: Xudz0hLe8s3SLmiPVONXMND3hRM.roa (hash: oORSmt43XgnSynXZgH2ISuQJ8Cm/DBrmnJwy75rrXHU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 01:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:bf:23:c6:23:9c:20:46:cb:73:bd:03:0e:37:83:63:98
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d248185956e443b55b062200f964537bc10bc130
Validity
Not Before: Jun 13 04:00:53 2026 GMT
Not After : Jun 14 04:00:53 2026 GMT
Subject: CN=f6c319eb50e8b406cf8edd3526134a9e38bd14db
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ef:78:70:4e:06:88:45:a1:fc:ee:93:47:c7:c1:
ca:6e:c4:b4:1b:3a:c6:a8:12:95:40:23:66:33:85:
4a:93:3b:85:f0:68:8a:d1:8c:6d:9f:4b:a0:26:14:
8d:2a:50:0a:1e:0d:83:9b:1d:5c:45:4d:fe:d6:a3:
ec:20:8b:08:a4:78:4d:3a:bc:cd:39:bb:02:43:5d:
c6:fa:1e:58:23:c8:85:c4:d9:fc:56:ae:cd:b8:77:
cc:a4:b6:1c:62:fe:68:65:6a:6c:32:ab:5d:40:de:
17:e3:88:64:8c:cc:e3:d1:bd:95:c3:cb:60:2f:9f:
b2:35:3e:84:a4:c8:2c:d6:fc:06:47:c3:ac:a8:e3:
da:bf:0f:63:2a:46:32:66:f9:47:c6:b9:26:af:53:
43:5a:82:5f:6f:f0:08:11:9d:bd:4d:c8:75:f0:13:
8e:a0:ef:87:cc:12:15:19:32:66:26:af:ce:a9:31:
0a:b6:0b:e1:5b:4d:23:44:2c:f3:65:d2:db:34:92:
f4:d5:89:a4:7f:00:be:94:c4:ba:34:54:d9:ca:d4:
1d:d8:af:b5:37:fa:67:07:5f:b6:29:c6:15:c5:d5:
f1:30:b4:49:61:e1:2e:f1:e6:46:5d:be:60:bc:1b:
60:65:ac:83:3d:55:ef:76:72:ea:1c:18:7b:d4:0e:
bd:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F6:C3:19:EB:50:E8:B4:06:CF:8E:DD:35:26:13:4A:9E:38:BD:14:DB
X509v3 Authority Key Identifier:
keyid:D2:48:18:59:56:E4:43:B5:5B:06:22:00:F9:64:53:7B:C1:0B:C1:30
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/36/de875a-0576-4a15-be23-aea054cf43bb/1/0kgYWVbkQ7VbBiIA-WRTe8ELwTA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b4:a3:ac:01:d5:b1:6d:03:bd:03:5a:32:c0:ea:95:3d:13:09:
60:04:ce:c6:de:75:b8:29:2a:c6:d1:bc:10:03:73:d6:fd:b9:
e1:1d:61:b3:67:10:fc:cf:14:43:0e:ef:a9:43:57:4c:32:90:
d7:4a:43:29:3f:a2:b2:bb:2b:c4:10:0a:6b:fb:a6:bf:ac:42:
4c:4b:0b:18:d3:1b:31:76:a7:51:df:00:57:cb:ab:09:11:b7:
4b:84:4b:dd:82:eb:83:f6:76:66:0d:03:6b:c1:11:33:52:a8:
3c:56:80:24:ab:e6:a9:c8:ac:45:d2:22:4a:5e:b0:ab:47:73:
13:c4:fa:c7:0a:05:dc:10:c1:52:c4:5b:21:07:fa:a8:f6:56:
ab:0e:0b:15:35:6f:5b:8b:12:b4:d7:ea:5e:cf:81:b8:54:a9:
cb:da:b2:4a:41:c7:21:45:2d:51:11:d4:89:8f:ee:d1:9b:e5:
21:57:d3:60:b4:dd:fd:c6:e6:cc:88:e3:f2:1d:eb:7c:31:b7:
7b:dc:a0:c2:8b:53:a1:f8:29:4f:dc:5d:67:06:de:90:bb:9e:
d0:b5:f5:09:cc:a3:6e:ca:80:87:ed:4f:9c:ae:f2:fb:e8:1a:
83:02:5c:d4:48:7a:05:07:eb:a1:69:6c:f7:ac:ce:e6:8f:90:
d0:c8:01:e6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 09:18:55 2026 by rpki-client