Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
File: 1PhqmjxCnBvCbsBqOuTkF8p0394.mft (raw, json)
Hash identifier: LHGloNwo4QqJw1KgalBG9zNOT1Z96NHPe3GcT//JcgA=
Subject key identifier: 28:D8:B8:AC:40:65:2E:C3:48:0C:88:4B:3A:50:CA:A1:D9:C0:97:95
Authority key identifier: D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
Certificate issuer: /CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Certificate serial: 019EC1EE44B62748CAB88F0FBA06EF918A3C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
Manifest number: 0BE4
Signing time: Sat 13 Jun 2026 17:01:18 +0000
Manifest this update: Sat 13 Jun 2026 17:01:18 +0000
Manifest next update: Sun 14 Jun 2026 17:01:18 +0000
Files and hashes: 1: 1PhqmjxCnBvCbsBqOuTkF8p0394.crl (hash: 6MSSDp/ykBb7A6V2GqNV1QqAObAXPA1bq5KXUOZ25Nk=)
2: Ew4ekZGDXX43yD0-ieU7rv9LPdY.asa (hash: UGPgFojxF93NEr3l+qQTH+Bt2iuDcML85Xezl8OoPI8=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c1:ee:44:b6:27:48:ca:b8:8f:0f:ba:06:ef:91:8a:3c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d4f86a9a3c429c1bc26ec06a3ae4e417ca74dfde
Validity
Not Before: Jun 13 17:01:18 2026 GMT
Not After : Jun 14 17:01:18 2026 GMT
Subject: CN=28d8b8ac40652ec3480c884b3a50caa1d9c09795
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:18:77:55:fc:5d:68:46:d0:dd:fc:6d:88:9b:
8c:cc:6f:05:7e:fc:67:81:85:93:4b:e2:12:42:73:
fb:bc:5f:90:fd:55:2a:37:a2:e5:44:c6:73:bf:0b:
7f:cc:dc:68:73:37:37:13:89:11:ed:53:78:a1:d3:
7e:4a:9b:e0:64:88:5f:81:9a:27:23:1d:6a:05:16:
03:77:8f:3f:0b:ec:5e:02:fa:fa:b2:b8:47:eb:04:
90:1d:dd:c6:8a:dc:de:0d:d4:a7:f1:eb:67:59:bf:
0d:6e:d5:1a:22:0c:6a:35:4d:9c:e0:b4:85:0e:8d:
d2:eb:dc:a8:31:39:d7:69:e2:4b:b9:5c:30:69:f1:
17:65:fb:55:3b:78:de:29:95:35:6e:10:2d:4c:f8:
16:3b:a1:7c:7c:29:23:09:42:5f:37:4a:ab:28:8a:
f4:dc:36:da:8a:4e:20:35:71:c5:d3:4d:4f:d2:38:
85:f5:2b:c1:e5:19:9f:c9:c0:29:6c:39:11:f8:24:
ee:70:7d:5c:17:8c:36:3e:ac:f7:ce:bc:1b:08:64:
79:b8:d0:3f:2a:bf:3d:2e:e2:d6:41:1f:b7:d6:29:
2a:4c:b0:8b:d4:8f:a3:e5:66:04:8b:43:57:df:87:
08:da:93:ad:a2:cd:df:ce:73:5a:12:d9:2b:cb:3e:
1c:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
28:D8:B8:AC:40:65:2E:C3:48:0C:88:4B:3A:50:CA:A1:D9:C0:97:95
X509v3 Authority Key Identifier:
keyid:D4:F8:6A:9A:3C:42:9C:1B:C2:6E:C0:6A:3A:E4:E4:17:CA:74:DF:DE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/1PhqmjxCnBvCbsBqOuTkF8p0394.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/a5e531-1a08-4336-b0d8-4832659994cb/1/1PhqmjxCnBvCbsBqOuTkF8p0394.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:f9:50:29:62:a3:4d:38:fe:04:e3:52:25:76:44:d5:0f:ed:
1f:ef:86:81:61:07:73:6e:2c:c8:26:4a:ef:ab:08:6a:e8:c8:
92:67:ba:cc:e2:60:a5:bb:23:2d:0a:bc:e4:96:07:0a:fa:79:
de:3e:66:51:2d:06:5e:53:03:f1:bb:b0:e8:8b:96:21:39:10:
75:a3:25:46:36:c1:21:55:0d:9f:02:01:d7:d8:73:8c:fd:40:
98:de:19:2e:35:be:f8:80:25:5d:2a:d8:bd:6d:48:48:6a:9d:
46:26:b8:05:54:37:8c:05:32:1f:4c:d6:7d:fd:58:0f:7d:62:
23:89:a3:28:36:9c:12:12:36:f5:96:eb:8d:7e:0d:23:0a:da:
f7:57:d4:cd:84:fa:f6:b2:96:17:e4:25:d2:f3:97:75:bc:1e:
6a:6d:bf:8b:23:26:d8:45:e7:fa:b1:1b:29:2d:c4:b1:21:e5:
1b:fb:e0:c2:01:c6:42:c8:f2:63:9a:ad:d6:e2:c3:7d:af:b8:
d2:8f:12:70:35:a7:05:f0:b5:e9:f7:54:55:93:ad:71:31:65:
8c:ea:cc:26:d3:32:57:1b:97:aa:fa:41:b9:89:8e:1b:b5:68:
cc:c1:28:28:6e:15:c2:49:61:28:41:9d:a4:91:b2:30:e0:b0:
04:92:ed:bd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 00:56:15 2026 by rpki-client