Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
File: pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft (raw, json)
Hash identifier: 3gNg37tYWhlbV2vCqy2MKPP8wXxCYLC553wybBmYqhc=
Subject key identifier: 8F:C7:A0:4E:7D:F2:3C:16:5F:6C:A1:E9:80:EE:DD:88:9A:15:AD:B9
Authority key identifier: A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
Certificate issuer: /CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Certificate serial: 019EBE47B13A25EE8D4870FCFC1392E30D5D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
Manifest number: 18EA
Signing time: Sat 13 Jun 2026 00:00:29 +0000
Manifest this update: Sat 13 Jun 2026 00:00:29 +0000
Manifest next update: Sun 14 Jun 2026 00:00:29 +0000
Files and hashes: 1: RI1PUJj0Q_MD3P8uweukuXuYhlU.roa (hash: Udb4Yel6QV6x+EojTVD0SPU2vkANJh/DkSOzlaEFuOQ=)
2: pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl (hash: IGhfSgn2SQ/bcxhCqXN/O11um3fGAdRvHevgrjrJR1I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 00:00:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:be:47:b1:3a:25:ee:8d:48:70:fc:fc:13:92:e3:0d:5d
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a4abaf1d37f0a141a814ca02fc01e3d9621c73d9
Validity
Not Before: Jun 13 00:00:29 2026 GMT
Not After : Jun 14 00:00:29 2026 GMT
Subject: CN=8fc7a04e7df23c165f6ca1e980eedd889a15adb9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:bd:0f:a8:0e:dc:56:5f:c5:68:c9:61:df:fc:
98:77:a3:95:3e:41:cf:62:d0:e1:78:99:61:bb:60:
7c:1c:a8:4d:da:ed:03:12:51:b6:cb:a9:34:3d:f5:
03:de:4c:3a:76:77:a2:b2:07:ad:9b:ca:8b:c5:94:
64:ac:29:80:32:59:d6:ad:73:4d:92:d3:57:4d:d0:
81:23:0a:ec:be:42:c1:cc:0e:20:02:8a:9e:65:c9:
18:94:93:34:a4:40:b9:d8:00:af:32:52:5d:67:cd:
74:c9:44:a0:bd:34:04:e5:14:98:04:6c:72:08:10:
5b:d4:7b:33:64:fd:ec:06:4b:13:e5:0b:07:5e:93:
2f:50:3c:b9:dc:c6:93:a6:ca:05:d6:e0:b3:83:7a:
9d:a1:b9:40:93:15:c9:94:31:e7:65:2f:f3:25:63:
7b:6a:b5:e6:86:81:53:d7:28:9f:eb:6b:01:c2:90:
ba:2d:0d:c1:4e:d9:98:7e:92:e9:37:dc:72:25:8a:
e2:aa:fa:e5:3b:24:c9:2e:58:70:ea:22:ac:c1:45:
98:b3:68:81:49:3e:c5:58:ae:0b:39:ec:67:1c:f0:
31:52:40:e5:69:5f:b7:cf:fb:25:80:9e:b1:58:3f:
0c:fc:67:c8:c4:c8:51:76:4e:c5:42:90:25:8b:4a:
34:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:C7:A0:4E:7D:F2:3C:16:5F:6C:A1:E9:80:EE:DD:88:9A:15:AD:B9
X509v3 Authority Key Identifier:
keyid:A4:AB:AF:1D:37:F0:A1:41:A8:14:CA:02:FC:01:E3:D9:62:1C:73:D9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pKuvHTfwoUGoFMoC_AHj2WIcc9k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/155bdc-b574-47f9-b348-93cf64f88990/1/pKuvHTfwoUGoFMoC_AHj2WIcc9k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
41:c7:87:86:71:b9:c0:36:55:27:16:5b:38:7d:be:0f:d0:ad:
ae:e9:c0:e1:40:74:a4:8f:05:69:6d:35:06:f5:f5:2b:5e:10:
f6:a1:3e:80:ef:3d:b3:7c:e6:4e:ce:54:44:cf:53:54:1e:84:
22:d8:70:02:76:bd:74:19:f8:90:57:5e:ff:fc:dd:90:25:3e:
50:8d:44:01:2a:0e:0a:2a:36:00:cd:22:51:f7:74:45:91:54:
5c:99:04:01:0e:60:c6:1f:1a:c9:fc:b4:f5:d8:d8:4d:cb:85:
2c:7b:a7:c2:61:ec:e7:05:0e:6d:00:d3:ba:da:ad:93:f7:6c:
92:90:ca:74:1b:1a:1d:60:d8:9b:62:e5:2b:a3:89:8c:ab:2a:
ce:71:fb:36:e3:42:f2:df:f3:63:c4:2c:e8:cb:fc:2c:57:8c:
47:00:6a:d3:c2:54:91:98:ea:ad:7f:c1:34:98:04:3b:75:a8:
85:c3:e6:eb:6f:61:7f:ee:9f:a1:f9:be:d9:9c:a0:2d:4b:d8:
e0:42:4e:5a:28:43:a2:9f:1d:75:2c:e1:bb:3d:60:85:78:76:
31:09:27:4e:6d:8e:92:3d:c0:c4:ba:a3:22:c3:41:9c:0a:d7:
42:95:ba:1d:fd:df:42:91:17:15:13:b1:ed:71:bb:dc:4a:1b:
bc:9a:a1:fd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 10:52:41 2026 by rpki-client