Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
File: d9Vhc4owymkonMhFMN5d73SjqYI.mft (raw, json)
Hash identifier: FXWBwTIWdeybljzORb91qn6polAsRw+6Mnp9jhgdAT8=
Subject key identifier: 3A:54:91:4A:97:6C:70:37:1B:31:46:E3:82:D6:0B:EF:06:D5:56:9F
Authority key identifier: 77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
Certificate issuer: /CN=77d561738a30ca69289cc84530de5def74a3a982
Certificate serial: 019EC44A2EC0F0D4E36166ACD3C4FD3AE1D0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
Manifest number: 0135
Signing time: Sun 14 Jun 2026 04:00:56 +0000
Manifest this update: Sun 14 Jun 2026 04:00:56 +0000
Manifest next update: Mon 15 Jun 2026 04:00:56 +0000
Files and hashes: 1: d9Vhc4owymkonMhFMN5d73SjqYI.crl (hash: CtWmCHIAM2v6q2+INhF1PJ2sU+LA+N7CP0JKIjUVkao=)
2: wBGjgdfu_nLRR4DjOBdo0PtKJMM.roa (hash: PPK9ixZ6Q7KuFLEJo2Wk9bDSxb6ZvTbGERhmOzUiZuU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 15 Jun 2026 04:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c4:4a:2e:c0:f0:d4:e3:61:66:ac:d3:c4:fd:3a:e1:d0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77d561738a30ca69289cc84530de5def74a3a982
Validity
Not Before: Jun 14 04:00:56 2026 GMT
Not After : Jun 15 04:00:56 2026 GMT
Subject: CN=3a54914a976c70371b3146e382d60bef06d5569f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:21:ae:fe:79:70:89:87:ef:90:2f:86:45:e0:
92:c2:35:c8:fa:b8:33:87:ac:f4:78:7b:12:96:d4:
e2:19:ac:83:77:4c:46:b9:a4:b2:bb:c5:ea:b6:9e:
56:f8:9e:40:10:21:0d:3a:38:27:91:6e:b0:cf:3b:
4f:ba:8f:c8:75:e6:59:51:a0:86:b0:8a:2a:76:b3:
2a:78:03:61:3d:22:f5:e1:0b:12:08:de:32:c3:d6:
22:62:f8:af:6b:14:4b:4f:e0:ab:f5:e7:39:aa:49:
83:81:0b:90:37:9e:4b:96:11:d1:d6:22:c6:19:40:
cb:bd:0d:e3:d3:92:84:c1:62:ae:03:1f:e3:c4:d8:
70:33:6b:05:07:c2:52:11:b9:a8:4d:46:be:b5:33:
27:60:79:8e:76:c2:d6:2f:4d:a7:f1:31:d4:c0:d5:
ad:c7:43:50:27:fb:66:ed:c3:e7:aa:57:35:47:e1:
95:ff:10:49:01:5e:77:ae:07:da:fd:66:62:06:c6:
f3:1f:3b:9f:ec:df:19:59:f0:e4:66:b4:5e:a1:6f:
69:62:ae:75:d5:66:af:e1:fe:19:f1:15:43:d1:29:
9e:be:83:43:0e:1c:6b:b4:45:5c:8c:54:6f:5a:35:
80:a9:39:54:e6:ac:ae:d5:4d:f8:78:af:e6:bd:66:
b3:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:54:91:4A:97:6C:70:37:1B:31:46:E3:82:D6:0B:EF:06:D5:56:9F
X509v3 Authority Key Identifier:
keyid:77:D5:61:73:8A:30:CA:69:28:9C:C8:45:30:DE:5D:EF:74:A3:A9:82
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9Vhc4owymkonMhFMN5d73SjqYI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/40/cbebe4-afa6-4a1c-961b-4431f89384a3/1/d9Vhc4owymkonMhFMN5d73SjqYI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
36:ec:bd:20:ba:c2:d4:e7:74:89:cb:65:f8:f1:b8:be:ee:c8:
e0:a0:2f:08:f2:39:72:7e:34:b7:e4:7d:cc:28:65:7b:37:0e:
48:ff:be:b4:80:e4:ea:bf:c0:ff:8c:79:90:5e:e0:2e:91:96:
c0:4a:af:7c:4c:e1:d4:41:37:70:47:6a:00:0e:34:24:3a:c1:
a3:31:ab:6f:ce:3e:6c:b2:6d:75:f2:9d:bb:36:72:2a:c6:bd:
c0:fb:2d:cc:94:5e:f2:03:35:94:a0:29:10:94:f2:89:cb:bd:
aa:95:1e:04:18:30:5e:49:07:64:97:d0:33:b1:24:23:7c:2c:
e4:0d:75:c7:83:78:c1:1b:0d:b3:6c:4c:32:96:80:23:4b:f1:
84:5f:cf:26:eb:f0:2d:15:b2:97:19:45:f5:ad:6a:7e:c6:84:
e6:c0:2a:f4:28:04:00:59:33:e3:76:06:b6:0a:45:30:c9:c9:
eb:de:6b:03:36:d0:0f:d2:a2:39:55:64:b2:50:9e:39:0f:c5:
90:20:d2:06:97:7f:f6:33:a2:da:19:48:2d:95:5a:31:f5:89:
88:de:a0:6b:0b:c2:0c:cb:b8:3f:b5:4a:2f:d9:9d:3d:13:59:
01:bb:e9:e3:18:7d:a5:98:50:f1:11:85:2d:63:3b:7e:05:5f:
5f:9d:95:07
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 12:08:51 2026 by rpki-client