Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
File: d8LYpgGX_HveZPw_rRDrLaT-h3k.mft (raw, json)
Hash identifier: NOQbNezMhodRGq6hy4HioXB7pKlylhBcE9O39zap0+I=
Subject key identifier: 87:C1:11:32:B2:5C:C8:EE:4B:80:33:D4:37:D5:70:81:DB:C7:2A:DE
Authority key identifier: 77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
Certificate issuer: /CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Certificate serial: 019EC0DB99F303F2C48CAF4C7A6EA145C229
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
Manifest number: 09B0
Signing time: Sat 13 Jun 2026 12:01:17 +0000
Manifest this update: Sat 13 Jun 2026 12:01:17 +0000
Manifest next update: Sun 14 Jun 2026 12:01:17 +0000
Files and hashes: 1: aJHKOA-DMpMHSd964JXfuSmBfY0.roa (hash: oXACImzHioTx7c3QtWHlpndieWC52eNkX76flIoPyqE=)
2: d8LYpgGX_HveZPw_rRDrLaT-h3k.crl (hash: /pzMDfQXILCHCcPo7zHlfLFvAKIWwZIvdv8wC+R1O5I=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:db:99:f3:03:f2:c4:8c:af:4c:7a:6e:a1:45:c2:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=77c2d8a60197fc7bde64fc3fad10eb2da4fe8779
Validity
Not Before: Jun 13 12:01:17 2026 GMT
Not After : Jun 14 12:01:17 2026 GMT
Subject: CN=87c11132b25cc8ee4b8033d437d57081dbc72ade
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:79:64:6f:de:52:90:0b:41:ef:c5:69:6c:36:
be:6a:0b:cd:f7:a6:50:01:d7:23:c2:70:ad:bd:d2:
5d:81:ec:77:06:fe:2b:64:5a:08:ce:56:45:11:f2:
e1:ab:88:89:95:f8:c5:51:45:1e:66:eb:08:d1:ab:
77:fc:d3:90:53:29:e8:98:3e:99:32:62:ca:5a:59:
36:fe:fc:af:86:8b:f9:7f:b2:dc:86:7e:3b:92:5c:
13:f7:2c:1c:00:16:5c:58:7f:4f:24:e3:81:89:9a:
c5:57:f6:c5:ac:86:6b:6b:6d:73:54:74:b2:e5:be:
11:1b:95:44:94:b9:e1:ac:64:42:7c:8e:f6:f1:2a:
e1:a8:51:8b:a1:df:24:a5:4b:bb:0f:f0:6a:10:50:
b0:c4:4c:17:7e:03:5d:47:d0:4e:e8:b5:78:a8:47:
e7:d0:82:7b:ce:7f:8a:5e:74:ba:ec:0d:ce:a5:b0:
57:91:cb:0b:b9:68:d7:1a:52:4e:32:f6:97:a7:46:
62:21:e2:5b:32:e1:ab:3e:15:68:82:00:05:cd:cc:
c9:ef:00:33:c8:57:22:f9:02:9e:61:86:01:0d:e9:
87:0c:a6:4f:48:2c:1e:e3:65:20:08:b1:08:3d:4d:
cd:1b:99:d4:01:34:60:0f:ae:fc:82:01:70:a5:79:
da:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
87:C1:11:32:B2:5C:C8:EE:4B:80:33:D4:37:D5:70:81:DB:C7:2A:DE
X509v3 Authority Key Identifier:
keyid:77:C2:D8:A6:01:97:FC:7B:DE:64:FC:3F:AD:10:EB:2D:A4:FE:87:79
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8LYpgGX_HveZPw_rRDrLaT-h3k.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/46/7fb254-417a-4180-a4f0-8f2af9b51c5b/1/d8LYpgGX_HveZPw_rRDrLaT-h3k.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
2a:81:bd:c9:12:ae:2a:50:b2:94:ed:f2:81:4e:0f:15:2a:5f:
85:37:74:84:e6:21:7c:1d:53:7c:99:1f:4e:6c:5e:8a:48:1d:
c5:7b:e6:bd:d3:8c:89:67:58:90:da:dc:16:0d:27:56:b4:4e:
75:ff:a8:2f:c1:30:32:89:de:81:14:04:4d:02:25:80:33:1a:
44:a2:48:12:e7:0b:61:83:e1:d1:b2:1d:19:30:84:0f:53:28:
f0:ab:a1:73:8f:23:54:a4:74:57:79:01:49:7e:7e:2a:27:1f:
ca:a1:6d:af:d3:24:5e:d8:16:8c:e2:3b:70:df:f7:ef:55:b2:
c7:06:2e:8b:30:97:4f:2d:97:fb:ec:d4:25:bf:c0:4b:75:f5:
bb:f3:22:f1:b9:a6:cc:26:4b:8a:16:ee:df:e4:67:30:e0:e6:
68:68:01:48:e2:d9:a4:44:eb:4a:a6:7c:c4:11:ab:8e:0f:0a:
e7:4b:20:bd:5d:e2:e1:79:a1:07:7b:a3:a7:03:b4:47:40:60:
8b:8e:c3:4c:f3:4b:e6:86:b0:4f:89:dc:11:54:8a:3f:6a:28:
e7:f2:35:ca:11:0b:a9:43:8e:f3:45:c9:0b:30:69:86:e8:8f:
05:18:e7:c2:49:b5:da:04:4e:cf:69:f4:12:1c:51:7c:20:32:
37:3c:1b:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 17:45:09 2026 by rpki-client