Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
File: F80TGMkZxu8W0kynhGKgt94UugU.mft (raw, json)
Hash identifier: afX0ZoHjVc8S8nBYbsyN+6/ytGGHyGoytEfd9Rh+/vo=
Subject key identifier: 58:B3:5C:26:73:F4:DC:93:A3:66:88:AF:08:F2:58:5D:FB:B3:7C:91
Authority key identifier: 17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
Certificate issuer: /CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Certificate serial: 019ED507D961D2213C5D5E11FCAA4DB8E360
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
Manifest number: 02EF
Signing time: Wed 17 Jun 2026 10:02:01 +0000
Manifest this update: Wed 17 Jun 2026 10:02:01 +0000
Manifest next update: Thu 18 Jun 2026 10:02:01 +0000
Files and hashes: 1: F80TGMkZxu8W0kynhGKgt94UugU.crl (hash: 2LTBRTgvVfwd/Vn51INn+5HhkKIcYfwx+CBE9CbeXjY=)
2: pf5Zf2vmMKwv3V7bxVEW72mA5Ro.roa (hash: 25kq67NwiLZpvtq/lLKi0cW1juljgXPpgbg4/hkoeJk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 18 Jun 2026 08:33:44 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:d5:07:d9:61:d2:21:3c:5d:5e:11:fc:aa:4d:b8:e3:60
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=17cd1318c919c6ef16d24ca78462a0b7de14ba05
Validity
Not Before: Jun 17 10:02:01 2026 GMT
Not After : Jun 18 10:02:01 2026 GMT
Subject: CN=58b35c2673f4dc93a36688af08f2585dfbb37c91
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:37:30:ab:bd:02:6b:f2:12:38:67:9a:30:0b:
fd:1c:d3:09:00:a8:62:fd:0a:f4:f7:70:bc:f0:0e:
d7:b4:51:fb:ca:06:36:9d:45:44:13:4d:41:4e:38:
58:79:b6:4b:fe:dd:f1:e4:6c:5b:b9:7f:42:b8:de:
4e:88:65:49:4b:6e:1e:4f:12:d6:36:bf:d9:8d:1d:
d8:33:5f:e8:1f:a4:9f:06:29:88:ff:b4:f7:73:d5:
e7:91:b8:e0:53:7e:b5:42:c2:11:66:9f:ce:13:d2:
d9:38:36:f2:56:a7:66:66:1c:e7:d5:4f:42:39:47:
fe:df:c0:d6:b2:21:a2:77:3a:1f:ac:1a:d1:a1:6d:
cc:f7:14:77:a6:dd:93:71:72:f3:28:c9:57:98:94:
8a:5d:e4:1f:d0:23:f7:ea:f5:a9:81:d5:8d:61:5e:
47:48:f9:44:34:00:82:6e:2b:3e:a9:03:6b:6d:30:
41:8c:99:5b:ff:40:ec:a8:c2:07:39:00:09:57:e5:
74:ed:f1:05:dc:f0:8e:bc:44:4c:be:36:2f:d0:e2:
fd:de:ea:99:23:81:bd:9d:a8:09:07:97:c2:23:d3:
47:6d:71:a9:7c:16:ef:96:31:b5:a3:c9:a4:d0:eb:
ac:c0:4a:6e:d9:a4:9d:a3:05:2d:ab:38:84:70:c4:
68:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
58:B3:5C:26:73:F4:DC:93:A3:66:88:AF:08:F2:58:5D:FB:B3:7C:91
X509v3 Authority Key Identifier:
keyid:17:CD:13:18:C9:19:C6:EF:16:D2:4C:A7:84:62:A0:B7:DE:14:BA:05
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/F80TGMkZxu8W0kynhGKgt94UugU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/1baae1-623c-453b-867c-93742c48e0fe/1/F80TGMkZxu8W0kynhGKgt94UugU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
74:8c:a8:d0:92:82:50:70:2a:14:9c:7f:4d:c0:a1:dc:07:22:
49:23:71:b0:0a:11:4e:0c:eb:c9:66:11:3c:65:94:ca:f4:89:
45:6c:93:3c:cd:12:9a:a8:96:65:3b:99:9f:64:04:9d:67:f0:
cf:97:2e:1c:8a:2b:c8:52:17:04:41:58:5c:14:45:ef:c0:73:
fa:cc:c0:5e:fa:f9:c0:49:d6:85:ff:65:99:f5:71:29:0e:9e:
da:78:5f:0c:fe:62:bd:48:36:ac:48:05:3e:dc:ff:ab:68:b1:
e5:31:b3:1f:7b:e0:8d:20:d7:58:a6:2e:2a:1c:e0:09:ff:a0:
c9:d0:c4:60:eb:94:22:bd:62:64:5a:76:57:52:57:60:4a:c2:
49:29:66:37:07:aa:a5:db:bf:f0:d3:d4:95:3c:01:2a:fd:8a:
8b:bb:1f:b5:c7:dc:bb:1d:4b:4a:83:9a:af:c7:34:88:e9:13:
10:cf:c1:34:87:33:09:f9:26:e9:a2:75:e9:77:c5:9c:4f:51:
cd:47:36:0b:ac:83:39:1b:5a:21:d7:48:70:d0:29:1e:34:cf:
d8:49:bf:03:6f:4b:c9:aa:75:54:dc:cb:a9:99:0e:f7:a4:00:
92:42:fc:74:2f:f4:c0:20:6f:49:ae:f5:a4:44:b9:5d:96:ec:
dc:61:53:8f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jun 17 14:10:11 2026 by rpki-client