Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
File: fKlis7F-7waeOrohKIuyxkIhv-0.mft (raw, json)
Hash identifier: PTzy5u2AE9WVCZ8It8pbWwox1XSCQovxiMGVOHmlESk=
Subject key identifier: C6:3A:DE:5C:76:D8:18:7B:F3:0B:35:C8:4D:9A:68:98:5B:E8:1B:36
Authority key identifier: 7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
Certificate issuer: /CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Certificate serial: 019EC2C9A36DD4A3730C1102F327C7066742
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
Manifest number: 0539
Signing time: Sat 13 Jun 2026 21:00:54 +0000
Manifest this update: Sat 13 Jun 2026 21:00:54 +0000
Manifest next update: Sun 14 Jun 2026 21:00:54 +0000
Files and hashes: 1: 7CcrAdktIbmIWLIGRKt4XmzFkcg.roa (hash: iem2l37ZP4AP5T+ke2deoIOETFCnj1X7HBG1zJalTyg=)
2: fKlis7F-7waeOrohKIuyxkIhv-0.crl (hash: AJHjiCdTaX50l+ftSruBVRviSZ5BkAQvHr1CjMtyV+E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 17:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c2:c9:a3:6d:d4:a3:73:0c:11:02:f3:27:c7:06:67:42
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7ca962b3b17eef069e3aba21288bb2c64221bfed
Validity
Not Before: Jun 13 21:00:54 2026 GMT
Not After : Jun 14 21:00:54 2026 GMT
Subject: CN=c63ade5c76d8187bf30b35c84d9a68985be81b36
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:57:04:75:82:dc:74:92:06:ca:db:29:87:2e:
8d:a3:d2:68:ac:ca:85:a0:a2:28:0b:b8:17:df:3d:
0d:3d:c9:5f:b0:d5:0f:bb:28:c2:19:ce:0b:5a:76:
29:ce:d2:7e:68:23:91:6f:2f:14:46:6c:62:a3:dc:
6a:35:84:72:22:b2:ba:da:9c:28:f7:3e:95:3c:a2:
76:14:0a:f1:21:56:3d:48:25:83:b3:c1:5f:c1:9b:
51:08:86:5b:87:36:bc:76:85:99:e1:4a:4b:7c:2f:
35:f1:ce:b7:a1:b2:1d:d4:12:28:76:38:a0:40:a3:
c0:fb:64:51:45:2e:30:18:34:7d:d9:90:67:70:37:
1c:8c:22:96:d0:eb:4a:73:28:02:2c:39:19:03:77:
56:0e:98:88:0b:4c:83:62:c7:08:bf:d0:53:c0:f8:
1f:86:ea:b9:10:75:28:80:60:c1:bc:16:7a:1d:4c:
52:f0:6c:30:fa:f1:20:2d:3d:ac:1a:d6:a0:c8:55:
a1:e3:24:ff:b2:26:96:9b:47:4d:f1:72:50:7e:bf:
2c:c4:d2:a9:91:21:f9:df:1d:b0:df:17:77:c2:bd:
bf:7f:a0:39:b8:93:15:17:14:66:ec:d5:cd:ea:8c:
f7:c2:7d:21:5d:32:4b:e2:ae:8c:9c:26:64:84:88:
81:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:3A:DE:5C:76:D8:18:7B:F3:0B:35:C8:4D:9A:68:98:5B:E8:1B:36
X509v3 Authority Key Identifier:
keyid:7C:A9:62:B3:B1:7E:EF:06:9E:3A:BA:21:28:8B:B2:C6:42:21:BF:ED
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fKlis7F-7waeOrohKIuyxkIhv-0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/53/f017df-0d0f-4a36-ac25-4968aaafc59b/1/fKlis7F-7waeOrohKIuyxkIhv-0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
64:52:78:79:80:f4:da:62:ef:bc:20:d1:c4:0e:98:81:4a:05:
05:03:e9:4a:94:83:3b:b0:a5:b5:4d:0d:82:6a:5c:37:02:69:
d7:5e:bf:dc:c7:9a:78:6e:97:09:34:10:0b:37:cd:ac:bd:34:
12:69:3b:28:58:36:49:eb:70:73:fb:b2:40:08:b6:14:49:be:
cc:b2:18:4c:b4:6b:07:ed:7a:5d:21:66:95:f6:a2:89:a4:24:
ac:98:87:d7:d4:39:1c:2b:19:1f:84:e6:ae:98:04:9a:ae:ce:
7e:13:62:84:cb:56:41:52:be:c2:05:3b:87:42:1a:45:38:d8:
19:61:f3:2d:15:1b:ea:0b:10:5e:7c:87:ea:ab:e2:5a:ef:bc:
47:74:b2:33:3e:00:85:5f:10:5d:63:b2:b3:a9:ac:a0:cb:85:
20:c2:fb:28:40:43:30:1a:e4:70:f5:37:b9:25:8f:b1:f9:34:
10:89:63:0c:60:c8:c6:6f:de:e8:a3:e2:e6:cb:0a:b1:d5:0e:
6c:ef:dc:37:76:16:df:e3:61:a1:d7:16:a2:d2:d7:e0:7e:ac:
27:fa:14:90:66:13:b7:c7:3d:51:53:61:4f:fd:16:a8:cb:14:
f2:e9:b3:c2:ca:cd:b0:6f:d4:1b:8c:6b:06:fc:cd:67:05:97:
c2:b2:d6:f0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 23:16:30 2026 by rpki-client