Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
File: 0-2n3wX226CeOefUvex7rg7_urA.mft (raw, json)
Hash identifier: NieGFdXq4TsjRV7xDPlSq0LY3NaSksbk+6dIk9k6NhI=
Subject key identifier: A5:28:E7:A0:20:97:C0:3D:4D:8C:A1:F5:8A:3E:8D:97:BB:61:00:1A
Authority key identifier: D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
Certificate issuer: /CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Certificate serial: 019EC0A427BDC6567069D79BDA5E410ABDCA
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
Manifest number: 0663
Signing time: Sat 13 Jun 2026 11:00:44 +0000
Manifest this update: Sat 13 Jun 2026 11:00:44 +0000
Manifest next update: Sun 14 Jun 2026 11:00:44 +0000
Files and hashes: 1: 0-2n3wX226CeOefUvex7rg7_urA.crl (hash: IbTvjgn/C4AHrjb4GhIRKYf6Vd14IMWQh+9gkk7yueo=)
2: qTWraqPBRkXUgfYW4gfB3AS-jm0.roa (hash: Rbt0ZTsq9hRwXO+cnDLn20WShDhAg5xFObZyVKiajFo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 08:43:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c0:a4:27:bd:c6:56:70:69:d7:9b:da:5e:41:0a:bd:ca
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3eda7df05f6dba09e39e7d4bdec7bae0effbab0
Validity
Not Before: Jun 13 11:00:44 2026 GMT
Not After : Jun 14 11:00:44 2026 GMT
Subject: CN=a528e7a02097c03d4d8ca1f58a3e8d97bb61001a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:c5:b8:8c:1c:6d:a9:53:8e:3e:ee:ce:89:c1:
92:c0:06:d4:9f:93:97:45:65:e5:5c:7c:a0:a1:a7:
6a:64:51:7e:44:93:74:86:33:1f:e0:93:c9:47:0c:
a1:ef:01:1a:58:34:ba:93:8d:6c:6b:1c:62:73:3e:
24:02:d7:0c:c4:3a:5d:6e:39:74:19:ef:7b:e0:48:
b2:79:6d:92:d1:f6:f1:a0:77:5f:ed:55:ca:3e:d9:
e9:a4:8b:28:a1:3c:a7:1c:98:25:cb:b2:2b:1c:e9:
f3:ea:70:78:88:41:e9:47:f9:54:6c:cc:97:70:ba:
a2:71:d0:04:88:2b:9b:81:c6:a5:3d:be:03:ad:ce:
60:a4:52:81:46:1d:09:00:70:50:f2:cb:d2:ea:04:
7c:9b:75:dc:15:a9:03:44:97:2a:37:a9:8e:7f:4c:
94:a0:f6:2c:14:df:d0:23:c4:ca:b0:7d:0c:b4:aa:
87:46:37:21:96:12:be:8a:48:04:7e:0e:ac:a8:61:
c6:c5:1f:8f:cc:72:3f:ea:61:c0:4d:ba:89:f4:2b:
6f:82:e5:94:cf:04:c5:52:32:09:1a:9e:4e:41:df:
51:1c:72:85:c2:a7:ac:be:af:2b:79:78:2d:81:e6:
27:c7:a5:9a:f5:74:e4:1e:45:8b:01:a7:0d:c5:d8:
f3:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A5:28:E7:A0:20:97:C0:3D:4D:8C:A1:F5:8A:3E:8D:97:BB:61:00:1A
X509v3 Authority Key Identifier:
keyid:D3:ED:A7:DF:05:F6:DB:A0:9E:39:E7:D4:BD:EC:7B:AE:0E:FF:BA:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0-2n3wX226CeOefUvex7rg7_urA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/54/dc64f4-cfba-4efd-b4ed-676bedb17473/1/0-2n3wX226CeOefUvex7rg7_urA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7c:fc:51:34:46:8e:58:74:d2:0b:5e:3b:06:33:96:83:5a:7d:
7a:57:64:f4:1f:e2:e8:22:61:7c:c6:92:e1:16:0a:0d:3c:44:
d6:3c:c0:24:46:a3:8d:98:e9:6b:e0:c3:0b:9e:eb:64:c8:87:
e3:5d:36:74:eb:01:80:4d:5c:c2:f1:65:59:7e:c8:c4:5f:1a:
a1:b1:2a:f3:80:de:ce:54:ab:4b:ca:83:8e:9e:52:0d:48:6d:
dc:d4:27:ba:17:15:94:44:0b:3f:4b:8d:4b:e7:ba:65:7c:d0:
ba:8f:24:df:b0:0e:13:62:b4:4c:1e:c5:66:96:c7:3f:b0:d6:
99:11:40:71:92:f6:6a:03:bc:67:7f:2f:f3:cf:9e:eb:60:f3:
c0:1a:8d:5d:4d:52:8e:b7:2e:f8:36:e0:38:e0:50:d4:93:a9:
06:47:39:98:52:21:3f:27:af:30:e9:72:ad:ee:5c:e5:bd:2c:
86:ea:5d:6f:55:93:d0:0b:a6:1e:cc:b5:83:05:85:76:f3:7c:
a6:3d:37:88:a0:de:d7:b2:38:b6:67:57:04:b4:60:0b:b5:f1:
73:4f:d6:9f:18:c3:ff:d4:83:25:55:ce:78:90:90:46:40:7b:
03:fb:d2:21:c3:69:d8:d5:36:8f:2d:24:56:21:86:72:b2:c1:
5c:2b:94:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 13 13:33:34 2026 by rpki-client