Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
File: kOszbVYE1HuugXI4sNu0l3HiRyk.mft (raw, json)
Hash identifier: 86Dgezgz9hjL7mN2MRJjDWQF+bW9WCJbULkQhk90NqA=
Subject key identifier: E2:D5:4B:22:55:B4:BD:A4:B1:97:55:2E:5C:81:40:32:60:8B:54:76
Authority key identifier: 90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
Certificate issuer: /CN=90eb336d5604d47bae817238b0dbb49771e24729
Certificate serial: 019EC33774B2855DE90A4937F44686A1F53F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
Manifest number: 195C
Signing time: Sat 13 Jun 2026 23:00:51 +0000
Manifest this update: Sat 13 Jun 2026 23:00:51 +0000
Manifest next update: Sun 14 Jun 2026 23:00:51 +0000
Files and hashes: 1: kOszbVYE1HuugXI4sNu0l3HiRyk.crl (hash: qEOdqqhXlY365GyB0sD52UXf2RQ/8mWl3XEYvNDv6Rs=)
2: mKOuhDb0lNg_dJ83TTrmFYMNIeA.roa (hash: Om4b1zrUyorfRjmzpKplEidWPKteQvqXZcg+Z0i4g3Y=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 14 Jun 2026 19:00:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:c3:37:74:b2:85:5d:e9:0a:49:37:f4:46:86:a1:f5:3f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=90eb336d5604d47bae817238b0dbb49771e24729
Validity
Not Before: Jun 13 23:00:51 2026 GMT
Not After : Jun 14 23:00:51 2026 GMT
Subject: CN=e2d54b2255b4bda4b197552e5c814032608b5476
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:b0:36:6d:7a:d7:bc:ea:d9:63:13:b2:0b:f9:
fc:1f:c1:21:c1:33:b7:04:a4:15:74:aa:7b:f5:4e:
a2:95:de:83:b1:66:72:e5:36:df:b4:c4:d5:7d:d3:
5d:67:f7:ea:9b:d8:8c:c3:ab:fb:97:ab:0c:e0:33:
b1:e7:19:8c:0f:d4:0d:cc:1a:16:11:38:c3:e1:e4:
16:31:f2:02:48:d5:1a:52:a3:50:89:c9:2b:f0:41:
4d:22:7d:c3:90:56:3d:d6:5d:fc:07:76:06:71:8d:
99:8b:8d:71:76:3f:73:9b:cf:61:b7:ec:cb:3d:5a:
42:3a:40:75:36:ad:9c:bc:b0:d5:f9:e5:39:9f:d9:
65:a7:4f:8e:58:65:33:44:51:69:32:fb:d5:41:7b:
fa:3a:9f:f6:ab:7d:d6:8e:ba:e0:b6:17:6d:c9:d7:
5f:75:fa:e8:d7:d3:9b:97:3d:12:4c:c6:1e:87:eb:
c3:af:39:cb:24:7f:ce:2d:c8:9e:2a:a8:e9:9e:f5:
e5:f2:c5:8a:f4:7d:39:51:93:f6:79:84:8f:95:3b:
b2:b7:fc:bb:60:47:55:9e:2e:06:6b:3c:c8:5e:a6:
d4:f0:12:62:15:51:ac:ea:19:50:36:e9:ad:d7:f9:
ed:c4:d3:3e:36:02:ee:e3:ba:d5:9e:63:ac:c8:d2:
c9:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E2:D5:4B:22:55:B4:BD:A4:B1:97:55:2E:5C:81:40:32:60:8B:54:76
X509v3 Authority Key Identifier:
keyid:90:EB:33:6D:56:04:D4:7B:AE:81:72:38:B0:DB:B4:97:71:E2:47:29
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kOszbVYE1HuugXI4sNu0l3HiRyk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/59/1e7d2e-1a62-4421-b71b-b119274ad654/1/kOszbVYE1HuugXI4sNu0l3HiRyk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
35:6b:58:8e:fa:16:19:81:9f:88:36:fa:53:69:3a:6b:f6:be:
cc:bf:dc:3a:bf:76:04:7c:b3:5a:db:17:8d:c3:41:14:9c:cf:
9f:af:34:d7:9b:2b:6e:7f:54:78:5e:47:97:39:bf:be:c3:1b:
d1:14:f4:ed:a8:63:c3:fa:73:01:9e:07:e3:2d:f0:6d:78:ff:
ea:4d:03:de:4b:91:8e:64:48:b7:ed:4e:a9:ca:e2:0a:6c:3f:
00:68:d1:91:0e:4d:56:52:f0:53:00:5c:8a:3c:bd:b1:06:97:
5a:82:be:01:03:f9:40:de:3f:49:ec:8a:ea:59:9d:e6:f3:95:
80:b8:58:9d:ef:5e:1e:97:70:68:23:b3:d6:07:4a:23:b8:97:
a3:ef:6a:43:1e:c0:71:35:66:84:aa:d7:71:ee:e7:63:2d:fa:
c2:24:e9:31:00:1a:a6:14:92:77:bb:67:4b:d9:3a:84:f6:92:
32:b4:58:9f:9a:3a:1d:69:60:5a:09:9c:36:03:5e:aa:4f:57:
d6:78:22:e1:f3:29:0a:0d:55:76:32:5c:91:fc:50:ff:cd:57:
a2:dd:db:a9:86:65:73:b2:80:4b:71:eb:25:1b:d1:7a:31:99:
f9:4f:76:5f:6c:98:f0:0d:06:ba:b0:60:31:3d:56:0f:8a:f7:
eb:97:87:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Jun 14 05:26:26 2026 by rpki-client